Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
File: C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft (raw, json)
Hash identifier: JemyU+tPyLoYPHdEIhzz6SVia0xkWEkGjV9PisUfHhE=
Subject key identifier: 20:7E:8A:76:8E:2E:D1:86:65:00:94:B8:1D:B6:37:9B:07:7B:C8:43
Authority key identifier: 0B:FA:73:48:D6:C1:D7:18:63:28:32:87:20:73:0F:68:4F:A2:0E:DC
Certificate issuer: /CN=0bfa7348d6c1d7186328328720730f684fa20edc
Certificate serial: 0196BDEE53725E963D5C4E93D90D9177B780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
Manifest number: 1532
Signing time: Sun 11 May 2025 06:00:34 +0000
Manifest this update: Sun 11 May 2025 06:00:34 +0000
Manifest next update: Mon 12 May 2025 06:00:34 +0000
Files and hashes: 1: C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl (hash: Owfncs+UTgqWcHgLxqq0oC4+YtYmLUFhXy3xgPUrzJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:53:72:5e:96:3d:5c:4e:93:d9:0d:91:77:b7:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bfa7348d6c1d7186328328720730f684fa20edc
Validity
Not Before: May 11 06:00:34 2025 GMT
Not After : May 12 06:00:34 2025 GMT
Subject: CN=207e8a768e2ed186650094b81db6379b077bc843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1a:fb:5d:8a:ff:7e:09:6d:64:33:d8:04:85:
11:59:ae:39:be:1f:55:ff:49:50:b0:19:4c:1d:0c:
8d:8c:6c:f2:c6:7c:08:92:b0:7c:a2:5a:58:c7:85:
c6:b1:a0:7a:32:56:dc:0f:ee:81:25:6f:a1:e9:b9:
d3:5b:d6:a8:77:0a:81:25:07:b4:d1:36:0b:2e:3b:
6b:33:da:ac:c8:b0:a5:4a:98:dd:19:4d:1d:de:21:
4d:ee:34:2a:14:0a:b2:3e:c9:73:40:93:96:a1:ac:
9c:54:37:62:a3:7f:19:91:37:4c:2a:78:c3:94:2b:
21:f5:08:8a:0b:24:a0:c9:c4:7f:1a:f4:f1:fd:4c:
5a:ff:a6:14:5c:ec:ae:30:09:21:55:65:08:94:3c:
4b:83:9d:4e:b4:12:5c:76:85:30:83:bd:54:2d:93:
07:3b:4b:d5:bb:f0:cf:d2:09:5a:ff:73:e9:68:eb:
dd:53:88:2b:82:fc:60:32:80:b0:aa:46:3d:26:fa:
d5:f4:c0:e9:af:fe:8d:af:76:c8:09:7a:50:47:cf:
ff:2d:5a:3c:07:b1:40:00:02:da:00:ad:83:37:08:
ea:d3:de:91:ba:79:46:5b:6b:3f:05:35:e6:19:6c:
37:3e:dc:29:e1:e6:41:70:ce:92:4e:94:49:80:a3:
ed:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7E:8A:76:8E:2E:D1:86:65:00:94:B8:1D:B6:37:9B:07:7B:C8:43
X509v3 Authority Key Identifier:
keyid:0B:FA:73:48:D6:C1:D7:18:63:28:32:87:20:73:0F:68:4F:A2:0E:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:28:9a:b1:b0:b8:9c:d9:81:a7:21:71:b4:a1:80:5f:3f:27:
e8:be:c4:00:40:17:ef:aa:52:b9:45:37:db:74:43:7c:ee:c1:
20:5f:0d:66:ac:d1:e5:55:c0:6b:ce:d3:de:06:ec:45:50:3c:
47:d6:64:3c:4d:ed:fc:d2:93:de:6a:2b:0a:eb:47:b0:ab:6a:
67:df:d2:21:60:53:a0:14:e7:0b:88:59:63:c0:9d:cf:a3:9c:
b0:5d:5d:96:4c:18:ac:01:b0:bf:ca:bb:1f:fe:f8:7c:4d:ce:
50:e6:83:f7:56:61:0e:06:f7:f0:04:78:67:0a:aa:ff:57:a0:
52:a4:94:ce:ba:e7:c5:4c:de:8e:8d:bd:af:b3:c7:72:2a:a8:
db:51:62:5a:d4:bf:a8:0b:bd:a8:00:9f:04:67:d5:a7:29:59:
f6:9c:60:39:91:55:db:1d:e4:02:7f:86:71:68:1e:4c:13:b6:
a8:7d:b2:54:7f:87:fd:ed:c7:eb:8c:90:bc:13:7b:6a:dd:fd:
8a:a5:9c:69:23:d3:44:43:12:ea:36:e5:f7:1d:15:b8:ec:5c:
02:d0:a4:19:82:d8:48:b3:9c:09:fa:c8:b7:8b:50:eb:ed:48:
b8:da:f8:7d:c8:8d:8c:bd:c0:4a:68:36:68:22:49:fe:0b:5b:
a5:e4:33:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:29:06 2025 by rpki-client