Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: Y+qecU6LV1yVAFCgEFZQixbTzpGN598f3m5ynqw1dNA=
Subject key identifier: 3A:50:CD:F6:B1:F2:F9:62:73:5F:CD:83:05:1B:F5:D3:E6:2C:85:57
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 019638E481480C94DBAEE6BCC4DD8CEF6C12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0AFE
Signing time: Tue 15 Apr 2025 10:00:21 +0000
Manifest this update: Tue 15 Apr 2025 10:00:21 +0000
Manifest next update: Wed 16 Apr 2025 10:00:21 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: px7OXzIZ2LZpBfqiv4aOZnIr958RJ32qw3AJ3wMxUC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:38:e4:81:48:0c:94:db:ae:e6:bc:c4:dd:8c:ef:6c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Apr 15 10:00:21 2025 GMT
Not After : Apr 16 10:00:21 2025 GMT
Subject: CN=3a50cdf6b1f2f962735fcd83051bf5d3e62c8557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:47:9a:cd:a8:c6:11:45:17:1c:fd:05:67:f4:
63:8e:b2:cd:d1:f7:0e:df:9f:f3:f6:55:87:c4:66:
1d:d9:ec:03:f2:ee:dc:b9:32:03:64:54:a3:ae:1b:
a5:d1:f2:7f:7e:31:6d:14:46:31:ea:ff:10:c4:2c:
9f:02:d8:19:f9:4f:b8:e5:0f:05:11:83:06:61:f9:
55:32:cc:dd:c2:6d:6c:1f:4a:5f:18:8b:73:67:59:
73:4a:77:89:23:5b:d6:f4:90:8e:59:59:23:91:63:
76:52:e7:22:1f:7d:ad:3f:e0:99:14:6b:1d:e2:a7:
80:0b:2f:60:cb:d9:7c:a7:e6:66:f1:4c:21:06:3e:
a7:d2:25:fe:f1:0b:2d:58:94:7b:6c:cc:ec:ac:f8:
6d:26:ff:eb:2a:7b:f1:5b:f2:ba:53:de:f6:b6:e3:
cb:74:63:3b:a4:f8:73:ee:ec:a9:cf:7e:8d:f9:ab:
a7:90:54:a5:e8:fd:b0:c1:d7:15:60:b2:33:9a:a6:
ee:a1:0c:7c:9f:52:e8:72:6e:15:6c:5a:3e:22:e9:
76:b8:79:99:b4:29:48:47:ae:c6:6b:62:15:ab:11:
31:20:e2:a8:c2:f1:93:d5:bd:f2:17:bf:27:37:c2:
83:e6:54:ee:18:6c:74:68:f8:25:0d:c0:5b:5f:15:
e6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:50:CD:F6:B1:F2:F9:62:73:5F:CD:83:05:1B:F5:D3:E6:2C:85:57
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:54:ee:9f:a5:df:dd:d1:bd:c8:92:c3:77:e2:e2:8a:35:e8:
51:ad:5b:6a:88:5d:21:85:70:79:06:05:c6:60:76:b3:39:83:
33:6f:e7:7b:f0:30:e4:55:41:21:e4:1e:d7:bc:98:1d:6b:1b:
13:73:05:7b:76:4f:1d:ff:80:1f:c1:b4:8f:b8:c5:f8:fb:19:
3e:09:d4:3d:25:8b:d4:64:39:f0:c5:de:96:5f:bb:74:5c:70:
5b:fa:d9:c1:66:46:61:9f:12:51:de:b4:37:20:d2:54:6d:3a:
48:87:16:02:b3:ad:fb:df:53:e5:7a:a9:77:f3:d1:ce:96:cc:
98:04:27:a9:49:3d:a6:31:db:59:8e:d1:a0:99:78:0b:07:f1:
1e:67:b3:02:2b:41:b8:72:65:0e:f1:f8:c2:80:36:bc:e0:8b:
15:7a:aa:27:b0:5d:40:12:dd:0c:92:9b:3f:10:eb:15:0c:cd:
28:d1:2f:3f:42:ff:6b:5e:63:11:de:83:f4:9f:e3:ce:05:86:
3f:38:72:d7:72:e9:09:08:51:63:7a:89:bf:6e:c1:4c:48:e3:
dc:b2:43:87:9a:06:c0:80:0a:66:2e:15:af:5d:e6:bb:3b:ea:
dd:84:ce:f0:45:3b:3e:3f:c8:e3:b4:5b:2c:59:53:7e:d9:d7:
5b:2d:ad:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 16:12:00 2025 by rpki-client