Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
File: 4CzXYQ92Hg7SUq57ufMPHisXtec.mft (raw, json)
Hash identifier: HztwG0WLfEUKhljmfFcLvGQ+o0wEZh8K+Fb/Irhwlhs=
Subject key identifier: 33:42:5D:21:F8:78:AB:6A:50:3F:93:07:ED:C0:16:25:10:4A:25:29
Authority key identifier: E0:2C:D7:61:0F:76:1E:0E:D2:52:AE:7B:B9:F3:0F:1E:2B:17:B5:E7
Certificate issuer: /CN=e02cd7610f761e0ed252ae7bb9f30f1e2b17b5e7
Certificate serial: 0196C1CABD0A2FF60E794F93CBB993F7B2FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
Manifest number: 11C7
Signing time: Mon 12 May 2025 00:00:11 +0000
Manifest this update: Mon 12 May 2025 00:00:11 +0000
Manifest next update: Tue 13 May 2025 00:00:11 +0000
Files and hashes: 1: 4CzXYQ92Hg7SUq57ufMPHisXtec.crl (hash: +jwFV50H33igN4SS8secfMV16n0MfwXGpPIaXQkOOWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:ca:bd:0a:2f:f6:0e:79:4f:93:cb:b9:93:f7:b2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e02cd7610f761e0ed252ae7bb9f30f1e2b17b5e7
Validity
Not Before: May 12 00:00:11 2025 GMT
Not After : May 13 00:00:11 2025 GMT
Subject: CN=33425d21f878ab6a503f9307edc01625104a2529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:45:32:04:6f:9c:32:a1:37:32:4c:ad:5e:47:
a2:c1:1e:99:f3:8a:fe:47:72:de:2c:69:6a:c3:4e:
89:f3:36:e7:e6:f1:ee:6c:74:b2:df:4c:d4:6d:19:
0e:50:c1:d0:e2:19:ee:78:d6:ba:79:3f:cc:a5:2f:
10:aa:1a:1f:40:ea:20:e4:4f:71:aa:de:0a:ae:c4:
3a:9a:07:66:09:ef:77:48:a7:6f:a6:c3:af:cc:77:
b8:de:dd:91:e0:c7:a7:54:d4:27:47:cd:c9:79:c9:
aa:7a:d5:76:1a:5b:4c:12:1e:6d:ca:ce:be:86:cc:
67:d8:90:fe:c8:62:92:7a:45:a7:c3:d0:c5:18:aa:
4f:67:df:2d:72:03:0f:e9:f3:e0:db:17:3d:72:f1:
ca:18:08:84:ed:ef:01:b5:ac:95:89:2a:ec:6b:e5:
61:f3:34:88:40:18:1c:3e:96:b2:94:c4:97:ed:f6:
92:89:d2:e9:a5:16:f2:5e:b6:71:67:9e:08:29:a8:
6d:0f:98:cb:39:39:9a:c2:86:6e:ad:1b:3f:dc:8f:
45:d7:3e:29:ea:b4:11:32:33:90:94:89:71:51:20:
30:ba:31:1f:ea:61:a5:ed:e5:7b:f4:3a:94:c5:00:
a6:83:5a:d4:ee:65:8d:41:35:97:0d:52:b7:8c:82:
2d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:42:5D:21:F8:78:AB:6A:50:3F:93:07:ED:C0:16:25:10:4A:25:29
X509v3 Authority Key Identifier:
keyid:E0:2C:D7:61:0F:76:1E:0E:D2:52:AE:7B:B9:F3:0F:1E:2B:17:B5:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:61:e6:f7:32:d0:fb:34:60:40:51:b8:57:6b:48:ca:ce:bd:
c8:b5:ad:39:45:a3:79:d7:e6:56:5a:ae:c0:4b:a1:7d:2a:70:
74:9d:d2:f4:16:df:71:ee:79:12:fc:ac:eb:da:75:d4:87:5f:
1d:85:58:ef:90:0b:52:59:a3:5f:27:62:01:6a:f1:71:46:ac:
1d:64:66:c5:c3:4b:37:5e:09:31:62:e1:87:f9:f9:e7:41:c1:
7f:0d:a8:31:55:05:49:15:12:d7:a6:6a:48:34:b9:48:f8:f6:
af:27:fa:e7:d5:e2:74:2c:9b:ee:14:75:e2:12:b0:2c:2b:a8:
6c:bf:ca:70:2c:26:34:54:e3:6e:35:08:d2:9b:b4:3f:c1:0a:
68:21:60:dc:59:8f:c7:9c:be:ce:aa:50:b3:13:39:9f:f1:3a:
21:a7:6b:33:1c:66:9c:f3:4a:66:8a:a8:d2:08:72:e1:0f:7d:
0e:c0:16:b0:c5:b9:9d:fc:2b:25:f3:a7:b7:32:30:13:4e:04:
c6:4b:58:f4:96:94:76:b1:38:62:0b:6a:68:58:14:b0:c1:e1:
9b:77:62:8b:41:ea:81:71:5c:78:23:ef:f8:e4:67:d4:44:f4:
e6:9c:13:d7:ef:fb:03:ed:1e:4b:51:a9:af:09:19:af:1a:43:
54:d5:9e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:24:52 2025 by rpki-client