Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json)
Hash identifier: XlYBxiXcdV1YFp9lQadJF6zqFMx0RFC4Ght6Eh45YNQ=
Subject key identifier: 1B:80:59:91:2A:53:78:2C:4D:6D:41:3C:85:7D:85:11:CA:19:2C:14
Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Certificate serial: 0196BB92B23CC58D51DFB3583827E148C793
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
Manifest number: 1070
Signing time: Sat 10 May 2025 19:01:15 +0000
Manifest this update: Sat 10 May 2025 19:01:15 +0000
Manifest next update: Sun 11 May 2025 19:01:15 +0000
Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: D1SKiaCzCtteHPpiP9s6SXGPwN0r9Eg62e4Znh9TOSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:b2:3c:c5:8d:51:df:b3:58:38:27:e1:48:c7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039
Validity
Not Before: May 10 19:01:15 2025 GMT
Not After : May 11 19:01:15 2025 GMT
Subject: CN=1b8059912a53782c4d6d413c857d8511ca192c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bd:1c:e6:f3:7d:22:e0:16:9c:aa:8c:bb:d6:
fa:d3:46:a3:56:9d:a3:cf:e9:e4:5d:5c:ee:1a:6c:
5f:77:71:65:7c:04:49:77:fc:e9:3c:42:6b:0f:09:
40:74:04:0e:38:7d:59:5c:50:60:7e:76:1b:f9:af:
23:bd:4f:bd:0a:c4:d3:e0:f1:0f:b2:9e:4e:15:4d:
72:ec:2d:37:a4:f6:12:ad:9a:d6:2b:df:79:68:5e:
12:0d:4c:f0:88:86:64:44:8c:5d:8c:3b:4a:30:41:
42:42:d9:fd:32:a2:eb:aa:2c:83:2e:8b:1e:fd:4c:
15:51:35:16:c2:1e:58:14:b3:ee:ba:98:6a:2f:9d:
a9:ac:d7:63:77:39:2a:51:07:45:4d:f0:80:0d:3b:
a2:8b:5c:25:b0:3a:fc:83:ef:a5:31:3f:19:f9:eb:
2a:cb:72:de:28:4a:e0:ed:6e:2f:ec:5c:76:b5:ab:
fb:e0:20:09:ae:94:b5:68:20:11:ac:2e:f8:25:3d:
ab:27:1a:28:5f:e1:8a:fc:1f:61:7a:c5:69:d7:1c:
50:e9:05:3a:53:9b:e2:d1:c3:84:cd:dc:99:83:91:
6c:c1:b9:e5:ce:e5:26:25:51:96:3b:26:5a:16:59:
89:58:af:a9:80:f1:df:d3:b6:71:33:39:3b:23:ce:
78:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:80:59:91:2A:53:78:2C:4D:6D:41:3C:85:7D:85:11:CA:19:2C:14
X509v3 Authority Key Identifier:
keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:2c:1b:ce:32:23:6a:38:c1:6c:37:f7:f2:6e:66:7b:56:f7:
9d:92:29:fb:f3:ba:f1:75:71:0e:40:68:16:8c:42:e3:61:ea:
6b:c3:bc:8b:ea:1f:a4:a0:8e:a3:3e:d8:9a:99:a7:26:3f:b4:
bf:87:29:51:0a:c3:8e:c8:ad:d4:14:d6:a6:25:e2:e9:b4:42:
05:ba:31:f6:f2:06:34:b2:cd:da:9c:9e:53:43:26:e1:e3:40:
32:c4:5a:58:47:28:14:bd:b3:cb:c9:e6:0c:ef:b0:66:15:8d:
0e:bc:b0:71:dd:d9:1d:08:5b:ef:0b:16:56:7c:cc:5c:78:f0:
1c:a4:5a:6b:ca:81:18:af:64:11:eb:fd:ed:5f:d4:26:ab:17:
49:a0:e2:9f:a3:cd:a0:10:23:55:74:80:fc:0f:12:60:d6:c0:
6e:91:62:7b:13:e9:90:53:d9:d9:83:a7:5f:a6:2b:6f:c8:9a:
23:8e:67:ae:f9:5a:ac:ba:c3:d5:8b:f5:db:51:51:fd:7e:da:
c6:c0:81:8c:9e:dc:09:fd:03:2a:ef:a3:38:12:ad:2a:aa:ca:
b5:a4:63:f8:b3:8c:2d:fb:61:76:b6:d6:81:94:41:c0:93:fd:
8c:b9:b0:d4:4c:5a:e5:8c:97:2b:2c:22:3b:e9:4a:97:8e:13:
a1:dd:1e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:31:13 2025 by rpki-client