Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: rDW2Gzn5P4eca0dbsfwT9p878RY6DXqXOZ4JXSh5kIs=
Subject key identifier: A4:18:26:A8:EF:CA:E8:BA:0B:97:B9:00:EE:15:4E:77:79:DB:47:48
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 01964C34734F6A67255D759B8B51D7DE48A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 121C
Signing time: Sat 19 Apr 2025 04:00:27 +0000
Manifest this update: Sat 19 Apr 2025 04:00:27 +0000
Manifest next update: Sun 20 Apr 2025 04:00:27 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: 1BYiTQifqj5PZEmJq6/8o84HTU5bGg6aYAJpHRoqYrg=)
2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:34:73:4f:6a:67:25:5d:75:9b:8b:51:d7:de:48:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Apr 19 04:00:27 2025 GMT
Not After : Apr 20 04:00:27 2025 GMT
Subject: CN=a41826a8efcae8ba0b97b900ee154e7779db4748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:39:7e:04:9a:21:7f:d8:74:1f:96:46:2e:18:
b9:b3:57:51:9b:aa:4b:63:8f:aa:9f:ab:aa:97:40:
a2:91:2d:9a:89:db:f9:fc:05:16:3c:ee:9d:64:3e:
e9:d7:53:ab:ac:ba:dd:2b:e5:1d:c0:59:58:77:53:
20:80:56:ff:28:62:fb:57:4e:39:39:7b:66:00:6a:
25:4a:43:ab:2c:13:7a:75:1d:02:cb:a3:d8:be:e9:
7b:18:5d:6c:23:79:74:38:5e:f4:51:37:16:4c:62:
57:08:15:8d:f3:b1:20:76:ca:0a:86:9a:bc:68:f4:
11:f2:b6:ff:64:31:71:1e:dd:19:55:f6:7d:28:6c:
00:81:5d:b1:c3:25:d2:48:3b:dc:e5:df:6f:14:1e:
62:a2:54:90:dd:2a:e8:e7:c9:dc:ca:f2:5a:05:de:
24:32:83:26:41:ac:96:ab:59:09:44:f9:6d:b9:4a:
be:cb:27:9d:33:5c:84:3f:08:e6:60:57:ed:16:d6:
96:07:00:40:ef:4b:ff:4c:0f:1e:93:4a:53:4b:c7:
0c:bb:07:d1:78:b9:27:50:5e:2f:0f:21:a4:47:a1:
01:07:d3:01:eb:d7:37:84:2f:e1:a4:d4:6b:41:54:
5b:f6:5c:fa:9c:44:28:8b:d6:d8:5c:9e:ad:ff:7a:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:18:26:A8:EF:CA:E8:BA:0B:97:B9:00:EE:15:4E:77:79:DB:47:48
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:01:03:2c:f0:64:8c:5d:d3:37:5f:b7:6f:d1:47:22:24:01:
e0:c7:93:0b:9b:17:03:21:40:a4:26:0e:c7:b5:42:5b:a2:e9:
f3:cb:34:1d:ec:32:b5:04:37:03:1f:46:2c:2f:02:3d:39:85:
f1:8e:68:6e:0e:83:ff:5e:af:ea:d8:e3:fc:11:77:2f:ff:6a:
d1:81:b7:87:49:02:32:0b:95:f6:0e:eb:f4:8d:55:17:7a:d4:
33:b0:c7:6c:d4:04:ad:b2:b5:a1:7d:53:be:5b:8e:06:02:53:
8a:4a:f1:d3:eb:21:88:64:5d:5a:d1:f7:e3:e2:64:c6:f3:ef:
8b:06:9d:59:dc:76:9d:ba:9b:fe:a6:e6:24:66:03:9a:23:84:
f4:d3:dd:50:57:68:7a:d4:2b:b0:f5:98:fd:82:43:c5:c2:f7:
be:e5:29:cc:b1:ac:f0:52:07:33:64:59:19:cd:88:43:d5:74:
de:c3:f8:eb:36:eb:83:df:3e:7b:6a:40:c9:b9:53:45:a6:ff:
47:94:b6:71:c2:aa:3a:c5:60:14:76:9d:1d:e1:2b:a9:f0:31:
c2:aa:42:89:0e:d2:e1:f0:96:f0:e0:9d:b6:83:21:cb:c8:2d:
0d:13:78:ad:4b:29:32:2e:67:99:a5:1e:b0:fe:de:ef:31:c7:
c0:36:49:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:10:22 2025 by rpki-client