Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier: Evwvv+KWYXapRbc/OiLkIfQUnWZquuB1nuj+gnXK0jI=
Subject key identifier: A2:59:AC:71:F4:67:A3:CB:78:F1:A7:CB:2D:03:A5:BA:96:E0:4D:AC
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial: 0196406706C6AD26E3C13744C900EFF9E42F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number: 02F8
Signing time: Wed 16 Apr 2025 21:00:15 +0000
Manifest this update: Wed 16 Apr 2025 21:00:15 +0000
Manifest next update: Thu 17 Apr 2025 21:00:15 +0000
Files and hashes: 1: 0-NbRqc8zQ3-jTIYZOwXbybz260.roa (hash: F4aAH1P/CqccbM0rJQ6/jB1mC+tQi8oCbtTD8Uif+I8=)
2: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: +nUz28I4FJcBXbtD5AZiDyI3YiQVVW5GxYPrB3za1dQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:06:c6:ad:26:e3:c1:37:44:c9:00:ef:f9:e4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Validity
Not Before: Apr 16 21:00:15 2025 GMT
Not After : Apr 17 21:00:15 2025 GMT
Subject: CN=a259ac71f467a3cb78f1a7cb2d03a5ba96e04dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:58:5d:34:58:8d:0b:4c:2b:a5:d0:bc:3b:e5:
6d:3e:8c:63:a8:c0:0f:5f:f2:83:da:6d:f9:27:54:
6d:f6:51:2e:28:24:e5:7c:ef:c6:2d:d6:3a:61:fb:
09:24:7e:a4:88:54:87:e4:56:b5:57:df:97:1c:52:
ee:f7:0b:cd:8c:ed:8e:7b:19:ff:f0:17:d9:bf:70:
ed:2b:93:a1:68:5a:1b:b4:50:a4:68:ed:ea:84:d4:
d9:8c:d2:64:db:09:37:87:29:7c:5a:38:3c:2d:ba:
97:11:c4:e9:df:67:fd:bc:96:98:92:de:9c:e5:c9:
1e:0b:3d:39:87:92:8d:0e:2b:ba:d2:fe:fd:71:70:
a5:db:b7:d2:d4:65:16:65:ea:1a:65:1e:a7:6a:b1:
36:9f:c9:0d:6c:56:3b:d6:51:8f:5b:3b:49:08:98:
12:45:78:27:52:8e:02:5e:5c:b2:2a:c9:e6:34:7e:
5e:c9:2e:c8:75:0c:64:db:b3:12:40:f0:18:25:62:
19:f3:fd:99:30:08:99:62:d1:e8:15:07:64:e5:25:
d4:16:62:a3:8a:cf:4c:cf:ba:1f:4a:76:14:7b:cb:
e6:73:35:51:5a:1b:55:1d:b3:ab:5c:69:8a:19:fe:
5d:30:a9:5b:9e:55:69:78:cf:ef:97:fd:b4:d1:b6:
8a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:59:AC:71:F4:67:A3:CB:78:F1:A7:CB:2D:03:A5:BA:96:E0:4D:AC
X509v3 Authority Key Identifier:
keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:02:cd:d3:ae:37:85:b6:fa:98:08:95:0a:93:d9:36:9b:a7:
d5:85:04:a1:88:16:aa:d8:5e:58:ae:f2:5f:e6:e7:64:52:69:
49:bb:b1:6b:76:90:bd:89:15:4f:21:05:87:ce:0d:4c:4b:a0:
23:91:41:42:15:89:29:69:a6:d2:0c:ce:d6:88:e7:3b:04:fb:
27:67:f3:83:c5:9b:39:56:23:91:e7:3f:29:cc:21:3e:b2:c2:
08:43:0e:5e:20:12:60:1e:10:46:50:ca:42:6b:50:54:56:c8:
a5:e5:40:f1:6a:f6:d0:29:53:b2:9c:05:ad:11:5d:f6:68:0d:
5a:36:64:f4:7f:a7:24:78:ad:31:30:3d:02:86:b0:41:f6:d6:
22:49:57:66:93:7b:1a:9b:7c:8f:3e:68:37:96:48:bf:68:8c:
ef:74:30:ea:fd:5f:bd:97:57:85:be:45:f6:4d:4a:64:00:fe:
35:15:46:43:1b:a3:9d:44:a0:17:9b:c8:d7:b5:44:55:45:e9:
17:65:08:75:cc:b4:18:83:82:a6:db:01:9e:55:b5:07:37:ee:
a6:f1:82:ac:ee:eb:2a:fb:cf:12:6a:1d:8e:f2:69:4f:f6:79:
65:2d:9c:6d:35:3f:19:ca:36:71:7f:82:30:22:70:5e:81:67:
0d:74:21:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:16:17 2025 by rpki-client