Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
File: ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft (raw, json)
Hash identifier: SXzHYjDGHxyYX57moFu+ifk0wC7suPh7PPnX8uCaeOU=
Subject key identifier: 71:0B:4F:F8:CE:C9:3A:70:DE:9C:AD:91:4F:BB:8C:DE:58:D5:90:09
Authority key identifier: 64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
Certificate issuer: /CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Certificate serial: 0196C494FAF6A354952CD0D27F2956E7CB13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
Manifest number: 1533
Signing time: Mon 12 May 2025 13:00:19 +0000
Manifest this update: Mon 12 May 2025 13:00:19 +0000
Manifest next update: Tue 13 May 2025 13:00:19 +0000
Files and hashes: 1: ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl (hash: M/Kqx1Yk9NmzyQNkV49zaYeEnbEGbicMs1cOutwPuYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:94:fa:f6:a3:54:95:2c:d0:d2:7f:29:56:e7:cb:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64d7f7e174179a133e30c660edfa86e74a40dd95
Validity
Not Before: May 12 13:00:19 2025 GMT
Not After : May 13 13:00:19 2025 GMT
Subject: CN=710b4ff8cec93a70de9cad914fbb8cde58d59009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c9:87:22:e7:da:f8:fd:13:1a:73:d6:76:48:
40:3d:10:fb:8f:97:c4:3a:00:9d:9c:48:39:83:a5:
4a:73:86:9d:a1:95:d2:4b:5e:f3:44:33:20:da:a5:
ff:b3:20:a4:da:27:92:bd:6a:73:eb:5c:ff:94:41:
b7:8b:29:59:e0:96:06:36:b3:6f:ca:0e:63:7a:32:
8e:ec:29:7c:d9:75:f4:82:f5:f9:b6:ae:9f:20:a8:
a7:0f:04:c3:78:a2:b7:8c:dd:1a:fe:95:7f:51:49:
b0:a8:84:10:7a:b0:6e:ee:27:b1:99:17:b6:ac:4b:
19:db:53:54:4a:ed:33:50:be:c2:65:4b:d7:9c:d5:
0c:2a:88:79:52:af:d0:92:97:4b:a6:11:0e:0d:29:
cf:16:4c:07:45:8b:94:26:bb:dc:c1:bc:0f:09:3a:
b7:06:db:25:49:07:2a:b2:bf:d7:be:db:65:a8:2c:
ca:5b:90:9e:58:e2:54:85:10:1d:8e:8c:4d:4e:ff:
d6:2c:83:45:21:3a:eb:da:cd:14:73:5d:b7:d2:3e:
d7:cb:c3:8c:91:d4:3b:77:f0:65:68:da:86:2b:d3:
69:f9:c3:bf:aa:7c:23:24:d9:e7:8d:c5:52:06:5d:
c0:6a:a3:5b:34:07:da:2b:61:19:9e:4d:b4:04:74:
db:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:0B:4F:F8:CE:C9:3A:70:DE:9C:AD:91:4F:BB:8C:DE:58:D5:90:09
X509v3 Authority Key Identifier:
keyid:64:D7:F7:E1:74:17:9A:13:3E:30:C6:60:ED:FA:86:E7:4A:40:DD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNf34XQXmhM-MMZg7fqG50pA3ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/983caa-ef05-460f-a20a-4162465b9880/1/ZNf34XQXmhM-MMZg7fqG50pA3ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:ac:ae:0d:8b:7b:d8:99:ba:a8:f7:1e:79:3c:13:eb:02:76:
6c:20:47:7f:9a:35:d8:cd:81:c4:f5:7a:da:6d:aa:83:af:5d:
e4:81:97:89:37:69:23:e3:fa:48:84:e9:6a:af:fe:2a:63:11:
a2:16:c2:4c:c9:94:59:92:03:44:83:1e:8c:97:71:0d:fc:a1:
e1:7c:74:65:3c:33:85:8d:a9:7a:57:50:54:43:c1:ff:8c:88:
aa:95:7a:67:4c:ad:4f:97:73:12:ef:d9:b1:d9:05:5b:f2:fd:
04:6a:9b:d0:01:98:31:62:19:38:ff:6d:f7:65:ad:d7:d2:ed:
2c:9e:a7:b9:a6:85:6b:5d:c1:2c:23:2c:7c:07:59:79:72:b3:
ed:76:c7:06:8f:be:b4:8f:0d:83:4c:1c:9e:b5:3b:2f:3c:f7:
33:23:ec:9a:f3:bb:9f:05:99:b4:51:03:be:75:7c:3b:97:1a:
5e:1f:dd:28:4d:6a:8a:13:5f:91:56:ad:5b:dc:ac:98:20:6b:
2d:30:3b:d1:1a:55:ae:93:e2:bb:92:71:c6:6e:37:53:50:ab:
fa:5a:c4:e2:2e:8b:45:5a:72:17:1b:2d:9e:26:26:46:41:c7:
36:b2:6b:28:06:7e:fe:ca:ac:f6:00:88:e0:4d:5f:11:84:05:
25:78:26:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 16:53:01 2025 by rpki-client