Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
File: pQHIn0SCnHLyqVPSorpK4Le1DYo.mft (raw, json)
Hash identifier: 3sF+koaPrL7V3h2rO4qQHIWT/+fagHItafPEbNzhwlQ=
Subject key identifier: 34:0F:E2:46:F1:3F:A2:F2:AC:3D:AC:DB:7B:5D:34:DD:7B:16:A7:71
Authority key identifier: A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A
Certificate issuer: /CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a
Certificate serial: 019650115E95BD6AF7E8D7C6B2279D5FC89F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
Manifest number: 14FD
Signing time: Sat 19 Apr 2025 22:00:37 +0000
Manifest this update: Sat 19 Apr 2025 22:00:37 +0000
Manifest next update: Sun 20 Apr 2025 22:00:37 +0000
Files and hashes: 1: D5U1j0YPEDas8bxMtDOehRJb48U.roa (hash: AkMtfy33YmmtJG2wcdM/0Qvh01UPoaXKoDXm68LNuus=)
2: pQHIn0SCnHLyqVPSorpK4Le1DYo.crl (hash: GQhqIW44nBVIYIgHUXv4wcr18bmusl9EcNJgi1RlBcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:5e:95:bd:6a:f7:e8:d7:c6:b2:27:9d:5f:c8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a501c89f44829c72f2a953d2a2ba4ae0b7b50d8a
Validity
Not Before: Apr 19 22:00:37 2025 GMT
Not After : Apr 20 22:00:37 2025 GMT
Subject: CN=340fe246f13fa2f2ac3dacdb7b5d34dd7b16a771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dd:d7:60:ba:d2:5d:01:ba:b5:ed:a3:0d:ef:
ff:d2:2a:04:23:7b:0e:52:02:5f:62:d6:4e:9f:fc:
d6:55:29:a5:de:0c:ac:de:5d:50:e4:8c:79:f9:de:
ce:3c:81:7f:f1:c1:72:45:ef:74:e0:85:34:3e:4e:
e6:75:7c:c0:df:65:a8:9c:c4:f1:65:90:80:8f:8b:
38:e3:e3:b9:da:76:da:73:4f:b4:f3:98:59:cb:9e:
4e:3e:36:3c:18:d7:51:97:67:06:2f:a1:f8:35:d1:
fc:07:8b:5d:97:c4:1f:5c:0c:b6:57:21:17:ef:97:
ef:62:94:b8:fc:5c:12:52:41:6a:2f:ce:48:23:47:
b6:e6:42:24:8a:d3:36:75:14:27:26:6d:8d:0b:b2:
c8:8a:5b:02:6b:2d:a5:11:65:a3:db:29:72:3f:e7:
16:d1:6d:87:31:e6:9d:32:de:b9:2c:e3:02:b7:cb:
4e:23:80:ce:98:30:88:8a:53:cf:e8:82:c5:6f:2b:
1e:1b:57:2d:8f:e1:2f:e2:7a:bb:93:08:aa:22:f5:
b9:a4:26:ee:cc:20:d8:34:5e:ea:52:47:57:7e:d1:
ac:78:a2:2c:83:7e:d5:ed:68:24:94:74:e0:ab:44:
37:ca:28:63:c9:8b:e1:85:8b:47:72:3d:f4:47:fa:
f3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0F:E2:46:F1:3F:A2:F2:AC:3D:AC:DB:7B:5D:34:DD:7B:16:A7:71
X509v3 Authority Key Identifier:
keyid:A5:01:C8:9F:44:82:9C:72:F2:A9:53:D2:A2:BA:4A:E0:B7:B5:0D:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQHIn0SCnHLyqVPSorpK4Le1DYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/d5e103-90b5-44f1-b864-14a1eb5512d6/1/pQHIn0SCnHLyqVPSorpK4Le1DYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:3b:e2:cc:b6:4a:4c:fd:ff:b1:e9:a5:9e:0c:6f:58:d3:1c:
59:24:98:86:a1:ab:af:83:a2:eb:d5:24:78:20:64:09:de:d3:
26:9c:29:4d:35:30:3d:ff:8a:b7:dd:a0:b4:ba:8b:6a:66:bf:
00:eb:c5:48:32:61:08:b5:55:5e:22:42:81:a9:c7:77:b6:8c:
52:4f:c9:05:76:b6:06:25:2b:49:12:1f:99:ed:d3:b2:ee:69:
4e:92:2b:a0:54:53:41:ce:9e:49:df:90:7d:c5:e4:8b:4c:9c:
ac:79:0b:24:a9:ae:98:eb:99:26:4d:44:70:9c:87:e1:7d:fe:
72:1a:12:e9:84:95:f1:a8:e9:5b:2a:9c:7c:45:25:0b:4f:4f:
ab:9e:56:d3:ea:2c:28:69:95:e7:8f:66:6a:99:92:3c:b6:e1:
ce:06:a9:a2:8e:c8:ed:87:bc:ad:aa:d6:d2:82:05:90:8d:0a:
fd:ee:71:da:d8:db:b8:a0:3c:05:c0:32:14:72:56:d5:4e:13:
8f:e7:9f:5a:87:72:75:69:ef:38:dc:f5:37:ef:a0:b4:d5:1e:
d8:04:55:56:60:fa:fd:eb:97:de:74:fc:50:97:08:fe:51:56:
25:d2:aa:8f:f1:6c:60:09:61:08:e3:fe:86:2f:e6:c3:d7:20:
99:35:7c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:22:55 2025 by rpki-client