Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
File: zQwDKJL2la9ME_sKyoBD0Xsbl78.mft (raw, json)
Hash identifier: XnHpmvVY+nrJAb0ww4nh2ChYjZVRzOYvwg7CcrUc5UA=
Subject key identifier: DF:45:DA:FF:A1:00:49:74:5C:72:D7:DF:42:87:E5:B5:7B:6E:55:0F
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 019676E7BD9E99AA59C52D1F1E276988FE79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
Manifest number: 08B1
Signing time: Sun 27 Apr 2025 11:00:20 +0000
Manifest this update: Sun 27 Apr 2025 11:00:20 +0000
Manifest next update: Mon 28 Apr 2025 11:00:20 +0000
Files and hashes: 1: zQwDKJL2la9ME_sKyoBD0Xsbl78.crl (hash: LCu/9G8VS8x1OQxenATD4v/zBwlqhMp667PHsS5HBHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:bd:9e:99:aa:59:c5:2d:1f:1e:27:69:88:fe:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Apr 27 11:00:20 2025 GMT
Not After : Apr 28 11:00:20 2025 GMT
Subject: CN=df45daffa10049745c72d7df4287e5b57b6e550f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:78:ef:f7:99:5f:ab:9a:5e:80:35:87:8a:c6:
b4:31:cf:b9:41:a8:96:e0:95:c2:43:d9:70:95:3f:
92:d3:9a:52:d1:77:73:34:3b:ba:3e:94:d9:85:9a:
34:50:df:d6:ee:69:fb:22:32:7c:52:5a:a0:ff:6e:
91:e6:37:6f:d8:00:27:20:fc:83:74:02:25:af:0b:
d4:67:70:a2:b3:03:b4:a5:a8:11:e7:81:f5:c2:d5:
c3:2d:ad:88:e0:29:74:c0:32:7f:1d:bd:37:73:aa:
d1:29:84:bc:e6:8d:d3:2d:cc:b7:a4:ab:c5:8c:f0:
39:3f:0a:3c:78:a6:25:e7:a4:8d:c0:64:17:10:40:
a5:e0:2f:05:74:87:66:5d:c0:3c:88:74:48:b5:84:
17:04:4b:28:76:2e:66:e3:71:d4:e5:ba:e0:0c:1c:
64:9b:c9:7c:9e:83:05:24:b7:ed:40:36:0b:fc:51:
7f:a6:be:96:bc:2e:98:b5:69:f8:30:98:6c:ae:10:
f2:fd:fb:48:3e:24:c0:c4:93:b7:b6:dd:82:4b:9e:
c7:06:26:2d:a7:c4:4a:30:0c:13:62:53:61:f7:7e:
64:e3:42:a5:ff:c7:dc:a7:b6:7c:13:cc:92:f2:5a:
ff:9c:1f:01:88:d2:38:c3:04:29:39:26:6b:b1:a5:
6f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:45:DA:FF:A1:00:49:74:5C:72:D7:DF:42:87:E5:B5:7B:6E:55:0F
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6c:f3:81:c0:07:8e:52:1f:80:ca:f9:6a:0b:d1:f6:b3:a0:
5b:71:6e:b7:1a:de:10:bd:60:cf:b7:86:4c:fe:96:4d:87:97:
3c:f4:0a:3c:7b:fc:2a:b5:cd:a9:3e:44:51:1d:7a:6f:80:4c:
87:42:96:27:02:51:18:ae:54:75:53:ea:86:ac:ad:77:9d:75:
41:c7:c9:ec:b2:11:96:7f:70:75:a4:e4:ae:e5:a1:ac:ef:1b:
b4:0a:83:f2:04:6b:ce:ea:f2:ef:44:5f:27:ba:64:65:c4:c0:
58:71:6b:b4:99:9f:8d:68:b9:ab:a0:ef:50:db:d2:8d:9f:66:
f7:47:f2:5c:7e:c1:f7:0d:88:7c:49:14:9b:ab:c3:0b:78:6b:
1e:6c:64:fb:5a:37:83:60:57:2c:cf:9d:94:29:9f:c6:3d:be:
4e:64:e9:d1:33:3d:37:b4:04:78:38:c6:a0:7a:41:fb:b0:d9:
84:c1:c8:14:d8:57:56:d1:0b:22:b5:68:b9:cb:e4:c7:07:f0:
e6:e1:ed:f5:36:93:9f:dd:03:71:dd:70:e2:b9:c7:a4:47:fd:
c3:54:6b:fd:1f:22:0f:89:22:33:ca:65:ac:19:98:59:b6:75:
fc:5f:33:07:d8:0e:a3:a6:8e:12:16:0f:fe:3e:1e:bd:22:b1:
4d:df:a7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:59:52 2025 by rpki-client