Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/3ad935-63a7-434f-b69d-40aa83486f8f/1/ZYzRSR-oTUghjThg8zI9ybhoV4w.mft
File: ZYzRSR-oTUghjThg8zI9ybhoV4w.mft (raw, json)
Hash identifier: v0AfORY6rHdKLfjQa1X/Kj8jPHgy+oETMqpfMgeE4fg=
Subject key identifier: D4:6E:2A:6A:5C:B2:B8:F9:73:94:5F:A3:5F:38:04:EB:43:2C:DE:D3
Authority key identifier: 65:8C:D1:49:1F:A8:4D:48:21:8D:38:60:F3:32:3D:C9:B8:68:57:8C
Certificate issuer: /CN=658cd1491fa84d48218d3860f3323dc9b868578c
Certificate serial: 0196BD815B8FFD2397A87EEF9218237A6E89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYzRSR-oTUghjThg8zI9ybhoV4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/3ad935-63a7-434f-b69d-40aa83486f8f/1/ZYzRSR-oTUghjThg8zI9ybhoV4w.mft
Manifest number: 0D9C
Signing time: Sun 11 May 2025 04:01:33 +0000
Manifest this update: Sun 11 May 2025 04:01:33 +0000
Manifest next update: Mon 12 May 2025 04:01:33 +0000
Files and hashes: 1: ZYzRSR-oTUghjThg8zI9ybhoV4w.crl (hash: vhbHYU/khhQAgYJXdnHBFMG60kzSDjN7T6j5/7s+04o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/3ad935-63a7-434f-b69d-40aa83486f8f/1/ZYzRSR-oTUghjThg8zI9ybhoV4w.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/3ad935-63a7-434f-b69d-40aa83486f8f/1/ZYzRSR-oTUghjThg8zI9ybhoV4w.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZYzRSR-oTUghjThg8zI9ybhoV4w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:5b:8f:fd:23:97:a8:7e:ef:92:18:23:7a:6e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658cd1491fa84d48218d3860f3323dc9b868578c
Validity
Not Before: May 11 04:01:33 2025 GMT
Not After : May 12 04:01:33 2025 GMT
Subject: CN=d46e2a6a5cb2b8f973945fa35f3804eb432cded3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:1d:90:ce:14:10:e2:ae:8e:46:e7:b7:b6:4e:
bb:64:1a:6a:cd:5a:18:76:36:20:13:fc:b3:db:79:
38:f1:c8:79:40:c9:38:35:03:52:dd:24:4d:e6:ab:
b3:69:87:67:62:6f:81:d6:76:68:4e:05:85:b8:8d:
39:3a:c5:62:9f:b9:03:1c:bc:17:01:b1:84:41:58:
cb:d4:24:b7:59:39:d5:aa:36:34:d8:10:1f:c0:4c:
2c:40:49:0f:17:f3:ed:78:b2:2e:e7:f0:e2:a1:74:
17:7d:2a:eb:ed:0f:75:de:df:90:92:6b:07:d1:ff:
cd:4f:cd:fe:7c:3c:16:5c:3b:1b:53:a2:b6:cb:d5:
6e:b7:f8:45:cb:99:60:a3:31:a6:2c:65:c9:51:25:
b0:ea:e5:b5:25:0d:b1:c0:2b:98:19:8e:6e:ea:e3:
f5:ca:61:69:80:24:8e:3c:0d:bf:83:52:da:ce:0d:
ab:9d:77:3f:c0:75:28:a3:a3:8e:57:23:df:d0:8d:
c2:f8:95:8a:b8:89:b3:24:5b:db:b0:8b:ce:7c:06:
d2:0d:b3:c9:db:19:dc:c9:64:cc:56:b6:e8:65:00:
57:1a:9e:23:4a:d6:fd:0d:5e:4e:47:f7:44:42:a8:
58:11:91:a1:70:f1:26:89:96:3d:27:81:32:50:0c:
07:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6E:2A:6A:5C:B2:B8:F9:73:94:5F:A3:5F:38:04:EB:43:2C:DE:D3
X509v3 Authority Key Identifier:
keyid:65:8C:D1:49:1F:A8:4D:48:21:8D:38:60:F3:32:3D:C9:B8:68:57:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYzRSR-oTUghjThg8zI9ybhoV4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/3ad935-63a7-434f-b69d-40aa83486f8f/1/ZYzRSR-oTUghjThg8zI9ybhoV4w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/3ad935-63a7-434f-b69d-40aa83486f8f/1/ZYzRSR-oTUghjThg8zI9ybhoV4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:d1:19:c8:e3:13:24:f3:a3:07:bc:a9:bc:9d:6f:4a:37:d1:
b4:30:40:d8:bf:29:53:50:6e:7a:0e:c9:ce:cb:0f:0e:27:f6:
dc:b8:e7:a5:e0:d3:4c:65:0d:56:40:02:74:34:49:d3:96:c9:
c2:2c:cd:57:e1:74:0e:f9:c7:a0:e4:40:f8:06:39:ab:58:74:
37:9d:27:28:b5:6a:a3:47:1b:ac:5f:10:b7:0b:4c:2d:74:f9:
9a:72:0d:43:34:18:7b:0e:f2:54:30:79:ac:e9:29:f9:74:d6:
25:61:7e:e2:4b:f7:13:73:06:35:9f:5f:d6:73:79:a8:24:5c:
e3:10:68:22:74:22:a5:44:e2:5b:40:e1:a5:78:f4:46:63:db:
30:6e:f9:94:ac:94:58:21:5f:10:80:5c:0a:1b:16:d0:c6:43:
9e:b2:95:69:fd:51:9e:99:b4:f4:41:25:a8:ca:1d:14:ce:86:
b1:6e:5b:86:c6:c6:fa:5b:71:c6:d2:93:58:05:b1:59:88:ee:
2f:35:35:ff:3c:c1:bb:9f:bc:84:e0:a2:d7:85:55:0e:75:c5:
b3:78:82:7d:e6:5e:23:36:d6:d5:33:86:cb:07:cc:48:8e:4b:
ce:f7:18:7d:e1:66:76:32:93:e7:dd:04:ce:2d:c0:0c:66:c2:
b0:d8:02:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:18:32 2025 by rpki-client