Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json)
Hash identifier: l9MmvJLT3NILAh1emoIUNRXeUNIm3qOi0VLBTBMgp2k=
Subject key identifier: DD:27:E4:3B:84:44:F5:C8:E9:09:FD:C9:36:6A:02:02:E2:5A:10:7F
Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64
Certificate serial: 019629E079D8A3FA6E70E69A9D28BC03E885
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
Manifest number: 076A
Signing time: Sat 12 Apr 2025 12:01:39 +0000
Manifest this update: Sat 12 Apr 2025 12:01:39 +0000
Manifest next update: Sun 13 Apr 2025 12:01:39 +0000
Files and hashes: 1: MR6yCa9ahiYB6kt7eFUEnhRZgj0.roa (hash: Q5fLGdiN5URjuSRi8W7fkSayIUiVGY1nf+0ovyfMZAw=)
2: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: j7KUQYqhgr5vVDisnPMY0IUvRipduAyPRUUSB27PAyo=)
3: sFFOUDvWTzfSymlwSYpDyp4rZVo.roa (hash: hd1EPhU6XZRPUxka9ECqkCcKF9k2GizgSrw0eDBr9g4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 12:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:e0:79:d8:a3:fa:6e:70:e6:9a:9d:28:bc:03:e8:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64
Validity
Not Before: Apr 12 12:01:39 2025 GMT
Not After : Apr 13 12:01:39 2025 GMT
Subject: CN=dd27e43b8444f5c8e909fdc9366a0202e25a107f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4e:b8:27:96:e4:51:a7:dc:3f:d2:93:53:8a:
38:c4:45:c2:87:0b:40:64:ef:fe:8b:e1:7d:ea:6d:
b2:70:9b:3a:00:31:02:0a:ac:0b:5f:27:fe:e2:ef:
5f:02:68:08:2c:f3:76:b9:3e:fd:e2:08:ae:35:50:
4e:58:43:1d:fd:be:a3:73:4a:80:71:fb:bf:50:06:
36:aa:16:4b:02:d4:65:e2:ae:e3:3e:04:bd:fa:ae:
b8:90:7d:0e:cf:de:2c:54:b9:fc:e2:b7:df:93:01:
1d:b3:03:82:2a:88:73:c6:2d:b0:cf:2c:5c:c4:33:
96:8b:22:5d:ec:85:5b:c2:2c:10:8d:76:71:d8:8f:
3a:a0:4f:aa:91:78:5a:ca:0d:e5:13:b7:90:7f:b4:
e5:a5:c6:5d:cd:b3:98:89:d2:24:6e:c7:13:6b:ef:
b7:5f:5a:17:fa:cc:b2:ca:aa:ff:7d:a0:38:c7:42:
52:64:51:fa:36:49:aa:f8:b6:b6:c4:37:a7:1b:27:
c0:2e:09:fc:bc:49:2b:aa:45:27:80:83:3a:9c:04:
47:fe:6e:58:f1:29:98:b4:6b:d2:33:7b:1d:41:28:
d3:f8:8c:d0:56:d5:17:1d:c8:d4:6b:1b:cc:db:4b:
29:7f:27:9f:26:ab:f8:cf:27:82:8a:a1:c6:56:68:
bb:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:27:E4:3B:84:44:F5:C8:E9:09:FD:C9:36:6A:02:02:E2:5A:10:7F
X509v3 Authority Key Identifier:
keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:1b:f7:0a:55:cb:ab:71:84:03:06:ed:8e:55:14:ab:4c:15:
2d:ab:b7:63:85:e5:6d:b7:ab:e1:16:04:41:28:e0:1d:21:5d:
00:4e:d3:2c:c4:3f:b4:aa:8d:e7:53:c1:45:b5:bf:83:f5:28:
ae:7e:00:39:48:79:f7:b1:18:93:27:a5:af:6d:2c:19:4c:52:
f4:09:b5:fa:83:ad:3d:8f:00:5b:97:dd:39:a7:60:de:ca:7a:
81:c5:a8:31:86:38:e5:29:7b:b9:06:a3:93:b7:6e:a2:3c:cb:
9b:44:ab:f3:b2:ed:2f:50:ac:13:a4:17:03:82:1a:39:d5:c6:
a6:ab:af:ad:90:e6:5c:81:00:cf:fc:ec:31:92:cb:1e:61:e2:
5d:67:da:85:20:e5:4f:0b:89:2a:38:0d:01:4d:26:b7:f3:33:
57:c7:f7:6e:cd:51:71:a9:3f:35:db:2a:33:9f:4a:48:a7:bd:
15:da:a9:ff:2f:e2:df:fb:b3:35:3d:b8:7b:29:2f:26:8c:82:
22:a9:b5:75:11:04:f7:46:54:ef:cc:66:ea:eb:39:00:8f:d1:
92:66:86:0a:8e:1b:b3:06:fb:49:ca:4b:57:a2:37:69:ad:1e:
f3:c0:e4:d9:d7:91:c1:57:f0:f2:00:6f:06:54:b1:0e:10:82:
70:d4:22:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 21:05:55 2025 by rpki-client