Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
File: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft (raw, json)
Hash identifier: pmkCJRBBU3vNvMmDXGk+S8Qak/Zutv6zT/G4Tpe4R3s=
Subject key identifier: 5D:C5:42:A3:6C:58:DA:26:00:B5:7C:CA:B6:70:E5:E7:1A:A6:02:EC
Authority key identifier: 13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
Certificate issuer: /CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Certificate serial: 01969D51405BB4E6116EEE745DB1F054B12E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
Manifest number: 151D
Signing time: Sun 04 May 2025 22:01:09 +0000
Manifest this update: Sun 04 May 2025 22:01:09 +0000
Manifest next update: Mon 05 May 2025 22:01:09 +0000
Files and hashes: 1: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl (hash: 0tP27FnLPC2we98+YKKoKngmTKXU4D7qigyRxwf0iAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:51:40:5b:b4:e6:11:6e:ee:74:5d:b1:f0:54:b1:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Validity
Not Before: May 4 22:01:09 2025 GMT
Not After : May 5 22:01:09 2025 GMT
Subject: CN=5dc542a36c58da2600b57ccab670e5e71aa602ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:0f:af:3c:62:e6:2f:cb:82:e6:72:d2:6b:
ea:55:f2:4b:1a:37:89:5c:65:47:2a:68:3c:af:21:
41:45:ad:08:b7:db:2a:7d:e1:91:2e:2b:1e:4c:ab:
43:07:c6:37:f7:10:56:4e:57:10:e5:e9:69:d6:4b:
76:e8:00:4a:1c:19:ca:3a:14:d9:32:27:00:d3:7b:
3e:ef:11:43:8b:9b:05:76:9e:6a:c9:a8:3d:78:1a:
5a:da:b1:b9:45:4f:27:81:73:0c:96:b7:e3:23:56:
02:fc:44:b9:17:de:56:1d:14:00:a1:d0:b7:31:0c:
5f:07:03:8d:21:62:0a:5c:b8:84:21:fa:d8:3c:fa:
55:21:54:97:67:f7:2e:c4:26:03:e4:21:e5:fa:80:
da:79:ec:0e:a8:66:d4:b1:58:1f:dc:f6:07:b5:d0:
c3:5a:18:4b:e4:07:59:ac:86:9d:c9:fb:c9:08:9b:
16:9b:a8:cf:f4:da:8e:68:f9:10:57:ac:92:87:58:
5b:cd:18:08:7c:1a:33:cc:aa:ae:f7:0d:0d:e4:34:
fb:db:96:19:4c:c9:b2:7e:b0:53:9c:a2:7f:78:99:
e0:be:ae:1f:b6:12:f4:fe:97:cc:b3:d2:45:68:73:
03:4f:5f:26:2f:28:e6:f8:7d:27:d1:97:10:b4:67:
a2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C5:42:A3:6C:58:DA:26:00:B5:7C:CA:B6:70:E5:E7:1A:A6:02:EC
X509v3 Authority Key Identifier:
keyid:13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:9f:c7:2a:68:79:aa:54:2e:86:10:9e:21:be:0a:3c:ca:c1:
18:90:c2:f3:21:6c:0e:ea:62:54:a5:6a:5d:89:fa:df:2f:7e:
8f:03:e1:10:67:70:53:78:6e:91:55:0b:0e:97:9b:15:16:c4:
24:e6:9a:c7:ce:af:e4:d8:56:3b:cd:c1:d7:2e:e3:5d:2b:c2:
9a:36:cb:d8:66:49:c1:2f:4c:da:bc:ef:13:0d:cd:23:79:dc:
3c:63:16:96:84:89:e5:f1:55:e3:79:8a:e3:63:59:33:49:85:
4f:70:65:4c:3b:c7:e4:88:ed:1c:48:78:de:fc:a5:04:41:82:
4c:3d:0d:6b:30:a5:71:6e:af:45:6f:0b:0f:4f:e9:9a:f6:b3:
08:70:25:d4:d1:bf:90:b4:33:fe:d3:ee:a7:cd:01:ba:33:83:
b7:87:f7:ea:78:52:dd:d9:50:e6:23:9b:48:a5:f4:d6:cd:e7:
1c:c7:87:3b:f8:cf:f6:3a:02:c9:a5:de:58:20:fb:14:4e:ee:
68:de:39:97:30:57:24:fe:fb:2b:9b:e8:85:20:5b:50:33:c8:
c0:8f:47:4e:e4:b8:4b:be:80:03:70:8b:f0:2e:00:52:db:a0:
3f:2c:ea:61:dc:e8:66:ca:b5:80:21:bd:cd:8d:e2:78:87:53:
23:08:45:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 05:25:25 2025 by rpki-client