Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.mft
File: pxJZNzLf_jheZ26QVodyMGza63I.mft (raw, json)
Hash identifier: uM86fK6FdCOnKJkmhWaIAe0EdqFvDEACTtm0xbARUac=
Subject key identifier: BF:3B:98:A3:CA:54:2F:13:F0:45:D2:74:7D:2B:C4:15:50:8E:9D:E0
Authority key identifier: A7:12:59:37:32:DF:FE:38:5E:67:6E:90:56:87:72:30:6C:DA:EB:72
Certificate issuer: /CN=a712593732dffe385e676e90568772306cdaeb72
Certificate serial: 019658020B2982920972724A4D3660F681F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxJZNzLf_jheZ26QVodyMGza63I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.mft
Manifest number: 1154
Signing time: Mon 21 Apr 2025 11:00:51 +0000
Manifest this update: Mon 21 Apr 2025 11:00:51 +0000
Manifest next update: Tue 22 Apr 2025 11:00:51 +0000
Files and hashes: 1: oMRtMf47yIPyY9ZdrVPhNi3G3eo.roa (hash: 4EnKsD8A0kDOzresfp2Oy03JKmata0Bf/rsbX3H3xdM=)
2: pxJZNzLf_jheZ26QVodyMGza63I.crl (hash: RFfQBqjV1Gd4eqsnxjQPSidUzfApyQsOdIM8wfw5UG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxJZNzLf_jheZ26QVodyMGza63I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:0b:29:82:92:09:72:72:4a:4d:36:60:f6:81:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a712593732dffe385e676e90568772306cdaeb72
Validity
Not Before: Apr 21 11:00:51 2025 GMT
Not After : Apr 22 11:00:51 2025 GMT
Subject: CN=bf3b98a3ca542f13f045d2747d2bc415508e9de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9c:42:07:35:21:a8:05:79:e7:ea:67:4f:19:
c1:c7:6d:2b:17:28:af:98:6e:bc:0b:0f:01:92:5b:
23:8d:b1:99:e4:a3:39:a3:6c:66:ee:c7:0a:9d:46:
8c:dd:50:84:b6:c7:11:08:e5:07:d7:1e:ce:f5:eb:
02:59:6a:9c:12:73:4d:a9:87:70:0c:89:45:34:16:
7f:8f:08:9b:63:54:5e:8f:4e:70:84:a2:62:c3:98:
54:e5:be:9a:57:bf:29:6d:b3:a6:40:23:f1:56:c7:
3d:b6:1a:27:05:aa:d5:7f:33:39:4e:be:76:00:81:
10:ea:6f:f1:b8:31:0b:b3:41:20:2d:ce:f6:a1:78:
be:5c:c4:71:c6:1c:1b:e2:6b:bb:46:11:d0:6a:13:
82:44:df:69:de:cb:d2:e3:4a:e6:da:cd:bb:f1:17:
f5:9a:31:4c:2e:4b:03:66:65:48:95:a2:0e:08:09:
c3:2e:bd:b1:e2:33:b3:3a:95:73:14:d3:49:3e:7e:
8d:8c:fe:a8:ce:82:77:1d:0c:21:9d:3c:78:35:bc:
32:ce:be:6e:a0:e1:c1:6d:4f:cc:60:2c:36:6c:e1:
81:58:23:35:13:4c:19:53:dd:51:75:07:03:d5:55:
55:1a:ef:2f:78:d3:cc:53:2d:a8:2f:9d:d8:14:42:
5c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3B:98:A3:CA:54:2F:13:F0:45:D2:74:7D:2B:C4:15:50:8E:9D:E0
X509v3 Authority Key Identifier:
keyid:A7:12:59:37:32:DF:FE:38:5E:67:6E:90:56:87:72:30:6C:DA:EB:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxJZNzLf_jheZ26QVodyMGza63I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2119ab-2f0a-451e-b3fa-98db4d5cdb33/1/pxJZNzLf_jheZ26QVodyMGza63I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:19:07:ce:9b:ac:fc:b5:39:d7:21:74:06:51:ed:ee:95:5f:
30:01:ef:6e:52:cc:fe:7c:1f:31:20:c9:ca:6b:53:d4:53:20:
43:19:db:40:5a:4f:f2:4b:a4:10:4b:16:0d:b2:4e:08:08:73:
1e:d0:15:eb:5f:3d:56:df:38:05:54:04:75:f6:41:63:82:75:
fd:60:cc:24:39:c1:72:7d:95:5c:e0:e4:44:66:01:f3:68:d0:
3d:1e:fd:c7:43:60:f4:38:a6:9a:ba:c8:05:a8:fb:ec:00:b3:
f5:87:b9:fc:b0:f0:a7:75:c3:95:40:af:c1:1e:66:af:5c:8d:
2f:36:ab:55:47:92:c4:b9:f8:dc:94:59:d5:e1:2e:26:09:55:
c2:f4:bb:d7:71:7e:c6:6a:9f:31:50:13:41:6a:f1:68:a4:10:
32:2b:31:42:98:d6:7a:3e:c5:fa:2b:47:6a:76:2f:73:b3:0f:
34:d2:79:6c:ea:fc:5f:9e:02:34:62:1e:fb:99:24:25:f3:d6:
ae:12:97:64:27:22:f4:1f:8f:65:e5:19:8b:ed:fd:00:ca:20:
f9:13:18:25:25:9c:53:57:d4:5f:33:26:d7:97:a9:3f:a7:00:
d2:42:6b:fa:a3:22:b4:b9:aa:91:e6:38:76:9d:53:5f:38:f4:
17:94:ea:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZYAgspgpIJcnJKTTZg9oHyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3MTI1OTM3MzJkZmZlMzg1ZTY3NmU5MDU2ODc3MjMwNmNk
YWViNzIwHhcNMjUwNDIxMTEwMDUxWhcNMjUwNDIyMTEwMDUxWjAzMTEwLwYDVQQD
EyhiZjNiOThhM2NhNTQyZjEzZjA0NWQyNzQ3ZDJiYzQxNTUwOGU5ZGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5xCBzUhqAV55+pnTxnBx20rFyiv
mG68Cw8BklsjjbGZ5KM5o2xm7scKnUaM3VCEtscRCOUH1x7O9esCWWqcEnNNqYdw
DIlFNBZ/jwibY1Rej05whKJiw5hU5b6aV78pbbOmQCPxVsc9thonBarVfzM5Tr52
AIEQ6m/xuDELs0EgLc72oXi+XMRxxhwb4mu7RhHQahOCRN9p3svS40rm2s278Rf1
mjFMLksDZmVIlaIOCAnDLr2x4jOzOpVzFNNJPn6NjP6ozoJ3HQwhnTx4Nbwyzr5u
oOHBbU/MYCw2bOGBWCM1E0wZU91RdQcD1VVVGu8veNPMUy2oL53YFEJcwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL87mKPKVC8T8EXSdH0rxBVQjp3gMB8GA1UdIwQY
MBaAFKcSWTcy3/44XmdukFaHcjBs2utyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHhKWk56TGZfamhlWjI2UVZvZHlNR3phNjNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMTE5YWItMmYwYS00NTFlLWIzZmEt
OThkYjRkNWNkYjMzLzEvcHhKWk56TGZfamhlWjI2UVZvZHlNR3phNjNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMTE5YWItMmYwYS00NTFlLWIzZmEtOThkYjRkNWNkYjMz
LzEvcHhKWk56TGZfamhlWjI2UVZvZHlNR3phNjNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZxkHzpus
/LU51yF0BlHt7pVfMAHvblLM/nwfMSDJymtT1FMgQxnbQFpP8kukEEsWDbJOCAhz
HtAV6189Vt84BVQEdfZBY4J1/WDMJDnBcn2VXODkRGYB82jQPR79x0Ng9DimmrrI
Baj77ACz9Ye5/LDwp3XDlUCvwR5mr1yNLzarVUeSxLn43JRZ1eEuJglVwvS713F+
xmqfMVATQWrxaKQQMisxQpjWej7F+itHanYvc7MPNNJ5bOr8X54CNGIe+5kkJfPW
rhKXZCci9B+PZeUZi+39AMog+RMYJSWcU1fUXzMm15epP6cA0kJr+qMitLmqkeY4
dp1TXzj0F5TqaQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:03:19 2025 by rpki-client