Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
File: sgzLpAbArQxb4AB22ZgLNIhWmoo.mft (raw, json)
Hash identifier: EbpQKmWEJZQdc8W551OtwAg1G7ic1pmr2CkuHQ4XoPs=
Subject key identifier: EF:61:2F:F3:2D:49:D8:85:AE:3F:B6:B3:C8:83:E6:70:9D:4A:8A:D4
Authority key identifier: B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A
Certificate issuer: /CN=b20ccba406c0ad0c5be00076d9980b3488569a8a
Certificate serial: 01976F2C09BFD5E64D49D6DCE16DDFE41BB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
Manifest number: 1075
Signing time: Sat 14 Jun 2025 16:00:46 +0000
Manifest this update: Sat 14 Jun 2025 16:00:46 +0000
Manifest next update: Sun 15 Jun 2025 16:00:46 +0000
Files and hashes: 1: sgzLpAbArQxb4AB22ZgLNIhWmoo.crl (hash: nzSu2o5PXqBe23awgjhN2JpRaoE0kkmXUvOn5AgMGR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2c:09:bf:d5:e6:4d:49:d6:dc:e1:6d:df:e4:1b:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20ccba406c0ad0c5be00076d9980b3488569a8a
Validity
Not Before: Jun 14 16:00:46 2025 GMT
Not After : Jun 15 16:00:46 2025 GMT
Subject: CN=ef612ff32d49d885ae3fb6b3c883e6709d4a8ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3a:cb:3e:f7:9e:5d:b2:f2:c9:bf:28:f7:54:
ae:c7:f2:ca:6a:bd:85:b8:73:35:69:14:b5:80:59:
fa:b3:53:89:f4:06:b4:bd:86:b8:1f:18:7d:03:b0:
32:d5:af:2b:2a:44:84:76:90:97:bb:63:70:dd:2a:
f0:cd:5a:fc:2d:da:6c:84:49:76:1e:92:4a:a4:c1:
d6:73:83:8b:37:cc:51:ec:d8:c6:1b:ed:6b:c4:0d:
05:62:96:1c:8d:55:6d:24:3b:8b:36:32:1e:1f:7b:
33:e5:85:a3:fe:d9:38:5d:53:36:05:76:49:ba:a0:
37:1e:3d:df:59:22:9a:5b:4a:12:77:6a:0d:66:cf:
52:a1:fb:7e:8f:f1:f3:65:0b:c1:f6:5f:a8:12:21:
1d:ce:a5:16:bc:16:5d:47:ff:59:d7:0c:a8:35:90:
b0:e8:03:7a:e5:98:10:92:d3:b3:e8:b4:11:ed:b7:
4d:58:21:9b:32:e5:b8:c8:a0:fe:d5:81:5d:da:2f:
30:87:ff:22:9c:96:a5:1b:45:2f:fb:27:9c:b1:18:
b2:f6:11:03:7e:50:3e:35:a4:76:7c:c7:7a:ff:8b:
b0:64:ba:7e:ad:e9:bb:9f:04:06:3d:50:46:e6:c7:
9c:60:0b:ec:10:d5:b8:7c:85:e7:59:f4:4d:52:c9:
61:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:61:2F:F3:2D:49:D8:85:AE:3F:B6:B3:C8:83:E6:70:9D:4A:8A:D4
X509v3 Authority Key Identifier:
keyid:B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:db:a3:82:ca:df:54:4c:9a:af:22:02:12:e1:54:1c:80:16:
17:a0:4b:e1:dc:98:4a:fa:1d:0c:2a:a3:bb:35:6c:25:e8:ee:
2a:27:6e:2f:d9:5a:e5:88:03:fb:7f:0d:cb:0d:42:60:d0:88:
4f:d6:20:69:85:84:2b:b0:86:40:b1:22:cf:90:0f:73:2d:dc:
51:a9:c7:13:e4:a9:11:b9:11:31:52:bf:62:ae:03:8e:33:08:
e7:bf:22:23:7e:7c:f1:da:cb:61:60:55:cb:60:53:78:e3:43:
0e:25:98:00:f3:cf:2a:3b:1e:71:78:22:a0:a5:0e:ee:56:54:
1c:f0:ed:3a:03:b4:50:a2:e5:d8:63:21:f9:b5:e2:42:65:8c:
1b:4b:ea:98:b7:12:9c:d9:5d:5d:ef:94:7a:32:35:3e:82:e5:
17:c3:b6:a5:ba:16:8b:a6:b4:84:b4:fa:9d:95:f7:2e:bb:4e:
15:ea:5e:a8:31:6b:ea:17:54:10:a2:cb:5d:f8:fc:7c:ac:d6:
dc:6a:5e:7a:1c:7a:58:46:42:6e:55:0f:7e:02:56:8e:49:99:
91:e3:8d:b8:0e:15:a7:30:bd:43:21:91:76:99:76:1a:8f:dd:
8a:99:5f:06:af:48:02:a8:42:c5:af:c5:5d:bd:29:63:f4:5e:
f7:b4:cc:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:06:53 2025 by rpki-client