Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: YXSJpaWrOam6gmreXiufsPzNbTGQe9cogZIkDYA9yqc=
Subject key identifier: E4:DF:71:F4:C9:0F:46:5C:47:AA:85:53:E7:32:C2:23:D2:0B:01:97
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 019655A6351640E0CFAC039017BBD439F8B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 014C
Signing time: Mon 21 Apr 2025 00:01:17 +0000
Manifest this update: Mon 21 Apr 2025 00:01:17 +0000
Manifest next update: Tue 22 Apr 2025 00:01:17 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: tkQrZS3hyEn4jXDBzwcImH9JaRvmoCiIfyudu52+h6o=)
2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:35:16:40:e0:cf:ac:03:90:17:bb:d4:39:f8:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Apr 21 00:01:17 2025 GMT
Not After : Apr 22 00:01:17 2025 GMT
Subject: CN=e4df71f4c90f465c47aa8553e732c223d20b0197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:d7:70:2e:bf:c8:f5:8c:34:c0:18:f1:06:
00:b7:56:0f:1b:e8:2e:26:15:a3:34:fc:4d:4e:a6:
3c:c7:63:02:c7:c7:c1:62:c5:c5:17:75:7f:f2:b6:
c6:f3:7c:e3:15:14:dd:e6:b4:b2:3d:fa:a2:01:92:
b2:57:0a:ab:fc:67:ea:e0:2a:8c:ad:60:31:94:6f:
d1:ba:b0:84:07:14:3a:6d:e8:77:ce:63:6f:1a:40:
b7:16:7f:c9:cb:b7:6b:22:36:ec:c4:78:4b:01:32:
45:1f:b9:df:4c:aa:d9:86:c6:09:f9:c6:6c:00:3e:
a8:4a:14:f7:8c:66:35:de:19:43:d9:de:8c:94:f7:
88:a1:a2:69:d1:e3:a7:8d:f6:d2:bb:da:40:51:12:
15:03:86:d0:2f:16:27:d6:a8:72:14:fe:e0:15:53:
52:ea:8e:45:a4:e5:a8:49:c9:2d:ae:70:62:45:c9:
df:7c:e1:21:34:d0:08:66:85:10:79:74:a6:0c:04:
bd:e8:02:1b:e3:28:ca:ee:09:d5:9e:e6:c3:19:1a:
88:70:d4:31:61:44:6d:94:82:a2:81:b8:11:56:ba:
5d:a2:0b:9b:9d:4f:82:00:e8:f6:4f:56:bf:05:03:
31:2d:b8:27:a7:dc:0f:77:83:f2:ee:75:77:c6:34:
c3:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DF:71:F4:C9:0F:46:5C:47:AA:85:53:E7:32:C2:23:D2:0B:01:97
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:40:0d:f2:d9:29:cd:2b:53:3c:18:98:8a:85:58:ec:2e:1a:
94:3d:21:23:31:cc:0e:4b:26:4d:93:40:4f:b7:5e:4f:86:c3:
85:ee:07:c1:1b:3f:a8:5f:1c:a2:7b:cc:a5:3e:9a:b3:7b:59:
06:55:c9:ad:b9:5b:72:0c:4d:e2:bc:d1:e1:1f:d5:8e:62:36:
71:62:97:12:96:78:0e:86:62:97:c7:76:59:01:d8:5d:c1:d3:
85:5b:15:cb:de:c0:57:c1:89:fc:c5:fd:48:c0:59:8b:ef:6f:
1d:d3:ef:e6:86:77:82:c2:82:f8:ca:5e:8d:07:70:49:6e:ff:
d5:63:ad:b5:e5:0d:03:24:72:4f:a6:4b:db:af:f8:75:e2:5e:
53:75:b3:72:9c:de:ef:fe:96:82:16:4d:27:10:e9:10:64:c8:
ac:b4:46:b2:cc:f4:8c:e5:55:22:6c:b6:73:3c:62:81:c9:80:
d2:d0:62:ee:5d:69:49:1d:95:e1:37:3d:f3:bf:62:f5:35:97:
ea:44:c4:00:5a:da:69:9e:e1:91:99:ab:0b:da:5e:8c:b5:75:
cb:3e:00:fd:18:50:f8:c5:6a:49:b1:59:c2:a0:a8:58:5c:1c:
35:c5:eb:f8:e2:1c:2a:39:64:bd:22:b9:fa:36:0b:b8:11:ca:
e3:9c:04:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:42:55 2025 by rpki-client