Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: wEVWQQ0259QjBWpNPFKMGnM1Ors9rK8aSzkJn2wJ6ic=
Subject key identifier: 48:0A:B8:14:6D:3A:E9:6B:AD:86:86:43:DA:14:FE:7C:8D:D8:7F:E3
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 01958F981F8DA50ECD3C4233EE5B83AD66CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 0F6B
Signing time: Thu 13 Mar 2025 13:01:06 +0000
Manifest this update: Thu 13 Mar 2025 13:01:06 +0000
Manifest next update: Fri 14 Mar 2025 13:01:06 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: X3FIHyWJX3glLo4iI7dZoSGw55BM0KDdt3a5fgBofzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:98:1f:8d:a5:0e:cd:3c:42:33:ee:5b:83:ad:66:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Mar 13 13:01:06 2025 GMT
Not After : Mar 14 13:01:06 2025 GMT
Subject: CN=480ab8146d3ae96bad868643da14fe7c8dd87fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:50:c2:98:a9:46:5c:7e:6d:f6:7d:98:03:5e:
3c:26:9c:2d:f9:0a:38:0b:bc:a5:7a:a8:10:f1:3c:
63:08:44:62:dd:08:5f:03:a3:4a:c8:71:39:43:c2:
22:eb:5e:0c:54:85:20:3c:6b:46:53:b2:56:3d:fa:
a4:cd:71:73:b8:13:9d:ff:8a:ab:af:f6:96:cc:dd:
9e:29:91:93:57:29:af:0c:a4:0f:52:85:d4:da:6a:
6c:96:11:3e:b9:8d:f0:4a:2c:47:79:d8:b7:8a:8a:
04:d3:d6:5d:c1:c9:87:da:e2:7e:07:45:c0:b1:a8:
dd:0b:e2:f6:47:a1:15:e5:43:ea:1a:a0:7d:88:ae:
08:97:e9:95:04:5f:a7:5e:3a:8e:b4:0e:18:38:c2:
17:f1:18:76:67:ea:d1:59:0b:bb:50:37:44:97:65:
59:67:87:36:05:ff:38:f7:16:50:c0:52:a7:40:c2:
15:26:19:3f:61:36:06:cc:3b:42:a6:86:97:63:2b:
f4:45:bd:2e:14:17:03:9c:a8:46:10:1f:9c:f2:d6:
bc:cc:af:d5:c8:b3:8e:73:f9:79:e0:b2:1e:c4:ab:
38:63:c1:c0:95:39:08:d8:ee:0e:2f:3a:fe:2f:4c:
9a:66:66:28:20:17:3f:3a:77:2b:7b:d5:ff:b7:8b:
e5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0A:B8:14:6D:3A:E9:6B:AD:86:86:43:DA:14:FE:7C:8D:D8:7F:E3
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ed:1b:70:5a:f5:c7:37:ca:47:a8:c0:13:13:86:ef:b5:b6:
10:35:12:15:b0:a2:d1:d9:95:91:19:e9:7d:a9:76:8a:67:cd:
03:e8:e6:be:96:cf:89:1d:37:76:9e:02:b7:ad:e6:13:47:4e:
b6:69:aa:7a:7b:7b:c8:a1:38:1e:a8:91:85:cd:ad:1b:d6:5d:
e7:b1:4e:65:81:16:8b:64:35:72:5d:ac:7c:fe:24:e0:92:b4:
b9:90:da:06:60:dd:dd:14:07:67:f9:e0:ec:eb:74:51:d2:34:
de:34:5d:d5:2e:7d:00:8c:0f:97:a9:5c:99:59:0c:4c:f3:57:
80:06:ff:39:3b:37:52:97:2f:9f:5d:5b:32:f3:db:39:1c:b9:
e1:ce:a9:bf:f1:b0:f9:cd:9d:97:b9:44:1c:eb:fd:8e:fb:ac:
c9:f0:79:c3:fb:44:74:a9:66:93:0c:87:22:ad:cc:17:dc:21:
31:68:85:6e:a6:79:a8:bb:81:41:7d:4b:bb:ea:3d:96:c5:ea:
e8:92:8d:2e:19:cb:99:ee:27:8d:b5:03:88:6f:ab:9b:37:ab:
b2:c6:ac:0f:2b:4d:2a:f2:96:02:f4:fa:1c:b1:4f:74:28:17:
6d:2a:39:46:a9:46:05:32:51:ab:01:ea:f7:41:27:f1:a9:a8:
1f:ae:e7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:05:33 2025 by rpki-client