Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
File: pPhiddwhxh2gzs0Sfpd0zKoysLs.mft (raw, json)
Hash identifier: g0VC01xoz3yQQV80/uH2JZNeTTbJoijZhfsLhmm8QnE=
Subject key identifier: 91:2B:FF:FA:02:31:06:7E:43:9E:34:9B:CC:1C:AD:0A:89:37:40:4D
Authority key identifier: A4:F8:62:75:DC:21:C6:1D:A0:CE:CD:12:7E:97:74:CC:AA:32:B0:BB
Certificate issuer: /CN=a4f86275dc21c61da0cecd127e9774ccaa32b0bb
Certificate serial: 01965F1651A27EEEC5347CCD09842D6DA6DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhiddwhxh2gzs0Sfpd0zKoysLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
Manifest number: 1504
Signing time: Tue 22 Apr 2025 20:00:20 +0000
Manifest this update: Tue 22 Apr 2025 20:00:20 +0000
Manifest next update: Wed 23 Apr 2025 20:00:20 +0000
Files and hashes: 1: a0SjSsK93R47m4eRP1Kso9k59CQ.roa (hash: 4DqaXQky67MktM88+QkXZEvBSJRKln9MtvLpFVmXjJ0=)
2: pPhiddwhxh2gzs0Sfpd0zKoysLs.crl (hash: 2uGKr5XJ1qZNbgKxJw7Bel6J85epWb08IDWOE4Fme3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPhiddwhxh2gzs0Sfpd0zKoysLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:16:51:a2:7e:ee:c5:34:7c:cd:09:84:2d:6d:a6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f86275dc21c61da0cecd127e9774ccaa32b0bb
Validity
Not Before: Apr 22 20:00:20 2025 GMT
Not After : Apr 23 20:00:20 2025 GMT
Subject: CN=912bfffa0231067e439e349bcc1cad0a8937404d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:cd:38:c5:04:42:10:11:a0:49:72:a6:44:
a2:af:66:7c:14:3d:2f:f0:91:9a:e9:04:6f:6b:dd:
d9:82:56:7f:6b:97:70:e8:94:40:c0:d3:39:f9:0c:
a7:87:1b:eb:61:19:5b:18:f6:3d:28:02:9d:57:44:
68:f7:83:a1:57:35:97:83:65:2a:59:c6:9a:73:57:
bb:3d:35:61:b9:c8:f4:b5:3b:1e:a0:c3:b5:df:81:
38:82:ae:14:73:2e:28:9a:44:77:09:dc:7d:5e:f3:
18:45:b3:71:6f:6f:c3:e4:58:d1:a8:54:59:15:8a:
57:3e:66:75:f2:16:74:7e:fe:87:a8:a5:75:3b:77:
c0:d0:09:93:6d:cb:61:78:9d:54:71:86:96:df:59:
3c:43:34:31:a9:87:22:2e:47:11:5f:d2:39:32:2a:
d1:d9:9a:bd:ed:47:02:58:15:35:e8:8c:48:84:a4:
80:99:1a:77:c3:30:61:63:15:9b:97:f5:85:00:ff:
11:8e:3d:34:4a:a4:ca:31:f7:2e:f2:9c:a1:12:a4:
ae:2b:62:a8:0a:df:7e:a2:6f:6e:af:a7:50:4f:1b:
35:e9:c2:99:2f:3f:fc:d3:02:80:06:72:f4:0a:18:
a5:f4:a0:35:cf:bd:89:87:ad:64:ca:8c:ab:84:f3:
cb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:2B:FF:FA:02:31:06:7E:43:9E:34:9B:CC:1C:AD:0A:89:37:40:4D
X509v3 Authority Key Identifier:
keyid:A4:F8:62:75:DC:21:C6:1D:A0:CE:CD:12:7E:97:74:CC:AA:32:B0:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhiddwhxh2gzs0Sfpd0zKoysLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a8bf2-6cb3-49ae-9e32-8829ee661c64/1/pPhiddwhxh2gzs0Sfpd0zKoysLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:38:2f:dc:52:74:9a:4b:34:54:22:df:d1:88:f5:e8:be:8d:
9c:c5:a2:bb:7e:f7:45:82:ca:37:22:ad:53:85:3e:48:0e:60:
a4:07:7e:eb:a9:77:fd:5c:68:aa:fe:03:69:e0:5b:4f:b1:94:
c7:7f:38:4d:09:3b:0c:e3:3f:79:9c:f4:5a:a5:6e:4c:35:e4:
a5:7c:59:de:b3:e3:23:01:23:ea:c2:f2:d5:00:6e:62:ce:d6:
a4:1a:0f:04:51:5e:ec:39:3f:81:28:87:25:75:21:5c:12:02:
91:eb:e4:c2:62:ca:e8:02:34:bf:ca:a8:09:ee:27:82:63:6e:
c5:50:e0:28:a8:81:9c:af:d9:b3:11:6e:40:12:69:cf:5e:8c:
b9:9d:dd:76:7b:fa:20:3b:f8:f9:7e:01:1b:93:b9:01:7f:06:
f7:2a:38:b2:6c:b5:7e:c0:42:28:26:46:8e:87:fa:bb:42:05:
19:82:55:5a:f1:df:c5:3d:1c:84:14:f4:76:fb:88:12:86:53:
88:53:04:61:62:91:d5:ca:9f:5c:15:5c:f5:54:84:df:a0:dd:
91:f0:f9:40:7e:69:f2:09:92:cf:b1:ca:a1:a5:22:ed:9e:61:
a2:ff:73:17:66:87:79:df:54:46:59:ce:96:14:58:51:5a:9b:
c1:2c:86:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:06:34 2025 by rpki-client