Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: 36FG/7YZEekowG9uirXpA/JPSC3r2BGXFFCZmnbo7JQ=
Subject key identifier: 35:F2:B4:00:8F:A4:75:DF:7E:A1:05:86:EB:36:31:A7:42:23:E1:3B
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 01964B221D294C233BC9AF1CF5CBEDAE1A64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 148A
Signing time: Fri 18 Apr 2025 23:00:48 +0000
Manifest this update: Fri 18 Apr 2025 23:00:48 +0000
Manifest next update: Sat 19 Apr 2025 23:00:48 +0000
Files and hashes: 1: ET0yOb6N2KPn9sEOeciwveLzfFQ.roa (hash: 5UaUVXzPjnKQ9N0meCwxNszuKgkyrbDITbh3/+eJ6rg=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: agyE8IJfB6klaeWRzrzXdmOP2dXrbLMqw+/9mzGtBr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:22:1d:29:4c:23:3b:c9:af:1c:f5:cb:ed:ae:1a:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Apr 18 23:00:48 2025 GMT
Not After : Apr 19 23:00:48 2025 GMT
Subject: CN=35f2b4008fa475df7ea10586eb3631a74223e13b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:46:af:2e:9c:bd:05:ae:db:09:b6:9c:38:5c:
fd:33:93:db:71:38:c4:15:8b:96:ce:9f:1f:8f:fb:
30:77:ec:aa:f2:55:d8:ed:51:89:d3:6d:bb:6e:62:
3b:9f:e4:e9:b1:5f:56:69:04:f5:03:db:7d:ec:a2:
0d:66:60:ea:b8:e9:a9:98:93:98:6c:0c:6f:61:6d:
0b:5b:ba:d9:33:35:45:36:32:b1:2f:77:f6:86:26:
be:e3:8c:83:f4:c3:69:56:23:80:9a:5d:9a:00:8d:
7b:b4:18:a8:88:0e:06:ed:ee:71:e9:20:3e:10:d1:
b5:10:cb:31:7e:bd:72:70:d1:10:c0:dd:8b:4d:53:
05:79:b5:f7:7b:8e:15:45:11:d2:c2:c5:2c:6c:ad:
08:36:97:7e:a7:5b:65:4a:a2:c5:92:3d:a1:e9:2f:
2e:ff:1f:f9:c3:c9:d9:12:4c:31:85:2a:60:bf:d3:
66:b2:40:fd:3d:58:48:df:2d:94:f0:69:2e:a3:69:
1c:4e:a6:7d:cc:9e:67:86:7f:b0:df:3f:16:f5:69:
14:5f:2b:80:76:6b:52:b4:81:3a:f4:86:e9:14:bd:
9b:14:b4:8d:89:23:dd:51:46:8c:f0:03:59:25:8d:
68:62:d2:b5:29:93:e0:0d:1c:2b:3e:fa:b6:d2:66:
c8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F2:B4:00:8F:A4:75:DF:7E:A1:05:86:EB:36:31:A7:42:23:E1:3B
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:7c:6e:77:af:e5:05:10:59:1d:af:5b:67:3f:6d:24:7f:1b:
c2:36:26:78:3f:e4:18:eb:78:86:31:12:24:4f:a0:80:ab:15:
48:9b:ab:ba:89:6a:ec:9d:4d:9f:1f:dc:84:32:ef:6d:dd:7b:
27:75:48:97:6c:d1:7d:28:49:00:d8:f5:19:a1:c5:9b:bc:1f:
b3:c3:2d:96:82:2c:91:d6:fa:fd:c4:63:58:72:ff:38:12:4f:
b9:84:78:ab:75:3e:50:16:3e:b4:94:be:63:20:f7:59:fc:08:
33:af:26:77:20:03:14:7e:40:1f:99:18:80:49:fc:b6:8e:33:
31:8f:66:43:60:7f:a9:dd:9c:9d:5b:de:5c:79:4f:f4:40:19:
7f:77:f7:87:f8:cd:74:d8:19:8c:fe:fb:53:b5:7c:79:3e:44:
fc:aa:c5:30:cc:96:b9:06:89:89:19:c5:61:e5:47:fb:f0:56:
07:4d:e8:9e:05:32:4b:4b:39:78:21:af:f3:be:22:f6:29:3b:
bc:31:33:3d:6c:1c:0d:bb:8d:39:79:23:9d:43:25:7a:7e:85:
fc:5b:8c:79:34:e7:c6:9a:af:ab:5f:e7:04:f5:1d:9c:5c:e4:
bd:1b:df:25:2f:cf:13:29:65:c6:88:e6:2a:c1:0e:b1:ac:03:
c5:38:75:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:39:23 2025 by rpki-client