Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json)
Hash identifier: ulkzwNbFUGmKTtikTr3/852SDRlgzR9SHVmPxtQLa60=
Subject key identifier: EB:F6:D4:F1:5C:8A:43:30:FA:DF:A3:58:04:BD:B2:02:EE:04:4A:17
Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663
Certificate serial: 0196CEE2A97A140FBFAA93BD4B2C4A17C56C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
Manifest number: 0DEC
Signing time: Wed 14 May 2025 13:01:22 +0000
Manifest this update: Wed 14 May 2025 13:01:22 +0000
Manifest next update: Thu 15 May 2025 13:01:22 +0000
Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: WQPgiOoNGKHvPJMN1VlqjzGVWsxogT0s/0IbjfbGbTc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:e2:a9:7a:14:0f:bf:aa:93:bd:4b:2c:4a:17:c5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663
Validity
Not Before: May 14 13:01:22 2025 GMT
Not After : May 15 13:01:22 2025 GMT
Subject: CN=ebf6d4f15c8a4330fadfa35804bdb202ee044a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ed:90:9c:52:d3:d4:22:3a:9b:56:f6:74:d7:
3c:0a:2b:67:c7:1e:d0:a3:7d:40:03:50:0c:61:ad:
ad:2f:4a:d5:c4:a2:46:43:79:7e:c5:89:77:b6:24:
fb:6b:fa:64:55:9d:4a:b6:70:6a:6b:59:e4:4b:3c:
27:ba:de:1f:ec:5a:7b:8f:93:4e:67:1b:ef:d4:aa:
aa:3e:ac:79:9f:2b:b3:4c:20:b6:41:ac:9b:0c:71:
fa:34:6a:df:6c:38:ba:a3:1b:5d:d3:61:0f:4c:6f:
eb:d4:04:b6:b3:ae:d3:6d:71:75:53:ca:30:9b:0a:
41:77:97:55:40:b8:0b:74:35:c8:a8:8c:23:2b:d3:
8a:f5:a4:c8:46:c2:22:d2:7b:a0:f2:65:ad:2f:01:
b9:d2:f4:5e:f7:9a:53:45:8c:d0:95:17:a5:1f:fb:
3b:bf:34:dd:5d:22:9b:7d:1b:eb:86:63:73:5f:31:
d0:8e:48:db:e4:d0:50:f0:80:61:a3:d3:46:58:e4:
fd:bc:1c:05:be:0a:7d:36:05:6e:68:0a:6d:74:5d:
f6:16:76:40:f3:99:bb:05:78:6b:f8:a7:a9:00:be:
d0:77:eb:f0:77:71:dd:ef:4e:bd:ec:99:2b:fb:29:
b8:eb:22:2c:45:4c:8b:63:60:bb:11:58:32:05:9c:
e4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F6:D4:F1:5C:8A:43:30:FA:DF:A3:58:04:BD:B2:02:EE:04:4A:17
X509v3 Authority Key Identifier:
keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c9:7b:24:7d:ee:b2:c7:ee:b0:4c:f5:fd:54:90:c8:9e:d1:
5a:d6:ec:9a:de:b9:c6:23:80:7c:6f:18:e1:29:6f:46:36:8d:
9c:32:63:7b:43:84:47:81:ed:45:8d:ab:c9:5e:22:9f:bf:fa:
c6:8f:e6:00:4e:7f:02:c0:7d:26:f8:48:12:13:25:07:42:ee:
1d:92:a4:1d:5e:ef:26:90:c5:bd:91:40:aa:c6:95:49:6b:d1:
73:db:94:0f:17:ae:d7:3e:8a:5d:f4:12:97:70:d8:80:5e:f7:
cc:fc:de:ae:a7:ca:e0:5d:23:ed:3f:82:54:3a:75:2f:3b:70:
54:21:36:0b:0a:85:98:59:72:84:0f:32:98:f1:9e:22:37:5f:
72:62:f7:39:2c:a9:1a:40:6b:28:fa:73:40:06:d3:34:55:c3:
e2:f6:75:57:6c:3b:5f:1e:54:17:25:1e:6d:ea:aa:9f:ab:1d:
3a:5e:54:c8:22:b2:42:f6:c3:3f:5a:e9:95:2e:32:54:28:c7:
28:a0:1f:fd:56:18:36:9f:a9:4c:6d:e1:9a:39:1e:6e:13:9d:
1d:ee:74:48:5d:b0:17:2b:95:ca:48:da:94:9f:00:59:06:17:
f9:09:2c:19:0c:cc:59:21:b3:14:b9:88:e5:ee:fc:26:65:87:
d1:c1:24:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 22:12:27 2025 by rpki-client