Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: MTsuHu4G+OnWCE79MUJMZlzX90eA+uiv7MPW9G0QaPo=
Subject key identifier: DD:82:04:1B:D0:AD:0D:09:88:2B:57:12:4C:3B:1B:11:EA:17:15:5D
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 0196526D3546D1D416C71F92910B529ACE39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 148A
Signing time: Sun 20 Apr 2025 09:00:10 +0000
Manifest this update: Sun 20 Apr 2025 09:00:10 +0000
Manifest next update: Mon 21 Apr 2025 09:00:10 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: R8fZZ8lTdBnSo00DcU7ZOe3gY6iPjy10nlM17Gvv/zg=)
2: ZFcvFlhDWryyoXWXMpIDlrIOANM.roa (hash: vf4LDljSHDeogKMO6SAS7Y9xTDtYGGINc31+p97CZuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:35:46:d1:d4:16:c7:1f:92:91:0b:52:9a:ce:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Apr 20 09:00:10 2025 GMT
Not After : Apr 21 09:00:10 2025 GMT
Subject: CN=dd82041bd0ad0d09882b57124c3b1b11ea17155d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4a:f6:65:f5:c1:47:16:c4:27:d9:85:af:19:
23:b4:af:1c:2e:0c:06:e5:b7:27:f6:6a:f2:b1:92:
0a:fb:91:65:b7:1b:0d:cc:e0:e5:90:8a:db:17:cf:
21:41:92:43:3d:b7:fd:f5:9e:07:36:0b:62:c6:f0:
b8:2b:86:5e:b3:d5:95:b3:ca:7d:27:2b:82:29:47:
d1:0d:b9:05:33:d0:9c:a8:bc:5c:d9:cd:76:75:5c:
2e:78:69:0d:08:27:af:1a:86:be:c9:17:20:e2:4d:
e1:0f:95:64:63:dd:96:52:30:8d:9a:a9:8a:90:15:
d5:85:33:ec:02:b9:9e:4f:5d:3f:96:d5:ee:6a:4e:
bc:23:e7:15:32:f9:c4:ff:5f:a7:ef:e6:cb:90:5d:
1a:6d:8b:a0:f4:3a:ad:5f:b4:85:9f:39:1c:a3:b4:
f7:8e:19:52:f6:86:90:c6:44:45:a1:d9:44:c2:d5:
f5:d8:29:af:ba:90:45:36:23:b8:cd:90:23:af:10:
e6:9b:66:6b:3e:d4:a3:91:ea:e4:fb:a6:e5:d0:2d:
2c:14:69:38:a4:7d:af:08:45:12:9d:cc:f7:dd:de:
30:b1:9f:ea:c5:32:ff:14:c4:f6:42:cc:97:26:53:
90:70:35:98:7b:47:2a:06:5a:d4:cc:8f:cd:8b:e0:
ab:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:82:04:1B:D0:AD:0D:09:88:2B:57:12:4C:3B:1B:11:EA:17:15:5D
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:0d:e0:dc:a7:e6:81:d8:fe:83:54:06:2d:da:c2:37:b6:6b:
fb:9a:a0:61:e8:b4:cb:cb:dd:5d:4d:fd:19:e5:b9:f5:a8:58:
af:06:24:71:b4:43:41:2b:91:8e:15:d0:1f:22:31:c3:7f:05:
57:bd:6c:16:67:98:29:83:78:28:e5:89:13:2a:b4:2a:cc:9c:
cc:3f:30:91:ba:bd:5b:8a:22:99:7d:29:08:eb:7b:fd:09:9e:
0c:9b:75:81:7d:53:4f:88:c3:12:51:2d:37:e4:ee:8b:5d:61:
52:02:80:1f:f8:0c:b1:25:36:93:d2:46:10:08:25:4f:0c:b8:
f2:c4:62:63:02:d7:dd:83:13:0e:f1:5b:8e:74:46:54:33:2c:
e5:e9:a3:0d:88:98:1d:99:d1:af:1a:e8:fc:50:e9:78:16:ce:
e2:6b:11:9c:a5:85:43:d6:52:5a:63:cf:ad:98:53:58:41:61:
50:50:ea:7d:fa:cb:71:85:4e:19:9d:d9:ef:57:b6:b0:6a:62:
3e:ee:ca:17:78:a8:e4:51:37:53:1a:ca:df:b7:52:97:7d:6e:
9a:d8:38:a0:6c:ad:df:df:0f:51:09:39:16:39:a0:54:59:27:
88:a0:96:37:5e:91:10:57:be:43:62:06:86:ff:5e:10:39:9c:
8d:b0:f6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:49:00 2025 by rpki-client