Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: /OGEcvTIL+JZL1GLTBizIY8PHsPexn39xaqqqmqp+Mw=
Subject key identifier: 21:0D:5C:4D:C3:FF:33:34:28:26:08:48:7E:D9:DE:98:CD:13:FA:D8
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 0196B9A39AD011E2F43CD605896D7334CE42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 152E
Signing time: Sat 10 May 2025 10:00:29 +0000
Manifest this update: Sat 10 May 2025 10:00:29 +0000
Manifest next update: Sun 11 May 2025 10:00:29 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: fp6/Jq4zJ6ED7W3tqLiupdyrEVYOCdJkOaRwU5M99vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:9a:d0:11:e2:f4:3c:d6:05:89:6d:73:34:ce:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: May 10 10:00:29 2025 GMT
Not After : May 11 10:00:29 2025 GMT
Subject: CN=210d5c4dc3ff3334282608487ed9de98cd13fad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:19:43:8c:15:fd:fc:16:46:c1:a8:f2:3c:78:
c3:9b:90:bf:c2:e7:3b:e3:75:58:73:48:ac:ae:f1:
5e:fc:ae:b9:bf:c4:a4:a3:40:a2:32:e6:c6:f6:97:
88:ad:f9:52:47:3a:ef:5f:8d:bf:5c:6e:1d:9f:a5:
8d:ea:38:9f:90:fb:a7:49:bc:b6:28:0c:8f:6d:87:
56:0e:b3:a9:74:ea:1b:61:7c:6c:0c:0d:7b:f3:a5:
03:27:f3:38:7b:c8:4a:31:a3:94:e0:15:a7:ec:b1:
f8:f4:03:d7:45:67:9f:53:bc:81:48:3f:61:23:c9:
f5:dd:03:5f:39:4e:1d:cc:02:3b:c0:81:0d:fd:d7:
52:3f:71:23:0e:f2:e6:8a:cc:40:c8:3e:e4:32:6e:
9f:68:26:e4:b7:cf:14:ed:8a:3d:b0:e6:a6:c6:5b:
3b:f5:e9:98:21:0e:05:23:86:5a:5f:1e:cc:19:47:
fd:a3:43:ee:62:97:dc:be:e7:06:05:42:5e:31:b5:
95:51:79:63:0a:81:d4:27:b6:56:f3:23:d6:21:f7:
4e:55:20:f3:33:62:a7:1e:17:8a:2a:9f:8f:dc:fa:
c3:29:9d:0d:8b:6d:22:db:e9:ce:57:2a:cc:4b:54:
6c:d2:86:20:85:8f:69:6b:0c:36:3e:6a:13:cd:c0:
c2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0D:5C:4D:C3:FF:33:34:28:26:08:48:7E:D9:DE:98:CD:13:FA:D8
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:96:72:8a:a0:a9:69:dd:66:b2:33:e5:ba:4b:eb:70:ea:ab:
63:69:e0:85:3a:c1:a2:03:7e:6e:cb:50:4f:ce:36:60:49:e8:
2d:27:2b:75:4f:f7:2e:37:54:1c:71:18:79:58:32:f6:36:c0:
0f:4c:c5:d0:57:14:e3:5d:e1:6d:d8:79:5a:39:b1:3f:41:c1:
2a:ee:71:c4:33:dd:ce:71:f8:d9:9c:24:d0:1a:ed:55:7a:ef:
34:64:b8:0c:2f:ee:6c:9f:7b:2f:60:b2:4f:6e:64:00:93:8d:
ba:51:ff:f1:c3:67:a6:ac:cb:f5:d7:da:ff:20:fa:0c:36:87:
38:05:57:95:57:88:13:bc:a8:3f:5e:f6:ae:2c:9e:57:8d:32:
a2:fd:91:84:37:2d:d1:4a:89:3c:a8:8d:68:8a:0d:a1:41:5e:
a2:c7:e1:3e:0c:43:8d:93:59:df:fe:b2:8c:ed:a7:d2:bc:14:
57:07:7d:06:c0:d1:b7:8f:e4:68:cb:28:bb:4c:42:a7:44:bc:
a0:8f:cf:fa:fe:ed:58:37:8c:c0:58:e0:54:e4:52:30:3a:a4:
81:60:6e:29:95:bc:2c:6a:4d:7c:19:20:f6:33:3e:2c:a4:8c:
a4:52:c0:8b:97:11:a0:c0:34:89:b0:7d:08:29:5e:7e:60:1c:
74:48:09:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 15:12:46 2025 by rpki-client