Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: RCz93nFXo81q2WDZvq3EIX/rRD+uoJogsh87pCV8xss=
Subject key identifier: AB:B2:6F:C5:BB:F7:5E:E8:B2:F5:1A:55:0A:89:B7:B7:C6:95:FC:E1
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 019682473880BDE1A0AC2D45F9027D8DBB91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 08B5
Signing time: Tue 29 Apr 2025 16:00:27 +0000
Manifest this update: Tue 29 Apr 2025 16:00:27 +0000
Manifest next update: Wed 30 Apr 2025 16:00:27 +0000
Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: W/SkOxg3xZ3s5oP0uYE8mCnfYawq6h+bgHgBX8uEKPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:47:38:80:bd:e1:a0:ac:2d:45:f9:02:7d:8d:bb:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Apr 29 16:00:27 2025 GMT
Not After : Apr 30 16:00:27 2025 GMT
Subject: CN=abb26fc5bbf75ee8b2f51a550a89b7b7c695fce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:76:88:d9:60:ca:6b:7b:83:44:8d:7f:7b:79:
c6:7e:ba:48:41:3f:ee:14:de:8e:58:56:80:bc:a6:
75:6e:c2:2f:f3:e3:aa:c2:ae:a4:48:2d:cb:fd:a4:
3c:06:de:6c:10:0e:13:7c:e1:41:d2:db:05:5c:55:
7a:35:ca:3d:25:c7:4e:c7:4b:d1:00:97:81:77:f2:
ca:66:36:dd:3a:16:9f:72:8c:3d:09:f2:47:a7:db:
48:f1:12:a4:72:ac:db:72:57:58:62:b4:8c:af:60:
92:c3:63:02:aa:61:11:9a:fe:a4:0f:3c:84:87:44:
9a:25:3b:f8:51:ad:41:b9:df:c7:b7:f1:b1:58:a2:
77:b4:cd:1b:01:fd:3c:69:59:c3:d5:8b:09:fd:11:
b1:4e:78:63:0e:e8:8a:49:30:f2:3d:a7:8a:4c:ea:
38:42:69:d3:4f:57:4e:e6:16:60:99:a3:bd:bd:57:
00:bf:e5:28:52:e3:85:fb:2d:12:0b:f5:59:0d:f4:
c6:61:ee:59:89:27:98:83:34:81:6f:2b:80:ce:d5:
ae:1c:15:86:db:9b:af:dd:15:6c:a1:f5:e5:dc:0f:
68:b8:81:9c:5f:d4:bb:14:22:4f:6e:7f:d6:e9:7f:
fe:5d:26:8d:b6:ff:ee:f3:7f:17:75:6f:e6:87:a7:
4c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B2:6F:C5:BB:F7:5E:E8:B2:F5:1A:55:0A:89:B7:B7:C6:95:FC:E1
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:13:6e:78:7f:95:4b:9e:2e:44:ba:57:57:60:4c:5f:00:f5:
cb:b0:bc:30:cc:3e:af:b3:7a:f2:d2:90:93:9f:b3:74:3b:60:
fa:15:a5:b6:9d:d3:21:bf:67:3f:ae:ad:5c:59:e4:a1:d4:a3:
bb:c3:e8:57:87:67:79:35:54:c6:59:c4:27:1b:26:01:0b:60:
90:b6:5e:9d:f3:54:55:b0:77:4e:bb:02:85:1c:4c:2c:3b:ea:
cb:c6:e3:61:83:44:f2:a8:ae:5d:1e:1b:b7:1d:c2:f6:fe:23:
bb:cf:82:82:d9:e3:fb:83:f5:86:a3:7a:c2:9e:9e:09:41:bf:
96:26:43:6f:f1:b6:2a:67:4e:1a:a9:06:fd:10:f3:f8:84:44:
cd:80:74:8c:84:dd:13:e0:0d:ab:fc:42:19:cb:89:cf:a5:49:
13:f6:1c:73:82:35:f7:22:6c:ea:d1:43:98:5b:5e:90:20:39:
e3:de:be:ed:09:79:c8:1d:1f:94:64:13:45:8e:99:b7:8e:78:
23:05:cd:02:89:95:4a:16:c5:0f:ad:3a:80:63:f6:f3:4b:ea:
62:be:67:41:68:30:89:76:00:c5:17:16:aa:47:76:a2:12:9f:
5c:32:53:94:62:bf:7d:5a:6f:aa:53:d1:e0:ae:7c:3e:e4:95:
31:ca:24:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:11:26 2025 by rpki-client