Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: eCyRGvJT2+IV/1rH0ydAhuH+pU59R007I0qDcFLeFw4=
Subject key identifier: 54:74:F7:09:07:61:F9:E9:76:9A:3D:F8:75:6A:93:43:0C:45:4E:DF
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 01958EF3926112C1486DC3F85F800D71A43E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0AA6
Signing time: Thu 13 Mar 2025 10:01:22 +0000
Manifest this update: Thu 13 Mar 2025 10:01:22 +0000
Manifest next update: Fri 14 Mar 2025 10:01:22 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: HWlHL5zG+X1AdW5cNfhjEg6YMPJEcTekNjCc/kCkf48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:92:61:12:c1:48:6d:c3:f8:5f:80:0d:71:a4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Mar 13 10:01:22 2025 GMT
Not After : Mar 14 10:01:22 2025 GMT
Subject: CN=5474f7090761f9e9769a3df8756a93430c454edf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:06:41:67:17:00:02:84:de:2a:28:62:00:24:
4e:a1:ce:5a:68:05:ca:25:e5:2f:07:ee:cf:d6:8e:
5f:6c:0a:3e:84:52:88:c0:cb:97:b4:d2:2b:6e:25:
c0:b7:cf:e2:3f:84:ee:97:f5:92:2a:e7:80:50:32:
68:e4:91:3f:c7:3d:8a:a9:c0:33:f7:fa:a1:92:7e:
ca:56:0b:f9:ee:db:77:0a:0f:dd:dc:a6:33:c7:04:
2b:f8:8a:83:b6:c0:42:29:f1:0d:e4:71:fb:47:a0:
3b:e7:e5:3b:03:a1:00:b4:c0:e8:c1:9f:c9:bb:8a:
3c:79:eb:0d:74:cd:e5:ca:6c:67:f8:35:0b:37:ca:
fa:20:de:a4:32:4e:2a:ae:5f:79:cf:b4:7c:a9:21:
d2:5c:7d:85:fc:fa:62:9b:5d:42:c3:32:3d:7e:7d:
24:5a:7c:13:ac:9a:a2:8e:2a:d9:30:c9:22:07:fe:
94:d5:fb:26:57:ac:16:41:79:7a:56:22:66:2f:a6:
ff:32:fd:a3:4f:8f:86:bf:77:b9:df:e3:6e:7b:c8:
3f:36:ba:f7:a3:e5:ab:47:6f:9f:96:26:32:c2:e1:
63:ee:52:0d:c7:44:9a:ba:d1:ff:0b:ee:90:07:dd:
44:b4:d3:a3:77:65:88:25:e7:1c:71:f9:24:38:a0:
33:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:74:F7:09:07:61:F9:E9:76:9A:3D:F8:75:6A:93:43:0C:45:4E:DF
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8b:9b:8e:39:26:c7:a9:8a:df:e3:3a:ef:df:05:63:61:1d:
a1:fd:f5:1d:d2:72:65:9f:69:57:fb:c8:e1:75:f8:fb:bf:96:
bf:0e:95:10:cb:a7:50:ad:79:cf:05:b9:8f:a5:50:f6:84:97:
14:50:97:77:e1:b6:5f:b8:fc:72:d3:2a:73:63:b9:e2:45:11:
9e:f2:45:ca:30:f1:a8:0d:72:91:9e:9c:af:1a:43:22:a9:aa:
f7:0c:93:42:6d:e1:3c:b1:e7:30:15:a6:fd:db:85:44:64:86:
4d:16:b4:01:83:be:8b:b3:02:af:ad:f7:55:92:90:01:a6:20:
1f:df:15:66:c5:c1:47:5f:3d:ed:11:4a:51:a6:94:2c:09:d9:
cf:f6:38:8c:84:3e:e3:1b:f1:8c:96:a7:81:90:8c:49:1a:2c:
39:38:db:c0:38:ab:9e:ef:ec:2c:4a:f6:79:4e:10:b5:ce:5c:
32:7a:c3:20:8a:8c:8b:1d:f3:e8:41:ff:bc:84:1e:29:58:32:
49:bf:95:14:40:72:db:2f:e8:46:f5:d0:4a:7c:f3:88:c2:93:
5d:dd:48:90:b8:6c:04:be:9e:a3:3c:43:01:26:48:cc:80:17:
b1:3b:e4:5c:a1:20:45:28:d1:20:b7:93:43:08:7c:37:2d:ac:
27:3d:bd:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:10:57 2025 by rpki-client