Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: wHaXxFClRzVcQQhSyNoPHY+oVrP2xtru7CyjA0BEh8A=
Subject key identifier: 4F:2B:5B:63:69:3B:45:DA:3A:6A:39:3F:3A:34:BC:9B:AD:37:27:2C
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019677FACA4DB1E5F3B04D89183A2D486F64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 150C
Signing time: Sun 27 Apr 2025 16:00:46 +0000
Manifest this update: Sun 27 Apr 2025 16:00:46 +0000
Manifest next update: Mon 28 Apr 2025 16:00:46 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: cCM6aOZrTer2KwqCzYd7zbvk1zt9DhVrAPnJbDfIqyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:ca:4d:b1:e5:f3:b0:4d:89:18:3a:2d:48:6f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Apr 27 16:00:46 2025 GMT
Not After : Apr 28 16:00:46 2025 GMT
Subject: CN=4f2b5b63693b45da3a6a393f3a34bc9bad37272c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1b:d1:26:37:66:db:08:75:cb:ab:98:81:da:
89:3b:4d:56:63:72:ab:5b:7f:b2:3d:e9:d6:4a:95:
7e:f3:2a:2c:30:43:c4:d1:95:9e:99:89:6b:0b:14:
da:0b:ef:d7:a9:a7:8e:5e:17:95:03:f2:e1:ef:82:
fe:03:c6:5c:d6:89:b4:9b:55:cf:44:e5:a2:64:6a:
6f:a2:36:7c:a1:70:60:e9:64:c3:69:14:c5:a7:05:
5f:a5:06:0e:1f:0b:43:e5:43:bc:22:93:9e:4e:c6:
1e:72:df:aa:19:50:39:2f:3d:f8:0e:ae:cc:dc:d5:
65:13:0c:cc:50:65:9e:6f:96:d3:cd:19:e0:46:d2:
09:b2:ca:b8:47:17:14:de:3b:7c:d2:35:86:03:31:
68:00:72:47:0a:22:81:ef:d2:08:04:d6:77:aa:72:
0e:0e:5e:af:4b:24:56:5d:16:6f:e0:4c:52:d9:9a:
be:92:0e:e6:f2:ac:da:99:a9:f1:d8:03:31:e7:51:
37:e7:51:94:47:37:3c:3a:a6:f1:55:30:22:46:21:
41:d7:fd:0a:4d:ad:2d:67:ca:38:50:2b:74:88:a6:
f2:80:9b:8b:0f:8c:53:50:40:05:1a:d0:96:69:15:
72:d4:65:f9:e2:7c:db:36:e4:c1:24:2a:38:2f:06:
0a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2B:5B:63:69:3B:45:DA:3A:6A:39:3F:3A:34:BC:9B:AD:37:27:2C
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:10:27:d4:5f:4c:7c:fb:c0:56:32:e2:28:53:2a:6e:7d:86:
59:ff:42:d9:71:ac:e4:a9:9d:ab:48:91:1c:a4:f9:2f:9f:a8:
2c:fe:97:86:96:42:51:ab:08:be:39:63:73:fb:c0:9a:9d:1c:
0f:ce:9c:2e:b9:63:83:59:6d:12:c4:0f:be:c3:9b:28:49:3f:
1c:fb:45:a1:a6:98:76:bc:95:37:c1:f4:57:02:23:32:a3:fa:
00:73:60:d6:6b:49:b1:2a:59:d6:28:7e:d4:ba:a2:cd:32:0e:
b6:87:26:36:08:80:5a:02:05:96:d6:93:0b:1e:c7:9f:5e:8c:
aa:ec:fc:6c:8c:ff:95:31:f7:eb:be:e9:6f:0d:60:c0:82:d1:
0e:c4:68:3c:74:fc:8c:fd:98:f2:7a:8a:98:49:6a:94:09:56:
e8:76:07:cb:ca:64:21:ad:1a:d1:7f:d6:ff:96:1d:99:fb:67:
c1:91:01:6d:c5:f1:42:ce:4f:e3:0a:d3:dd:2e:c3:4d:2e:e7:
a5:ef:7a:8b:03:57:6d:76:75:44:84:35:03:31:3a:92:87:84:
72:3e:9c:b7:49:9b:65:73:72:73:20:81:f7:3a:9b:db:2b:14:
61:ba:dc:b6:2e:03:95:1d:a1:12:72:f9:99:44:19:fe:4a:e4:
53:e7:e7:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:05:15 2025 by rpki-client