Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json)
Hash identifier: HDxTAeSGvQ9s1iGXPBlJ/adTH4ACT+xzJ7cmodsKv1I=
Subject key identifier: AD:1C:D2:2B:BA:C8:C1:F5:AD:BF:F1:F9:0F:4A:67:1E:05:01:2C:BF
Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711
Certificate serial: 01967643001417B27BD434CA72DF7508B693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 08:00:24 +0000
Manifest this update: Sun 27 Apr 2025 08:00:24 +0000
Manifest next update: Mon 28 Apr 2025 08:00:24 +0000
Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: KR2LmpKmrgKmiBa8O+doExwzbxAPX/+LrDRxvYsLDG8=)
2: v5B9bil7tlbUN50h6GDN8m6sKFE.roa (hash: 47YbpbDGbrGPtLvV/Gf30olGqwG6mqrNB3XSB3G5VQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:00:14:17:b2:7b:d4:34:ca:72:df:75:08:b6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711
Validity
Not Before: Apr 27 08:00:24 2025 GMT
Not After : Apr 28 08:00:24 2025 GMT
Subject: CN=ad1cd22bbac8c1f5adbff1f90f4a671e05012cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:38:a5:4b:83:f8:be:a3:73:80:9f:82:d5:31:
1f:a6:ad:3a:de:39:88:36:d3:36:ac:98:e9:f4:fe:
85:b3:d9:3c:41:9a:9e:b3:d1:1a:d2:c9:d1:9b:1b:
96:64:52:2b:cc:c1:5d:93:79:0e:f0:51:11:1a:11:
22:ad:bd:67:e8:42:61:6d:b2:8b:a0:80:7c:c1:58:
76:61:5d:b4:b9:e9:4f:1f:69:15:13:df:4f:db:82:
82:c3:b6:09:57:43:ea:21:b6:3e:c8:dc:eb:fe:5a:
1b:2d:61:a6:60:44:3b:7d:0c:a4:1a:ad:01:e5:27:
d7:76:62:e2:1f:2b:c6:9a:9d:5b:21:52:9f:29:fa:
00:31:b1:0b:51:3b:3d:07:99:3b:37:e7:f7:a9:0b:
c4:2e:f2:a6:5b:d3:2a:1d:e8:d3:72:85:ea:37:c9:
bd:18:35:5d:80:41:69:06:66:e1:b7:90:3a:63:b8:
ac:fd:9a:2d:e8:ce:93:4f:a7:38:e0:36:1b:24:aa:
74:2e:ac:bc:49:20:0b:b6:79:4e:2c:a7:4c:25:63:
69:cb:1a:55:24:b1:b9:4a:64:61:e7:ed:0a:68:bb:
f6:fd:a9:e6:38:eb:3d:78:c7:c6:d8:04:b5:28:72:
1a:9d:ad:46:4b:4c:f8:8b:09:e9:55:26:ad:c6:25:
ba:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1C:D2:2B:BA:C8:C1:F5:AD:BF:F1:F9:0F:4A:67:1E:05:01:2C:BF
X509v3 Authority Key Identifier:
keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:11:4a:17:eb:f4:0b:9d:e0:c3:13:b2:b3:4e:d3:3a:85:0a:
95:45:ce:f7:c4:bb:5c:78:fd:08:70:4c:a4:ed:72:67:4c:02:
c5:d6:5a:a5:69:50:9d:e5:92:5c:fe:a9:a0:da:c7:09:7a:de:
c2:a2:58:39:8c:2d:d6:f5:08:9c:a9:9b:10:98:94:98:fb:83:
a9:5f:d5:be:f1:27:de:da:ca:58:2d:da:92:32:4a:e4:4c:5e:
82:88:a5:e9:0a:82:b2:e9:fd:85:1e:fb:07:06:5a:c6:19:44:
cf:d7:6a:05:94:c8:bd:30:88:6f:be:a1:e7:e3:24:9e:b3:ba:
5e:16:d5:6a:22:e3:83:4f:5f:1f:87:bf:e0:f2:83:88:c7:44:
1e:68:92:50:6a:1e:93:32:6b:51:67:1b:f9:61:59:dc:28:b9:
6e:75:6f:91:ce:b8:c3:da:ab:db:41:14:f7:7d:b2:12:d0:b9:
4a:cc:c9:7f:62:c7:7a:48:e5:38:4b:0b:af:ab:f7:a7:2c:85:
cb:3f:0a:1b:65:c2:ee:2a:04:66:ca:13:92:e1:17:0e:84:1b:
31:ba:bc:11:61:e9:8e:87:ef:6a:2a:a5:26:74:de:a9:cd:0e:
b8:c1:11:51:9a:f2:8b:cc:f0:a4:da:0c:ff:f6:2d:12:4e:27:
36:88:6d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:27:44 2025 by rpki-client