Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
File: PxyTi7IGo4ltBkwIUvqYhf8s69k.mft (raw, json)
Hash identifier: l6Wk7lJDU858KIVBuDVt5VV5CdIr9wAZEwZSr2TrItI=
Subject key identifier: 47:A8:51:FD:B3:1F:FF:5E:41:30:BC:22:54:0F:47:FE:87:5E:9B:0C
Authority key identifier: 3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9
Certificate issuer: /CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9
Certificate serial: 0196439F1ECBCF0E1B336C510A57FBFA6D2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
Manifest number: 0224
Signing time: Thu 17 Apr 2025 12:00:23 +0000
Manifest this update: Thu 17 Apr 2025 12:00:23 +0000
Manifest next update: Fri 18 Apr 2025 12:00:23 +0000
Files and hashes: 1: PxyTi7IGo4ltBkwIUvqYhf8s69k.crl (hash: Pfjvn6+Swi+cQiwbGNRvqu8qVAQPrAfD57iMfjKNkro=)
2: Qtry2kaoKZp9d0kAKEVlWC9a8yA.roa (hash: 4P/5LEPA+7GLBNpRQSC8l1dlaoBUTtizVxJtdSJCc5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 12:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9f:1e:cb:cf:0e:1b:33:6c:51:0a:57:fb:fa:6d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9
Validity
Not Before: Apr 17 12:00:23 2025 GMT
Not After : Apr 18 12:00:23 2025 GMT
Subject: CN=47a851fdb31fff5e4130bc22540f47fe875e9b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4c:59:ba:03:ac:0a:02:dc:b1:45:42:92:b8:
ce:d6:33:b3:2a:59:df:07:01:c5:3f:be:c1:a4:b5:
38:e6:7c:d6:52:ca:6c:80:f2:8b:ca:b6:f0:ca:dc:
06:4c:3a:6e:d1:c4:3e:a0:00:46:94:11:59:b5:ba:
81:0b:3e:cb:52:79:26:70:df:87:73:99:f8:cb:5e:
c7:4c:ab:ed:10:e7:40:96:8b:73:6d:37:a6:6f:81:
1a:3b:77:46:92:f0:8b:ef:41:c3:4f:60:53:00:ce:
81:16:7e:55:98:f7:08:f4:11:db:a7:2b:6c:c7:42:
e4:28:c5:9f:45:5f:d4:1b:b1:e6:37:d7:6f:a3:ff:
9b:49:5e:21:f1:60:7d:85:5d:bc:cd:59:7c:dc:24:
88:25:e7:f7:84:13:27:0d:e6:2a:c3:6c:75:14:ba:
a1:41:b6:36:c3:ac:a6:05:bf:96:2c:8f:d6:5e:25:
f7:cb:03:1f:e5:7f:53:28:d9:2d:a1:84:d7:03:ac:
c5:98:e5:b7:f6:06:3f:5b:fa:c2:3d:9f:8f:22:89:
16:f1:38:93:dd:4a:e4:43:b1:8b:94:ea:fc:da:41:
4c:89:8c:a3:3c:13:16:0a:aa:1f:7c:ae:53:08:88:
d0:b3:2b:bb:3b:98:4f:b9:bb:b1:33:62:80:e9:40:
6a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A8:51:FD:B3:1F:FF:5E:41:30:BC:22:54:0F:47:FE:87:5E:9B:0C
X509v3 Authority Key Identifier:
keyid:3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:27:a6:4a:79:a7:8c:3b:3a:a9:c5:3c:0e:41:ad:80:7a:72:
5c:9e:34:e0:a7:46:16:44:c8:ed:57:82:8d:1f:3a:bb:9e:31:
02:7b:8c:ba:2c:7e:c0:52:85:01:12:df:98:8e:6d:87:a1:42:
d4:d5:a2:25:18:04:bc:21:12:ff:48:48:ad:e5:54:73:ed:1c:
cf:78:8e:f2:7b:84:36:33:a7:8d:f1:2b:53:83:39:81:60:c7:
1f:f9:8c:4e:d1:77:fc:ca:ae:82:91:76:9e:13:e0:26:38:49:
b8:79:55:b4:b8:57:a7:68:a9:83:33:27:2e:fa:f8:44:ac:59:
2b:b4:84:f7:6d:a7:2f:eb:00:ba:f3:b8:d1:4b:a2:9e:24:f0:
21:2c:b9:97:50:99:de:f5:06:77:69:a3:64:50:fe:eb:17:96:
d5:01:ec:1d:07:97:ac:df:93:19:8d:42:d2:ff:28:e1:d8:4f:
50:64:c5:2e:ca:b6:63:e5:17:23:b6:aa:cd:b6:b4:49:45:60:
8b:6c:5d:16:53:b1:b8:17:d6:c1:d1:51:89:81:d0:5f:77:28:
4f:e3:e2:c9:92:61:54:76:fb:f7:c8:c9:11:eb:21:4c:c6:fd:
7d:c7:72:3f:38:9c:45:e8:f2:4d:cd:68:2b:e0:30:78:f0:fe:
0b:af:bd:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:20:43 2025 by rpki-client