Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
File: pQnoZXbAZeFL--6PZSq2wnnM3hI.mft (raw, json)
Hash identifier: DOjr8t4DFOow6ZRcUyy48XO3a0xLPnefk+w4DwebM0k=
Subject key identifier: E5:29:82:00:A9:E3:47:A8:33:56:BE:92:1F:E6:E9:CA:CE:6E:18:6B
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: 019656138C64DDF917A0AC0C42624DA4D5BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
Manifest number: 0E3B
Signing time: Mon 21 Apr 2025 02:00:43 +0000
Manifest this update: Mon 21 Apr 2025 02:00:43 +0000
Manifest next update: Tue 22 Apr 2025 02:00:43 +0000
Files and hashes: 1: eoOnLGiO6CFkl49Rw92BKVWZ1YY.roa (hash: 5KK2WxAAZ4SHFL6JTNlCRgBRKCCitoVvyQFa3VeriMw=)
2: pQnoZXbAZeFL--6PZSq2wnnM3hI.crl (hash: PKAKQTLVJc/w92K88jP+UfImqu2GRpvKBfcm11a43u8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:8c:64:dd:f9:17:a0:ac:0c:42:62:4d:a4:d5:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Apr 21 02:00:43 2025 GMT
Not After : Apr 22 02:00:43 2025 GMT
Subject: CN=e5298200a9e347a83356be921fe6e9cace6e186b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:64:35:08:dd:4b:9f:41:0d:60:78:c4:5e:83:
7e:bc:a9:78:0f:22:0c:d4:f5:b7:17:b4:32:de:ec:
28:a3:51:eb:b6:fb:b4:a4:b0:d4:8c:35:f9:fd:0c:
c9:82:eb:31:3e:0d:66:eb:2e:cb:db:7e:af:9a:d9:
e0:e4:b4:26:fc:ed:cc:61:88:e7:8d:7b:1e:f5:95:
a7:45:74:40:a2:27:6b:75:0c:55:18:79:76:85:d2:
9d:f9:1a:be:42:a9:70:44:9d:a2:e1:61:a7:6a:6b:
10:41:c4:77:6c:c3:5c:65:6d:48:ec:fb:7e:36:0d:
fe:b0:06:57:80:7d:53:60:64:09:34:c2:a5:4b:28:
53:84:d2:47:f0:08:c8:b9:23:a1:48:e3:43:8b:1d:
cc:df:94:bf:4a:40:5a:42:e0:64:75:81:02:19:59:
65:23:53:1e:0b:84:12:d6:ae:f2:0b:e0:ab:2c:4f:
67:02:86:15:c2:de:d8:b8:2b:0b:41:29:ff:64:11:
93:a5:f7:83:03:ac:35:28:61:9c:0d:55:2b:be:64:
48:79:96:ec:4c:5e:86:89:58:79:c8:53:a8:2f:2a:
18:9a:16:32:24:0c:31:99:41:59:8f:0f:05:b9:52:
00:93:a5:ba:93:44:fa:5d:70:19:79:9d:8a:61:06:
a3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:29:82:00:A9:E3:47:A8:33:56:BE:92:1F:E6:E9:CA:CE:6E:18:6B
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:88:84:a3:eb:0d:e7:4f:ec:66:72:c4:a7:40:2f:4d:1f:26:
cb:b0:7c:ea:6b:96:eb:dc:96:f8:24:0c:8e:88:01:61:9a:bc:
a1:50:07:92:64:fb:bc:e4:00:99:bb:17:72:90:9f:2e:56:f3:
b3:69:ab:ae:74:1e:9d:91:5f:1f:57:f9:76:43:67:ec:0b:73:
97:a5:97:cd:8d:23:8b:51:4a:97:80:4d:d6:3e:7c:40:e6:f8:
72:64:f4:cc:a4:5c:b4:0c:c0:06:48:f1:77:d7:bf:92:ae:ce:
d8:e7:a7:b6:67:bf:60:8f:e7:1d:78:cc:8c:65:55:cc:d2:48:
1e:bf:cf:ab:70:b8:39:43:8e:e9:89:df:f0:56:53:96:d8:44:
4a:39:a2:52:d5:2f:49:a1:5d:fb:f7:f6:27:14:d5:29:12:7d:
a7:87:da:72:3f:81:21:6c:35:16:cf:42:f8:25:58:91:86:4d:
cb:47:2b:5f:37:b6:81:67:ee:fa:00:b7:20:d2:a1:ed:d6:a9:
14:15:1a:8e:54:78:1f:2e:54:c0:5a:b5:b9:cf:58:46:4a:47:
5c:b0:a0:11:46:d4:0c:6d:44:54:d7:3f:42:89:46:db:3f:56:
a7:5d:ff:ce:4f:f8:e8:1f:c8:bc:5b:b7:73:c5:6a:ca:5c:22:
20:ad:f7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:39:19 2025 by rpki-client