Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json)
Hash identifier: +pQXi7ID87hT3rUGcWvsQyTWlBxk/NnwPLzo6q/ZrFA=
Subject key identifier: 21:20:95:BA:FD:89:A6:FD:46:54:E7:E7:2F:9F:BB:DB:8B:CA:50:5B
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 01961056DF3FCC21048B6A925F173D7475D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
Manifest number: 12B1
Signing time: Mon 07 Apr 2025 13:00:50 +0000
Manifest this update: Mon 07 Apr 2025 13:00:50 +0000
Manifest next update: Tue 08 Apr 2025 13:00:50 +0000
Files and hashes: 1: 3nrrtsZJ-IpATR6f6X0fXP8P3Ds.roa (hash: dHLYJp8vBdcpEI62KQkymjAsJXGywGpijB0UQKFJ6p4=)
2: b3rpvlrUc4F3iSwCht-ScFiNdQU.roa (hash: IxL38OMcTHb5h0kfUl/vgqGG9zstz9MS/9BQOovbMEE=)
3: o-IAHNtlfJTe0lrMjkAn3EfKWfQ.roa (hash: 4yZoP16QAdZ03Ygf8PchIKIjGuMurg8hghXjeARQmNw=)
4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: TfPBo56uwX/elaVomUc/Z2l5GxRV81SyON9Lc6CWZB0=)
5: z9pY0mNZw1275Un36HrGri4KO4o.roa (hash: YWMIyf15z9zL0EObbho/vFT6JF3XUpar4rPteqovYLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:56:df:3f:cc:21:04:8b:6a:92:5f:17:3d:74:75:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Apr 7 13:00:50 2025 GMT
Not After : Apr 8 13:00:50 2025 GMT
Subject: CN=212095bafd89a6fd4654e7e72f9fbbdb8bca505b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e1:0c:0a:87:4b:81:42:db:e1:f9:e5:4a:ed:
5d:cc:41:59:51:6f:81:69:2a:bc:12:3f:c7:15:83:
65:06:ae:f3:5c:75:ed:09:84:f4:db:e6:de:30:12:
7a:4d:cf:8c:9f:97:c4:61:30:95:cf:c9:4e:8f:10:
6a:f3:1c:2a:cf:1c:8c:a9:95:b5:0f:3d:f2:42:d8:
cf:8d:26:a9:0f:45:6a:64:35:f9:78:a6:dc:ee:70:
34:74:06:60:c3:4e:90:e5:72:d4:df:fe:84:d7:7e:
24:94:2e:41:10:a7:f0:8e:e8:28:e2:45:a0:09:71:
30:16:58:7d:9e:dd:b2:56:d4:a6:37:0d:ef:4a:88:
55:2a:35:00:ab:7b:d8:4f:f0:74:a7:b2:b9:89:23:
47:d5:74:77:94:57:a3:28:51:b2:b2:84:66:88:58:
ac:c3:92:69:7c:28:13:6f:ed:5c:5e:05:9f:38:2d:
f7:15:ac:9b:49:b5:0c:38:00:49:af:bd:2c:13:1d:
1a:93:06:d7:9f:fb:de:57:17:d9:fb:5d:63:5b:95:
24:7a:0a:b0:8f:d5:18:49:80:1c:10:42:1d:ba:12:
62:0d:ff:90:0f:3c:c9:74:3c:83:92:44:de:6c:85:
cf:c5:43:a3:ce:9f:b0:9d:57:3e:d5:4c:80:24:2d:
9b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:20:95:BA:FD:89:A6:FD:46:54:E7:E7:2F:9F:BB:DB:8B:CA:50:5B
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:8b:dc:65:84:66:d1:37:38:b0:89:6c:78:bb:aa:d2:69:9f:
f1:c0:f9:bc:f0:62:f6:d2:19:eb:36:96:2a:19:50:71:89:cf:
b3:2e:6e:20:5d:f1:bc:6c:ed:ea:44:98:f8:e2:e0:bd:10:77:
9f:51:20:64:32:29:f9:7c:4c:7d:7e:cc:75:d6:be:ae:58:c6:
d0:c0:da:3a:dc:01:72:5d:5a:84:87:79:fe:9f:d7:f3:13:c6:
d5:9e:07:3b:5e:96:40:91:31:66:51:b4:2a:bf:51:b6:60:cb:
61:de:12:9b:18:d6:c0:71:5e:37:29:1d:c2:ad:e3:82:32:54:
de:f8:f9:f2:8f:5e:38:f0:ad:6d:ef:72:1a:ae:e7:86:81:ed:
ab:40:04:8f:2c:c2:50:59:0a:c1:0e:12:4f:95:75:51:ba:d1:
1a:a9:2b:ae:96:d3:26:8b:7c:03:bf:47:7d:c8:47:82:4b:2f:
69:40:0a:8d:98:01:92:63:1f:e9:bc:cc:03:91:60:ea:6b:6f:
05:8f:40:81:c1:af:0c:9a:37:23:fe:ee:4e:c3:84:88:98:87:
3e:70:f4:44:5f:0a:1b:be:7c:b7:72:49:e7:11:2c:fb:78:aa:
b0:cc:6b:b8:a5:10:27:d6:61:a9:53:63:9b:f3:b1:40:83:c2:
11:80:e6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:34:06 2025 by rpki-client