Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: Vk7W3ocBB8a2rsbpvX30jJHHaVpQK5w2OlBX4+3JMmk=
Subject key identifier: 6E:2D:91:FF:5A:D1:B3:D6:49:C4:2E:C4:13:85:5C:69:20:FD:18:A4
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 01963F8BA8DB39E99C344DEAB02C26F59318
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 07BA
Signing time: Wed 16 Apr 2025 17:00:39 +0000
Manifest this update: Wed 16 Apr 2025 17:00:39 +0000
Manifest next update: Thu 17 Apr 2025 17:00:39 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: +OHuukETd0NoFGrHpewrfstDyQ8EiKkV4BOSJxDfVjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:8b:a8:db:39:e9:9c:34:4d:ea:b0:2c:26:f5:93:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Apr 16 17:00:39 2025 GMT
Not After : Apr 17 17:00:39 2025 GMT
Subject: CN=6e2d91ff5ad1b3d649c42ec413855c6920fd18a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c6:08:0a:30:55:a2:c4:39:be:16:42:8e:cb:
2e:12:77:b3:5f:5a:9d:b5:e5:14:f0:16:ff:f3:bf:
03:fc:a9:3d:3a:a8:64:34:53:63:06:bc:72:91:ec:
23:39:c0:13:3d:45:83:c6:cc:4f:e7:c6:81:0e:29:
af:dd:d0:22:31:e8:4a:08:d2:c0:aa:b1:a2:50:0c:
42:a8:e1:f2:e0:a7:ed:e9:f3:40:8c:79:54:fc:b0:
48:3b:2d:e3:28:7b:4e:be:f5:6d:9b:14:a0:67:1c:
da:0b:86:49:98:2e:68:83:15:ea:5e:52:a3:f1:3e:
2d:c2:2f:95:6c:ae:61:e2:09:2e:9c:f4:49:b4:6d:
15:8c:22:5d:88:f9:e6:e7:df:db:fd:f4:2a:61:6b:
82:c5:15:0f:2d:bb:7a:9b:c1:90:1e:4e:b9:79:8b:
8f:d1:b1:cf:73:ad:46:66:db:02:37:85:aa:0d:2f:
2a:16:44:23:54:24:db:a5:6e:4b:f3:fc:30:d5:07:
2f:d8:2c:c1:c4:3d:9f:79:e1:a0:f7:e5:62:25:db:
18:68:a4:13:32:e4:56:6d:a1:31:ef:01:9a:cc:7f:
cd:67:54:0e:8b:c9:84:03:8c:8f:70:23:80:67:19:
f4:bc:56:6f:44:44:11:66:eb:40:64:d7:ab:c5:a7:
27:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2D:91:FF:5A:D1:B3:D6:49:C4:2E:C4:13:85:5C:69:20:FD:18:A4
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:71:4e:64:ca:78:2e:58:19:c7:f2:c8:04:66:9d:d7:70:6a:
12:6c:96:4f:53:be:59:c3:0e:86:a7:b6:c8:f2:22:ca:b2:10:
48:36:f0:8e:ad:3d:82:4e:29:d1:5e:dc:f2:0e:db:71:a7:2e:
94:1a:af:e6:46:0d:c2:93:ae:f3:86:2d:5e:30:89:9c:77:5f:
44:ad:1a:80:73:17:1c:b5:c7:59:56:9c:d2:b9:9b:10:f1:87:
f8:32:92:cb:c6:6b:ab:ee:06:99:86:ff:7d:d9:62:b5:15:86:
50:cb:b8:f7:bf:ab:55:dd:39:f0:aa:10:be:66:38:3f:fd:a7:
b8:b8:c4:a3:c4:7b:0a:9d:69:52:63:4f:4c:f7:da:49:61:cb:
c9:8f:24:a8:df:67:bc:ba:c9:c1:91:b5:bf:ba:39:87:1c:2f:
8e:ea:bb:47:cc:3b:02:7e:fb:17:7b:ed:aa:2f:d8:7d:07:eb:
69:66:5b:2e:e5:8b:20:db:69:94:a3:15:d3:66:cd:05:07:8c:
d5:b1:fb:df:22:fd:1f:db:28:84:fe:72:af:0b:7a:9d:4f:64:
ca:8c:4d:ca:a2:ba:37:e1:b8:4c:c9:bb:6e:26:cf:da:97:02:
24:f0:e2:98:89:cf:2c:e6:e3:02:3f:1b:51:c7:d5:6a:6c:67:
4e:42:fb:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:10:19 2025 by rpki-client