Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft
File: z312VOh85PlnktVlxW4ZH0Ten1o.mft (raw, json)
Hash identifier: AxnfzFXBcaTyFlbna3ecMNw3J9vg4akdW59Qo0G0S2E=
Subject key identifier: 7D:0D:14:65:8A:40:FE:EF:23:28:97:A4:B0:D4:ED:3B:45:C4:5F:52
Authority key identifier: CF:7D:76:54:E8:7C:E4:F9:67:92:D5:65:C5:6E:19:1F:44:DE:9F:5A
Certificate issuer: /CN=cf7d7654e87ce4f96792d565c56e191f44de9f5a
Certificate serial: 01969DF5ACCB8D0E498A54AEFB0823025C78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z312VOh85PlnktVlxW4ZH0Ten1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft
Manifest number: 0E35
Signing time: Mon 05 May 2025 01:00:45 +0000
Manifest this update: Mon 05 May 2025 01:00:45 +0000
Manifest next update: Tue 06 May 2025 01:00:45 +0000
Files and hashes: 1: z312VOh85PlnktVlxW4ZH0Ten1o.crl (hash: WZ5YuVQOlCF5c62rM40FWf29qTCcn0W2wDSuPjs6e9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/z312VOh85PlnktVlxW4ZH0Ten1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:f5:ac:cb:8d:0e:49:8a:54:ae:fb:08:23:02:5c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf7d7654e87ce4f96792d565c56e191f44de9f5a
Validity
Not Before: May 5 01:00:45 2025 GMT
Not After : May 6 01:00:45 2025 GMT
Subject: CN=7d0d14658a40feef232897a4b0d4ed3b45c45f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:60:7b:c6:59:f2:ea:0a:fb:72:38:ca:ba:27:
3c:94:9d:bc:a4:4c:e1:82:10:61:02:34:34:c9:8e:
69:be:62:80:5a:ff:d8:11:c1:0d:a0:00:47:be:da:
02:30:83:0d:09:8c:be:06:8a:95:43:2e:0a:1b:b5:
d8:af:2b:5f:7b:bf:fb:0c:23:cb:3e:b6:df:24:6a:
59:19:22:0c:b6:40:1c:28:fa:f8:2e:03:c2:19:0b:
b7:a5:0c:34:99:15:a5:ab:8d:f6:bf:76:5e:ba:f4:
33:67:42:fa:39:2c:c3:a0:00:cd:12:be:25:50:6b:
c4:08:92:be:de:02:9c:af:50:90:1b:62:b7:e7:a9:
92:c4:80:b2:e8:c7:09:e8:3d:29:3c:fd:77:21:a4:
bd:73:51:45:85:27:2c:e4:29:a7:f3:6e:24:f9:6a:
3f:92:27:7a:b2:91:ae:af:55:f5:0d:c8:e6:dc:b9:
29:0b:2a:60:3a:8d:9f:dc:6d:cd:a6:1f:8b:0e:ec:
bd:fc:21:f2:b0:eb:60:73:00:7b:14:42:af:f6:16:
d5:9b:4d:c4:2d:f2:77:5e:e3:fd:52:7a:7c:58:17:
a1:bd:83:7f:d3:0b:a0:6d:c6:ac:dc:e7:e3:33:36:
db:d6:69:94:59:06:25:49:61:28:54:18:7a:12:6d:
15:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0D:14:65:8A:40:FE:EF:23:28:97:A4:B0:D4:ED:3B:45:C4:5F:52
X509v3 Authority Key Identifier:
keyid:CF:7D:76:54:E8:7C:E4:F9:67:92:D5:65:C5:6E:19:1F:44:DE:9F:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z312VOh85PlnktVlxW4ZH0Ten1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:e1:ed:94:33:6c:c6:26:cc:a6:3a:ea:32:a8:88:bd:c9:3a:
92:8a:3f:20:96:3e:86:8a:c5:ff:c9:02:08:00:af:ec:8c:58:
b6:7c:03:44:c6:fc:77:47:a9:0a:a1:63:24:6e:01:e6:ee:65:
bb:33:73:1a:7a:97:46:9f:c7:9c:f3:71:e9:06:99:60:8e:61:
0b:8e:20:aa:d6:93:80:e8:e4:6e:9e:a1:36:22:1f:75:da:94:
6e:64:58:d7:9f:3b:82:3e:37:ed:73:ae:cd:d0:a9:1e:2b:5e:
58:be:d7:c3:f4:48:84:22:ce:1c:3d:68:5e:8d:9c:c7:69:48:
d7:80:60:49:7b:f9:1d:26:b2:a2:13:88:c5:34:1e:4c:bb:7d:
5a:35:85:d2:1f:23:f1:91:9d:e7:01:80:2a:9b:f8:57:ec:42:
fc:b6:f0:9d:86:0e:aa:18:8f:78:c1:08:b1:38:32:44:b0:35:
ec:ba:aa:f5:34:83:7b:aa:93:9e:8d:51:2a:08:14:39:37:0f:
84:74:16:05:e8:78:38:95:48:5d:98:15:f3:57:2b:0e:e0:bb:
df:85:11:65:ec:0a:3c:ec:48:30:41:af:d0:38:f7:bb:da:67:
3c:9e:1b:44:8e:f5:7f:17:a8:ee:20:9f:7b:44:e6:8a:09:39:
f2:7a:66:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:15:02 2025 by rpki-client