Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
File: OpzyvclyZDBARldYsyWap8kubhw.mft (raw, json)
Hash identifier: YR8VFEIJMWATq24DxC8An/IZSQuCUbbdq5I6s5Sx/tM=
Subject key identifier: 79:F8:51:9B:37:ED:73:94:1A:FB:CB:9F:A8:A7:B2:79:27:2F:40:F7
Authority key identifier: 3A:9C:F2:BD:C9:72:64:30:40:46:57:58:B3:25:9A:A7:C9:2E:6E:1C
Certificate issuer: /CN=3a9cf2bdc972643040465758b3259aa7c92e6e1c
Certificate serial: 0196748BF1C364FF93EB093670E655F14C33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
Manifest number: 1509
Signing time: Sun 27 Apr 2025 00:00:50 +0000
Manifest this update: Sun 27 Apr 2025 00:00:50 +0000
Manifest next update: Mon 28 Apr 2025 00:00:50 +0000
Files and hashes: 1: OpzyvclyZDBARldYsyWap8kubhw.crl (hash: u53CRa2G/05TLpI/lxbVQysjPBq6/GH0AI2bgERy3BY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:f1:c3:64:ff:93:eb:09:36:70:e6:55:f1:4c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a9cf2bdc972643040465758b3259aa7c92e6e1c
Validity
Not Before: Apr 27 00:00:50 2025 GMT
Not After : Apr 28 00:00:50 2025 GMT
Subject: CN=79f8519b37ed73941afbcb9fa8a7b279272f40f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f4:96:ca:ad:de:e9:92:fe:96:e1:81:52:72:
cf:2f:d9:7e:5b:63:0d:a2:68:9b:ae:0b:c8:11:48:
e4:b4:5d:3d:a0:13:7f:b1:15:dc:38:e0:35:ea:10:
35:e7:0c:1f:05:84:91:85:cf:b4:d7:71:4d:6a:ed:
36:4f:1b:c7:f0:6e:c9:4b:a6:56:0e:04:c7:2a:9b:
ab:ee:ea:ae:17:1e:d9:e8:07:09:bc:42:4c:c0:e8:
a0:d8:dd:63:2d:bc:99:1e:01:da:b1:6a:a1:41:7b:
45:2a:a0:8a:3f:e1:7c:af:64:2b:c2:16:17:8e:cb:
1c:da:53:f9:b6:f9:c9:2d:11:65:b8:e5:e6:a2:d3:
50:37:7d:85:48:02:4e:53:f4:b5:b5:25:ee:2d:10:
34:7d:b6:fe:a5:88:45:b1:10:0d:ad:13:38:7a:49:
78:7d:af:f5:10:6a:d8:26:af:7a:bd:ef:bc:84:ce:
ea:4c:2e:b9:5b:be:0d:c4:b0:1a:9b:57:4b:8f:cf:
38:a7:c5:b4:88:83:38:76:2a:08:1f:48:5d:23:8a:
7a:24:b7:b1:5d:88:41:59:f1:2c:c6:28:7d:5a:b5:
c0:0a:a0:7b:de:5b:b6:9e:1d:ee:30:93:f8:f1:50:
34:fa:a0:df:6d:c6:d0:33:61:d0:42:ff:a4:59:37:
1c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F8:51:9B:37:ED:73:94:1A:FB:CB:9F:A8:A7:B2:79:27:2F:40:F7
X509v3 Authority Key Identifier:
keyid:3A:9C:F2:BD:C9:72:64:30:40:46:57:58:B3:25:9A:A7:C9:2E:6E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:18:31:71:06:26:76:21:5f:72:43:65:6a:7d:23:06:ca:63:
21:17:c5:e3:06:b9:79:aa:e8:4b:ae:77:d9:ea:89:9c:da:25:
c4:72:da:53:c2:9f:90:e3:9e:a3:9d:55:b6:13:17:a9:d9:32:
c3:40:34:5d:bf:db:2a:70:bf:8d:88:10:f1:fa:c4:f8:0c:dc:
c8:25:8a:f3:52:5a:d5:77:86:ed:44:03:7a:61:76:41:7a:ce:
1f:9b:58:c7:97:5a:f1:72:5b:eb:8c:6e:10:69:4b:ee:24:dc:
75:3e:b6:92:9d:45:fd:4f:3f:ab:07:84:e7:22:e8:4d:9d:15:
08:09:d1:8f:37:da:e0:9e:64:1b:a3:89:37:14:67:1a:4c:1f:
88:6f:15:54:3b:09:7e:46:35:5c:45:02:df:86:9e:8a:ee:f4:
6b:96:33:69:49:45:8b:d6:ee:cd:a9:c8:f4:cc:db:4c:dc:db:
44:47:d3:e7:56:a9:35:89:11:8f:0e:ca:e3:6d:a7:9a:82:f2:
42:c9:39:4f:28:22:92:b4:32:5f:d3:e2:43:aa:e7:c5:ba:1e:
6a:66:d3:9c:d9:f8:1d:6a:10:9d:e5:e2:fc:36:c8:ba:aa:2c:
b1:59:05:eb:ad:5f:11:43:7e:d8:34:e4:75:09:3b:d1:00:ed:
54:d3:a8:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:52:29 2025 by rpki-client