Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
File: P-XZqjR4a6oW1Fa9857K-12XMPg.mft (raw, json)
Hash identifier: 7NfHfXbsHW1376R8a6lhcMfSFB8RAy/xctvZTjRVyvU=
Subject key identifier: 87:C2:F9:01:21:74:E5:5E:B4:F0:82:E9:95:F9:E1:98:4E:F8:69:3F
Authority key identifier: 3F:E5:D9:AA:34:78:6B:AA:16:D4:56:BD:F3:9E:CA:FB:5D:97:30:F8
Certificate issuer: /CN=3fe5d9aa34786baa16d456bdf39ecafb5d9730f8
Certificate serial: 019657260E006FF2A866C10839296C8229D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 07:00:33 +0000
Manifest this update: Mon 21 Apr 2025 07:00:33 +0000
Manifest next update: Tue 22 Apr 2025 07:00:33 +0000
Files and hashes: 1: I8Hl2QUOJ6pW-HzuzhburaAUCcs.roa (hash: TO7xgPDDMwBnfoyPmeOZq+S6vszklMWr0Jg0Yq+3Oiw=)
2: P-XZqjR4a6oW1Fa9857K-12XMPg.crl (hash: JIN1KhGn3/Hk7wND9MPlvdMp7d0soFHEOCJqqdW9knM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:0e:00:6f:f2:a8:66:c1:08:39:29:6c:82:29:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fe5d9aa34786baa16d456bdf39ecafb5d9730f8
Validity
Not Before: Apr 21 07:00:33 2025 GMT
Not After : Apr 22 07:00:33 2025 GMT
Subject: CN=87c2f9012174e55eb4f082e995f9e1984ef8693f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:96:44:33:ff:0b:3b:8a:7f:47:43:78:e7:86:
99:60:bc:f8:47:66:06:b9:df:71:5b:45:e3:8e:11:
22:db:95:4d:a0:a8:b8:20:cb:cb:3b:27:32:66:f1:
89:94:f3:33:fa:24:b1:7c:c7:1a:e4:af:f5:60:8f:
be:d4:6f:bd:40:b0:46:06:c4:89:da:7d:7d:64:c8:
7e:3a:77:49:de:b8:57:11:e9:66:c7:7c:34:cc:b1:
66:f3:4c:6a:60:c2:14:db:d0:09:f8:eb:81:30:5f:
50:7c:fe:7d:35:4a:8c:c3:83:3f:dd:bc:6c:10:e3:
54:ce:17:cc:c5:ae:c3:00:ff:0a:99:a0:64:ff:c5:
d6:31:c9:66:d2:7f:24:58:92:e2:54:c2:57:ca:a0:
d2:f8:27:0b:71:42:a2:f9:41:11:86:a8:f0:ac:44:
b5:fa:48:64:e3:47:32:1a:66:4c:3c:d9:9a:c9:3f:
e8:64:30:2a:cb:b8:fe:93:7f:db:ce:34:e7:d2:04:
3a:96:bc:df:4b:52:43:ba:c0:38:c3:9d:46:73:50:
af:2f:45:7e:8f:51:f0:18:a3:01:23:40:3c:d6:ed:
b6:b6:d4:eb:e0:84:8d:c0:fb:1f:7d:d8:89:b0:f5:
60:a2:49:38:10:98:ea:30:6e:e4:8f:75:3a:fd:ce:
55:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C2:F9:01:21:74:E5:5E:B4:F0:82:E9:95:F9:E1:98:4E:F8:69:3F
X509v3 Authority Key Identifier:
keyid:3F:E5:D9:AA:34:78:6B:AA:16:D4:56:BD:F3:9E:CA:FB:5D:97:30:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-XZqjR4a6oW1Fa9857K-12XMPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a2fe68-761d-4e6c-9dcd-594c1acd9daf/1/P-XZqjR4a6oW1Fa9857K-12XMPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:06:4d:30:e2:27:e9:2f:cc:c4:69:a6:62:60:99:78:42:4e:
02:21:43:72:92:4f:20:f9:03:e2:a9:95:36:22:4d:03:d2:4d:
4d:b7:71:b8:4f:a5:23:a3:5c:e7:2b:2c:1c:6d:ba:5c:09:05:
94:b6:31:c2:ab:6c:9f:8f:58:7c:7c:f8:a1:b0:75:99:f9:43:
89:0b:a9:ce:c3:e4:96:cd:36:c0:85:a4:64:b7:08:f7:aa:0c:
7e:2a:6b:d9:df:13:d3:89:88:71:b2:17:b7:2d:a6:a5:64:df:
f3:ca:be:84:29:34:ba:f8:ee:fe:4e:1f:e9:80:f7:1c:af:4a:
4c:b6:58:73:1e:2b:a4:de:f5:cf:b4:99:a8:2e:e3:98:a9:71:
00:88:1b:dc:61:80:70:22:c3:b5:95:f5:03:64:fc:b3:49:bb:
24:ea:7a:e5:35:17:2d:88:17:f1:3f:03:62:c0:38:ec:45:d7:
aa:52:ff:29:7e:11:9e:f3:4c:88:64:12:2f:81:ee:5f:c0:e5:
16:b8:03:a0:66:31:81:37:40:3e:be:ab:8b:7a:53:b3:95:0b:
bc:f5:2f:fd:02:6a:0c:d4:5c:44:9c:fc:a9:00:c2:a2:1e:2c:
47:2e:69:81:25:37:69:03:37:6b:48:2a:4f:40:21:ec:92:71:
2d:83:34:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:49:59 2025 by rpki-client