Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
File: PnFWq-5roji5BzFd-cVShlrc2ug.mft (raw, json)
Hash identifier: 2kZvvkltvyMmojwG1LZVPsNZS6a4tbvHX2J5MgZ5l8k=
Subject key identifier: F7:66:ED:24:25:F2:E5:19:1E:37:77:CC:A4:B1:16:9B:0B:A2:4B:C5
Authority key identifier: 3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
Certificate issuer: /CN=3e7156abee6ba238b907315df9c552865adcdae8
Certificate serial: 01965613E5A8504D149DF6473CA45A80AA22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
Manifest number: 076F
Signing time: Mon 21 Apr 2025 02:01:06 +0000
Manifest this update: Mon 21 Apr 2025 02:01:06 +0000
Manifest next update: Tue 22 Apr 2025 02:01:06 +0000
Files and hashes: 1: PnFWq-5roji5BzFd-cVShlrc2ug.crl (hash: zCuOl85pgIgQXdccz8XzeM9y/FNuV3v2zr14rp+silo=)
2: vDazkPOiPtoCYetZfRX-qpQ69j8.roa (hash: B0GK+5WaWwtXf0DhRaPxfP/Ak+Di2Wr89zC0Jym0UK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:e5:a8:50:4d:14:9d:f6:47:3c:a4:5a:80:aa:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7156abee6ba238b907315df9c552865adcdae8
Validity
Not Before: Apr 21 02:01:06 2025 GMT
Not After : Apr 22 02:01:06 2025 GMT
Subject: CN=f766ed2425f2e5191e3777cca4b1169b0ba24bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c2:52:f9:94:e7:f8:ef:48:34:2b:44:98:aa:
e0:2e:95:49:1f:4c:44:2c:07:37:54:e1:ec:21:c4:
70:0d:de:06:29:ef:e1:76:39:be:62:cf:bd:45:d3:
35:e2:4b:b7:f1:cb:c0:16:39:d4:5b:51:b7:16:54:
64:52:5c:a7:e2:ca:92:49:45:35:9b:f9:b0:97:37:
cf:b3:00:b7:68:82:37:9c:f0:9d:db:4a:b4:ba:2b:
62:76:f6:b5:4a:1b:1d:d2:b5:50:dd:63:19:12:e0:
68:a4:13:ad:d0:34:d7:5c:fb:b4:fe:c6:27:94:f8:
03:6b:41:fc:f4:b2:98:f6:20:ae:f9:c7:26:80:db:
6e:b4:6c:86:2e:7f:35:b3:7d:77:6f:1d:d4:95:6e:
a7:09:fd:8d:63:35:51:ea:26:c4:2d:cf:9a:64:72:
f1:04:cf:03:7b:2b:65:b6:52:36:11:69:a2:1f:78:
9e:26:e0:df:e6:ce:d5:ac:cb:dc:51:f5:eb:9f:8a:
0e:93:37:bb:27:3b:5c:4e:06:95:a4:65:2d:19:15:
be:e5:fb:73:d6:0f:98:3b:b7:48:89:c7:0a:65:e9:
75:cd:97:29:d6:41:08:9d:85:0d:56:eb:0d:cf:b4:
14:c5:b6:bc:93:b8:d3:af:98:77:36:10:2c:1f:82:
59:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:66:ED:24:25:F2:E5:19:1E:37:77:CC:A4:B1:16:9B:0B:A2:4B:C5
X509v3 Authority Key Identifier:
keyid:3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0e:de:bf:9f:dc:4c:b6:26:58:ec:9d:86:f3:3c:0c:eb:ea:
db:07:23:ce:57:48:1c:34:8f:c9:2d:2e:c2:7a:c0:25:39:9f:
3d:3d:e6:b0:c4:c7:a4:46:d7:b5:db:87:87:06:53:c5:d4:e4:
ee:4b:3c:f5:06:f2:60:05:33:89:01:a4:bf:aa:db:2f:ef:69:
ee:33:eb:61:5f:5a:ce:cb:69:ec:4f:63:f2:65:71:f8:27:92:
60:21:df:22:56:ea:65:ac:1d:6c:6b:a1:0f:98:06:46:1f:8e:
c9:96:37:14:78:e4:0c:f6:ce:c8:fb:73:82:e3:a2:59:da:f6:
e1:14:80:bf:0b:3e:99:47:4c:b3:8e:5d:d6:85:84:b8:35:32:
dc:0a:cb:a7:a1:ae:bb:ab:dd:af:65:72:a1:6e:a9:f6:4e:07:
52:41:95:aa:18:4f:93:3d:cc:88:31:bc:ac:d7:c5:8f:7e:89:
01:8c:73:0c:13:02:46:ad:30:4b:4f:f4:e8:41:05:be:e0:6b:
af:9d:7b:aa:66:c5:b2:48:08:67:1f:56:f5:f0:fc:91:d8:c1:
09:02:8a:59:aa:19:54:a7:93:f9:0c:66:ab:aa:9c:46:e6:e6:
9e:0f:d5:43:39:8b:eb:96:0e:d7:70:74:46:4e:a8:6b:5e:9a:
26:40:42:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:06:42 2025 by rpki-client