Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
File: zEH27mce6lNY5xzn_BHJNsw3bGE.mft (raw, json)
Hash identifier: Cz6TJ3fozguIjtDV4pIGLCCTZoBKxvzKsijMqGK3hrs=
Subject key identifier: 60:B7:42:86:6D:A4:E0:44:21:D0:67:AD:FF:B8:3D:37:CF:AE:AF:5F
Authority key identifier: CC:41:F6:EE:67:1E:EA:53:58:E7:1C:E7:FC:11:C9:36:CC:37:6C:61
Certificate issuer: /CN=cc41f6ee671eea5358e71ce7fc11c936cc376c61
Certificate serial: 0196C2A68639033475DAA333DECC690B5538
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEH27mce6lNY5xzn_BHJNsw3bGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
Manifest number: 0F63
Signing time: Mon 12 May 2025 04:00:15 +0000
Manifest this update: Mon 12 May 2025 04:00:15 +0000
Manifest next update: Tue 13 May 2025 04:00:15 +0000
Files and hashes: 1: zEH27mce6lNY5xzn_BHJNsw3bGE.crl (hash: jWFoaqwgLstjzUQIaM8l3gLXzQj7/lL9V7/HyFtXkjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/zEH27mce6lNY5xzn_BHJNsw3bGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:a6:86:39:03:34:75:da:a3:33:de:cc:69:0b:55:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc41f6ee671eea5358e71ce7fc11c936cc376c61
Validity
Not Before: May 12 04:00:15 2025 GMT
Not After : May 13 04:00:15 2025 GMT
Subject: CN=60b742866da4e04421d067adffb83d37cfaeaf5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6f:92:e3:2c:b5:52:56:0c:3d:87:b9:52:0f:
66:25:db:e1:23:15:a7:59:f8:60:5a:0f:5b:15:d8:
56:2b:f5:27:3f:8a:21:36:70:05:1c:d7:3a:2e:5a:
96:ff:ae:8e:af:c8:78:fe:69:cb:d8:53:e7:6a:31:
7a:9c:c5:42:33:c9:2d:5b:84:1f:39:a7:6e:08:19:
76:30:9a:94:26:af:75:5a:1e:7a:c8:ef:5f:aa:9f:
a6:13:10:22:4c:24:54:da:42:8e:d3:65:bf:06:55:
49:00:9e:7a:97:d4:18:f2:8b:19:31:1b:16:1c:5c:
e3:69:15:a1:94:72:3d:43:e8:e2:59:86:cd:d4:29:
5f:b7:fd:38:bc:b6:df:55:22:b6:df:1f:47:59:08:
60:ee:b0:04:e1:02:fa:c0:f6:68:26:81:5b:1c:f3:
ff:bc:f4:50:3d:f4:b6:7b:91:d5:e8:b2:c5:37:82:
82:ea:68:ef:df:ac:ce:a6:1f:8c:df:db:b5:71:d8:
e3:92:f4:ff:cb:98:0a:8f:b0:87:26:be:32:99:65:
60:56:9e:7e:cb:27:1c:13:98:05:1e:dc:af:e6:5a:
33:9b:9b:47:be:56:25:8c:42:5d:b4:ea:76:30:5e:
8f:9c:34:56:7f:88:df:e9:32:76:c9:f1:55:12:c8:
1f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B7:42:86:6D:A4:E0:44:21:D0:67:AD:FF:B8:3D:37:CF:AE:AF:5F
X509v3 Authority Key Identifier:
keyid:CC:41:F6:EE:67:1E:EA:53:58:E7:1C:E7:FC:11:C9:36:CC:37:6C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEH27mce6lNY5xzn_BHJNsw3bGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/8857a3-da1e-4549-aec0-6f2e79d827e0/1/zEH27mce6lNY5xzn_BHJNsw3bGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:41:32:07:83:ee:c0:bb:ad:8a:f7:27:61:7e:6a:3a:be:d6:
bd:37:3f:35:e1:9b:5a:34:56:d7:fc:28:61:78:c5:88:c7:93:
78:09:57:ff:41:29:cf:ef:84:d3:7c:10:b7:69:39:ec:bf:3a:
b4:e1:44:85:dc:66:80:7e:fb:82:e7:9c:6b:48:6e:22:20:94:
5a:66:cf:b5:d0:d9:b4:b5:b8:7a:f5:3d:97:36:16:41:a8:fa:
5a:70:0e:2a:cc:8b:f7:35:62:df:da:7a:83:aa:c4:1f:b1:c9:
6b:ec:2d:16:74:fc:05:e5:70:f5:f4:83:42:22:c6:b4:a6:ed:
08:08:62:d3:31:e3:f7:78:29:89:12:78:b0:0f:27:69:85:ee:
3a:e3:25:2b:dc:18:bd:cc:6a:bd:fe:50:7d:12:15:d3:d4:3f:
78:5e:49:1b:3d:6c:7c:b3:6f:c3:7c:f8:eb:1f:f9:d8:88:d8:
0d:a8:e2:6f:93:63:f7:af:73:da:82:fc:a0:12:3a:a4:80:67:
dc:d4:3c:a9:40:84:b3:e8:db:37:cf:2b:9a:42:d3:fb:c9:bf:
6d:d9:30:65:a2:48:0c:b8:6e:b2:f3:e1:d6:56:47:c7:64:0a:
3f:ec:b4:a6:5a:67:4c:fe:3c:2d:59:11:8e:cc:4f:6e:75:e7:
6c:a7:5a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:08:42 2025 by rpki-client