Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: 24ka/DUnQzZ9c5PwSLL0uy78+PYviT4bRM+NgqFAhZU=
Subject key identifier: 95:23:6D:B6:B8:AC:E9:C7:35:C2:90:56:C8:E6:3B:DF:56:1F:E3:44
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 01964A7D4BEA62D7F03CB8589621B265691C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0780
Signing time: Fri 18 Apr 2025 20:00:47 +0000
Manifest this update: Fri 18 Apr 2025 20:00:47 +0000
Manifest next update: Sat 19 Apr 2025 20:00:47 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: MGKMDhWzZKDg5GAQfLyz+BlrqgSMTjipPpETrKhl8mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 20:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:7d:4b:ea:62:d7:f0:3c:b8:58:96:21:b2:65:69:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Apr 18 20:00:47 2025 GMT
Not After : Apr 19 20:00:47 2025 GMT
Subject: CN=95236db6b8ace9c735c29056c8e63bdf561fe344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:eb:54:f1:6d:7a:b7:34:6d:24:74:53:de:2c:
f8:84:b1:d9:61:c8:52:c1:9c:8d:ed:a5:9d:26:88:
45:c3:3d:48:da:f9:b8:a6:7b:2b:4f:95:a0:a1:56:
8c:65:e2:95:b1:5c:b3:4f:21:08:34:a0:bd:8e:15:
a2:12:18:e9:27:84:9b:a8:17:0c:4f:bc:15:e8:71:
82:79:26:95:fa:66:65:2d:f7:cc:f4:e8:81:8b:73:
42:93:c4:94:a6:03:4e:2f:b1:02:be:86:60:5f:ad:
e2:7b:e4:17:a1:93:5e:5f:c5:bd:ae:bb:bb:fc:c7:
ab:cd:ed:13:cb:64:f9:28:c2:93:24:36:f2:5b:6a:
eb:ff:ed:ed:15:7b:bd:01:8b:1b:35:e7:9e:9e:8f:
74:2c:97:6a:7a:eb:8f:13:e5:65:89:03:7c:32:ce:
53:8d:04:b0:b6:90:fa:5c:93:a7:4c:fe:31:d4:9c:
1d:25:4b:6f:f2:50:76:ad:2b:01:82:17:f0:dd:45:
a4:0e:c3:26:4d:aa:04:7d:83:08:53:85:19:e9:3f:
6b:16:d0:9f:f6:21:e5:03:a8:6a:24:63:5c:b3:15:
17:91:76:36:50:3b:58:f9:7f:f2:fc:34:4a:1c:0f:
ca:96:52:84:16:54:ee:2b:f7:50:b2:32:37:f2:6a:
64:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:23:6D:B6:B8:AC:E9:C7:35:C2:90:56:C8:E6:3B:DF:56:1F:E3:44
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:cb:d2:67:2e:62:96:28:14:2f:6a:71:55:dd:8f:b7:4a:25:
05:7c:06:73:e9:9a:15:a0:8b:6a:b3:55:80:59:6b:e1:71:1b:
df:15:e2:4a:d1:d5:ef:a3:dc:60:7c:7b:06:87:d2:c5:53:4f:
a9:c0:2b:1e:d1:6d:5f:66:66:dc:de:5d:c1:7c:7c:d1:ac:6b:
26:13:95:fd:2e:10:5d:d8:f4:a8:cb:9a:db:b8:c6:da:62:b1:
ed:5d:96:da:38:ae:5d:65:9e:2a:dc:87:dd:59:98:a0:3e:3c:
ec:b4:91:c5:13:86:fe:1b:72:5f:96:d7:13:ec:fb:58:06:8c:
33:d8:61:40:3f:6c:2c:67:f7:5c:cd:d0:b1:fb:8b:9b:0d:e6:
33:4d:61:25:46:86:dc:93:a9:63:79:33:62:b0:88:6d:7f:cb:
1f:fa:7c:53:26:74:a1:03:9e:ea:63:d9:4d:4e:fe:02:53:f1:
b9:ea:82:84:a2:3d:b5:d7:aa:b4:b9:ed:4b:c0:8b:6d:a5:43:
a3:cc:ee:4d:18:5d:88:5e:8f:5b:18:18:62:26:42:2e:a9:be:
68:91:18:5b:f4:de:39:b2:fa:bc:e6:09:16:4b:9b:6b:13:e2:
d9:e2:76:07:be:d1:2a:35:1e:97:cb:6a:83:00:e1:36:35:d5:
5d:37:77:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:55:30 2025 by rpki-client