Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File: PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier: WiWNWgOE7Z4rIULggxvsTl4HsEAu9Ib0qzkzVV/IOgY=
Subject key identifier: 81:75:B3:C1:A9:E3:22:13:7E:DE:A3:79:7B:5B:61:E3:8A:68:CA:6C
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 019645C5A1784FF3E8B530D9A0BF5B9C59BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 22:01:41 +0000
Manifest this update: Thu 17 Apr 2025 22:01:41 +0000
Manifest next update: Fri 18 Apr 2025 22:01:41 +0000
Files and hashes: 1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: SW36oP0YjCTnh+pdL7Op8a1wfHAYyDI9F87THOXiQfI=)
2: tlchQmDxgjTRo1pLaspfZw12O3A.roa (hash: 6bDu460ilvbyFwMJbm1Vw+QewREO9nGYqnB3iYaAR4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c5:a1:78:4f:f3:e8:b5:30:d9:a0:bf:5b:9c:59:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Apr 17 22:01:41 2025 GMT
Not After : Apr 18 22:01:41 2025 GMT
Subject: CN=8175b3c1a9e322137edea3797b5b61e38a68ca6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5a:26:f1:fe:d8:f6:f2:53:00:b5:65:4f:22:
9c:80:e7:66:fe:b5:d2:32:77:0c:b4:e1:f2:19:3d:
73:c3:c2:0b:78:1e:df:9e:0c:53:f9:c0:07:cd:dd:
e5:5c:e7:1e:76:5f:26:93:06:5e:f6:08:84:b9:e8:
44:6b:14:cc:c0:de:e4:40:16:e9:1a:f0:68:ef:e4:
44:1a:33:77:13:02:85:5f:ad:0a:ee:29:a1:f7:d3:
75:88:9e:77:89:41:27:20:71:0f:57:76:ad:d2:80:
b6:79:98:94:f3:07:84:f1:ee:34:38:b8:f0:d9:5f:
a1:78:fb:cb:70:af:e4:7b:dc:32:bf:0a:ed:8f:8e:
67:99:58:16:e4:52:b7:72:0c:c1:5d:cc:4d:ce:29:
5a:53:ec:55:87:ae:e2:cf:b7:3b:57:d5:cb:8b:2f:
e6:66:5d:ae:01:91:97:51:b4:eb:84:36:bb:bb:1b:
ba:ad:85:30:59:6b:4f:df:3c:c7:32:f4:a5:0b:09:
4e:a1:ed:21:99:96:a1:46:a1:64:31:ef:dc:62:23:
5e:d4:97:fd:58:a9:60:6b:7c:99:92:c3:74:00:1e:
c2:fa:3b:9c:38:7c:b1:15:2b:b0:09:fa:44:bf:df:
36:04:e2:f0:01:d7:d9:34:3e:ca:d5:b3:c1:dd:6a:
6d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:75:B3:C1:A9:E3:22:13:7E:DE:A3:79:7B:5B:61:E3:8A:68:CA:6C
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:f7:cc:ee:94:04:8d:01:c6:39:6e:34:d9:2d:ba:93:9d:22:
15:18:69:3b:22:10:59:a1:8d:69:9a:66:f8:2e:c1:eb:32:ee:
53:6b:4f:58:c8:cd:c4:5c:0b:e8:48:a9:a9:7f:ba:79:b0:ae:
75:20:c0:8a:31:b1:e9:23:e0:ba:29:f4:90:c4:bb:11:bd:d7:
fa:74:99:6a:fe:58:d7:99:46:9b:78:27:54:1e:f2:8e:a2:1f:
b7:7f:c6:e9:36:80:2f:4f:53:91:f5:53:f6:c7:18:a3:dd:71:
a6:9a:0d:4b:f4:57:a8:dc:ec:ce:3b:4b:1c:b4:6d:e4:21:eb:
8c:4b:4c:a9:d2:7b:16:25:22:f6:d6:a6:ae:90:ab:b8:2a:bb:
f4:e5:9f:90:75:4e:02:4c:ff:b5:b3:3d:85:d0:cb:2d:aa:ba:
4f:42:23:5a:3b:04:37:e4:2f:fe:d2:a9:1e:cb:71:ab:66:48:
27:87:a2:16:18:76:13:b7:4b:c6:86:77:d2:b1:07:d7:56:f8:
35:7c:79:71:66:60:0c:29:85:6e:9d:cd:74:08:13:97:cd:3b:
70:1a:72:6f:2b:6b:34:4d:16:62:a5:91:5f:c9:44:70:4b:c5:
63:f6:b2:b4:ac:68:94:f6:bf:a9:83:96:94:75:cd:51:df:3f:
6c:78:9c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:15:20 2025 by rpki-client