Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
File: pHwKyKnV9ixJHUsXyyErUsDnVgc.mft (raw, json)
Hash identifier: MPUiQ8jvYIWjaNWcTWyJ2UCUFklm45b3tj49wQl8HOs=
Subject key identifier: 09:43:37:18:0A:5B:6A:A2:76:F0:C6:B6:53:79:F5:F0:80:E6:6C:C0
Authority key identifier: A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
Certificate issuer: /CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Certificate serial: 01965914BC57AD37ECE9D412B9D896BA5D85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
Manifest number: 1143
Signing time: Mon 21 Apr 2025 16:00:53 +0000
Manifest this update: Mon 21 Apr 2025 16:00:53 +0000
Manifest next update: Tue 22 Apr 2025 16:00:53 +0000
Files and hashes: 1: fFbdm0OeWE1GYVnCMSWrkaX1IWg.roa (hash: H5NNOHLLRS0hsZTLRHxW4ce45JGvEraIddrEMS924Cg=)
2: pHwKyKnV9ixJHUsXyyErUsDnVgc.crl (hash: voYsWnHNJgotnN9dxeJaaVL1gKtWd1qMssi3lCxYCNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:bc:57:ad:37:ec:e9:d4:12:b9:d8:96:ba:5d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Validity
Not Before: Apr 21 16:00:53 2025 GMT
Not After : Apr 22 16:00:53 2025 GMT
Subject: CN=094337180a5b6aa276f0c6b65379f5f080e66cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b5:db:0f:32:bf:99:1b:72:ee:a9:82:0b:fc:
bf:62:79:73:37:af:63:53:a7:7f:06:0f:97:be:29:
40:c9:a3:c5:05:0e:ba:92:0a:5e:41:e0:a7:e9:bb:
c1:e5:f5:ee:66:cc:d3:f7:f7:dc:b6:c2:d7:83:44:
15:75:bc:ac:5a:3b:9f:16:b2:2e:4d:62:b5:93:c9:
f1:6e:9d:15:28:f1:5d:63:aa:87:7e:74:6e:5d:8f:
b9:7c:68:e0:7b:e2:6f:ad:66:87:7a:67:9d:8f:95:
a7:7e:00:2d:f3:44:eb:c4:35:00:5e:8b:20:3f:03:
74:0d:04:cc:7f:de:51:a3:7d:8f:08:74:c2:1e:70:
5b:1c:62:e4:c8:e5:f8:9e:a0:db:d1:73:0f:f7:8d:
b6:eb:75:a6:0a:26:92:e5:28:3c:f8:2b:50:d0:a5:
15:b1:91:ad:18:ad:97:96:c4:db:43:e7:6d:13:00:
28:b5:ef:76:c3:9d:93:79:fc:58:a3:38:ea:e5:84:
1b:3d:b0:ec:5d:cc:76:fa:af:08:2d:fc:1a:c6:64:
5a:57:08:4c:d2:51:1e:63:f5:8e:5a:e0:12:e9:6a:
88:2b:90:c6:4e:f9:61:24:2b:a8:7e:16:1f:e1:f2:
f2:db:37:43:02:b4:5d:97:9f:d4:b5:16:fa:8f:81:
4a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:43:37:18:0A:5B:6A:A2:76:F0:C6:B6:53:79:F5:F0:80:E6:6C:C0
X509v3 Authority Key Identifier:
keyid:A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:e1:eb:63:3c:50:44:b7:10:c6:00:16:9d:6a:61:9b:b7:5d:
71:a0:b4:86:c2:b6:94:72:e5:8a:d1:02:5f:3f:87:cc:f2:7d:
56:de:eb:4f:de:c0:86:61:49:91:b9:74:e7:94:32:5d:6a:0d:
b4:cd:87:b5:89:02:10:41:51:59:fa:f7:1c:f8:41:60:0e:49:
95:f7:97:44:18:bf:49:2a:23:7b:ef:90:c0:20:32:83:d0:d3:
16:d6:95:d9:e5:df:ec:6d:49:0c:c3:dc:14:e6:83:95:67:2c:
e6:58:ee:e8:43:54:42:83:85:48:c6:c8:01:51:2e:ab:12:30:
b3:89:1e:aa:0e:3d:49:a9:dd:5d:b0:4e:af:99:40:3c:1b:89:
9a:2f:e2:d0:9f:ff:88:ca:b0:89:92:35:aa:25:63:25:13:4e:
1a:d1:a7:a2:d8:d8:c5:13:08:b3:c8:f1:e7:a3:36:aa:e9:68:
ed:0e:9d:73:a8:86:a3:7f:64:0d:2d:2c:b7:7e:1a:df:1d:40:
d4:0d:86:86:93:3f:12:6a:ce:1d:45:ea:83:85:b1:4b:2e:14:
bd:e1:c2:bc:2b:ff:6d:3a:a5:be:19:6e:67:d3:c7:b2:bd:33:
c5:61:b8:3a:96:fa:d5:51:48:32:28:d2:d7:95:11:34:63:45:
c2:a0:12:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:04 2025 by rpki-client