Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
File: PxyTi7IGo4ltBkwIUvqYhf8s69k.mft (raw, json)
Hash identifier: 36U0t82qZ9cuYSt/gZ0mHMMY+v9wqq1kWXyISBYORwo=
Subject key identifier: 9B:71:30:98:2D:D6:ED:51:F9:60:55:28:BF:97:D9:9D:5C:1D:52:F8
Authority key identifier: 3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9
Certificate issuer: /CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9
Certificate serial: 0195127E610C5D4AE959F9350E2A7F186F63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
Manifest number: 0186
Signing time: Mon 17 Feb 2025 06:00:27 +0000
Manifest this update: Mon 17 Feb 2025 06:00:27 +0000
Manifest next update: Tue 18 Feb 2025 06:00:27 +0000
Files and hashes: 1: PxyTi7IGo4ltBkwIUvqYhf8s69k.crl (hash: CKfhs+6JX6fP6k2c7fJfNuch9sD2aXgOpuFCLdH9PxI=)
2: Qtry2kaoKZp9d0kAKEVlWC9a8yA.roa (hash: 4P/5LEPA+7GLBNpRQSC8l1dlaoBUTtizVxJtdSJCc5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:61:0c:5d:4a:e9:59:f9:35:0e:2a:7f:18:6f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9
Validity
Not Before: Feb 17 06:00:27 2025 GMT
Not After : Feb 18 06:00:27 2025 GMT
Subject: CN=9b7130982dd6ed51f9605528bf97d99d5c1d52f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9d:f8:f1:ab:00:3d:10:74:8c:e8:1f:73:c3:
dc:6d:2a:28:e4:12:cd:75:0c:2c:83:d0:e0:75:21:
8e:20:a0:ec:e3:1a:ea:4d:02:c3:f8:ed:19:99:c1:
cc:60:a8:69:76:56:5d:bd:73:c6:f4:73:91:a7:e4:
4c:c6:4d:c5:68:56:21:e2:41:90:aa:0f:f2:6f:0a:
e9:35:4b:e2:f1:95:c9:df:89:31:64:68:5f:62:e4:
a0:f5:45:19:c7:e0:99:e7:a9:56:a6:59:5f:67:91:
99:95:c4:ee:9e:36:2f:bc:61:b6:43:9a:9a:9a:84:
55:96:61:50:f8:55:2a:2b:89:01:53:4c:4d:f3:73:
01:fe:62:aa:b9:ec:03:f5:62:94:3e:cc:27:d7:ec:
e6:39:50:92:8f:d8:7f:cb:c7:00:d0:c8:7f:22:2f:
53:bc:e0:74:b1:fb:38:1e:f4:88:89:10:03:8a:dc:
5e:a4:d1:40:ec:34:df:04:ec:80:3d:69:0c:e0:93:
a7:04:df:12:1b:25:89:b0:ef:56:28:6f:ec:31:5f:
8b:a5:cc:aa:0a:1f:81:d5:1e:84:26:e9:04:65:95:
4c:2a:9b:0f:bb:90:51:65:86:0b:3f:22:18:36:13:
30:41:46:fc:f8:5f:c6:ac:c2:90:88:d6:4e:6f:bd:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:71:30:98:2D:D6:ED:51:F9:60:55:28:BF:97:D9:9D:5C:1D:52:F8
X509v3 Authority Key Identifier:
keyid:3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:cb:ec:aa:c0:b0:9d:bc:3c:20:67:78:33:6b:3a:da:76:e1:
fc:a1:3b:28:86:d7:b5:0e:28:be:00:93:f2:52:03:2f:4b:67:
62:fe:99:0c:e1:72:5f:f3:1d:ea:28:99:38:93:24:26:7c:00:
6f:c5:b9:13:aa:81:aa:0d:d2:7d:91:c1:fc:c8:ef:48:0e:4e:
19:79:56:a9:97:92:92:f8:07:14:a7:89:13:0d:14:94:2e:6d:
6e:2a:5a:a4:3a:27:c4:d8:ba:e8:29:41:b7:d7:5e:bd:08:07:
2e:d2:fd:e5:17:ee:44:27:a0:3e:6c:ca:6e:05:f4:22:57:39:
fa:e9:04:3d:a4:e9:b7:9a:81:2d:bc:41:3b:d1:15:fa:ec:08:
35:fc:06:9b:48:36:37:5a:a2:06:e2:c5:11:e2:d8:a3:2a:cb:
4b:c9:a2:91:72:b4:96:98:13:25:e2:1f:0e:55:fb:72:3d:44:
2d:a2:86:46:b9:20:47:b3:ab:20:f7:c8:c0:62:a5:fa:d5:3c:
af:9b:52:d2:dc:41:f0:e8:22:d3:35:bc:5d:61:d3:fd:eb:6c:
fe:c4:8f:f3:c6:9e:0a:54:64:2f:01:eb:c9:46:db:e1:48:c6:
2f:90:ca:93:19:8e:8a:9c:ba:40:34:eb:75:ce:ab:4b:6f:ac:
ee:f0:bb:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:36 2025 by rpki-client