Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
File: PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft (raw, json)
Hash identifier: VZ0arI5r/9QEGGcIrSKaAOmBGfMZ7/yxajNa64/vyu0=
Subject key identifier: ED:ED:E6:E9:CA:BD:43:27:C2:DC:9A:BB:2A:31:F1:7B:95:25:29:13
Authority key identifier: 3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
Certificate issuer: /CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Certificate serial: 01964F6CD044C1A89D43BBA9537A458917CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 19:00:53 +0000
Manifest this update: Sat 19 Apr 2025 19:00:53 +0000
Manifest next update: Sun 20 Apr 2025 19:00:53 +0000
Files and hashes: 1: PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl (hash: K28x+JS7Qerz15n2qMi3DHafWBCSRELXRgx1vgZOy98=)
2: baHbcRR9kf1ghjeGFAS82cVbM5E.roa (hash: ryV49aEsL3mdbzWN2VnZ4BiiOTM51N9BlYGHQV8L9fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:d0:44:c1:a8:9d:43:bb:a9:53:7a:45:89:17:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Validity
Not Before: Apr 19 19:00:53 2025 GMT
Not After : Apr 20 19:00:53 2025 GMT
Subject: CN=edede6e9cabd4327c2dc9abb2a31f17b95252913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:61:6c:4d:f9:0e:7b:02:bf:3b:0a:1b:2e:b9:
ba:91:4e:a6:42:b0:bc:65:5f:ce:cf:2f:52:94:56:
f0:fc:c3:5a:68:2f:1c:9d:a2:8c:b1:e8:80:a2:d6:
35:df:df:9b:38:98:ba:67:86:ae:3b:5a:f8:75:2d:
a8:1a:1c:a3:77:b5:4f:fe:ec:5b:62:17:1a:96:24:
0e:16:3e:25:26:83:8a:43:64:85:14:86:e4:30:bd:
4d:2e:c0:ea:e6:f8:27:ce:1c:86:c7:d9:3c:1a:4f:
b0:96:ae:00:86:f0:d2:0b:85:95:f4:70:83:48:d5:
31:99:3c:36:e9:33:ec:23:0a:9c:50:0d:69:fc:02:
f8:e0:f0:e9:87:5a:2e:cf:13:13:a3:28:0f:7b:b9:
c1:cd:e5:60:4f:fa:88:de:11:39:e1:50:01:47:a2:
9b:fe:f5:05:45:a7:67:bb:87:f9:5c:fa:8a:00:74:
30:44:c2:22:6c:a7:7a:72:07:89:72:79:79:83:94:
10:24:85:b1:b3:c9:dc:88:ca:8d:14:4d:38:57:73:
7d:f3:b3:de:f1:97:b2:db:d2:fb:b1:35:64:98:65:
f0:c4:2b:d5:67:04:33:65:79:dd:16:46:c4:b8:af:
0b:f2:21:46:b9:d7:98:a0:64:3e:1d:40:f6:d5:02:
88:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:ED:E6:E9:CA:BD:43:27:C2:DC:9A:BB:2A:31:F1:7B:95:25:29:13
X509v3 Authority Key Identifier:
keyid:3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:94:95:c4:cd:fd:27:87:c7:9e:97:19:17:06:42:3d:cf:08:
fe:50:16:a3:89:ef:88:9c:ce:b7:6b:9a:0f:bf:9d:70:a2:d7:
bc:bb:87:32:26:f5:13:12:9d:41:81:80:e5:61:08:f8:76:69:
0e:4c:a4:ee:3d:e2:da:48:20:f7:2e:a8:17:ec:dc:39:91:29:
9f:2c:9b:10:a2:d3:77:3c:6e:cc:68:f4:ad:26:ca:1f:28:bb:
5d:21:f9:4a:b3:15:47:4a:6f:37:8b:16:9a:33:bb:b8:5c:8b:
f7:3e:9f:a0:6f:d4:0b:62:6e:95:ef:c8:11:0a:28:da:e6:b1:
22:11:32:1f:96:c2:28:2b:c1:eb:77:81:aa:59:0f:b8:02:44:
f1:6b:82:54:6f:5b:9c:cf:cb:f7:b0:54:95:08:93:3d:d3:5d:
10:00:94:8c:b4:47:84:50:9f:19:20:7a:74:f6:4c:07:50:b5:
d9:43:a7:30:b5:a1:74:f6:4c:5d:79:76:e2:b9:02:b0:b4:f8:
af:b6:0f:2d:4b:d8:95:75:0c:85:ec:7c:0a:6e:90:c2:1b:a9:
d0:e5:b4:15:98:db:b2:41:62:60:8d:b3:2f:3e:7c:e1:c0:13:
cd:b8:17:4a:8d:9b:9c:1a:96:70:3e:2c:b4:ca:81:0f:c0:1b:
89:d4:3b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:14:06 2025 by rpki-client