Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: j5kYrwZTk2nyyjuiSYjvaQ2zIhAIejJfpbcA41s+hOo=
Subject key identifier: 39:B4:10:91:5A:F3:F1:E1:3E:09:85:5C:0F:94:A5:45:0E:82:FF:F4
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 01964E9094CDF98ED2E955735BE7F515792B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0A17
Signing time: Sat 19 Apr 2025 15:00:19 +0000
Manifest this update: Sat 19 Apr 2025 15:00:19 +0000
Manifest next update: Sun 20 Apr 2025 15:00:19 +0000
Files and hashes: 1: 4HFAWmQXrJvJPwvQ-nacdREAjwA.roa (hash: smesMzM3abS3/IiONa1NHYIBIDWL+noqBcVPlJGz8P8=)
2: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: SN7GpCnRuAPAH6zP9ndd/whsFdB3FhHbNh5ed9iGkFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:90:94:cd:f9:8e:d2:e9:55:73:5b:e7:f5:15:79:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Apr 19 15:00:19 2025 GMT
Not After : Apr 20 15:00:19 2025 GMT
Subject: CN=39b410915af3f1e13e09855c0f94a5450e82fff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:88:97:88:28:7e:e1:f7:6b:a5:08:5f:e2:a3:
38:52:96:90:2a:e5:73:a6:e7:f4:08:76:95:f1:6d:
e8:78:e5:e4:f2:0c:9d:38:97:44:cd:ba:2f:42:e4:
00:e5:86:ea:7e:7f:82:41:77:be:84:7e:7e:e5:0d:
34:db:29:b0:bb:6e:c5:61:1a:d5:d6:d7:69:dc:34:
a7:45:f6:96:2c:8a:f0:af:d9:e3:fe:08:aa:e4:16:
21:f4:04:39:21:c0:4e:7c:9e:75:99:88:e5:25:1d:
9a:ac:9f:99:44:89:2e:c3:93:18:d1:48:b8:07:19:
93:ae:bd:ef:4a:d4:e5:2d:31:63:87:b1:b8:5d:57:
4c:c8:2d:b4:30:6e:ed:a5:96:60:6c:74:07:b5:60:
b0:80:4d:75:b5:0f:d2:97:a6:51:d0:ee:a8:ba:c4:
63:f5:18:0e:85:38:7a:09:4d:77:7d:95:69:31:7b:
7c:c7:59:95:a3:7b:08:6c:3b:25:cb:6b:9f:45:27:
fc:48:93:b2:8f:60:da:7b:d6:51:2f:d8:ae:ce:25:
54:51:67:dd:fd:1d:1a:04:c8:21:ff:9c:3a:4d:4b:
e4:c0:42:8e:af:2b:ca:f9:eb:e1:02:c2:97:6f:ef:
25:2f:18:f5:49:43:d9:02:d5:cd:bb:51:7c:1a:62:
86:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B4:10:91:5A:F3:F1:E1:3E:09:85:5C:0F:94:A5:45:0E:82:FF:F4
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:8c:63:4a:c4:1e:20:50:67:23:3e:80:73:f7:04:ea:c3:2b:
93:a7:3d:1a:f8:37:e6:96:42:cd:e4:a9:f4:4d:40:5e:a8:e6:
38:e4:b9:73:9c:13:24:1b:d4:7f:9c:b7:9e:2f:1c:d1:33:4e:
42:b0:c2:d0:27:2e:0d:01:20:55:50:cf:1a:2c:af:df:be:fd:
e0:5b:1f:b2:6f:51:c6:ce:0c:0b:51:e9:fd:d4:43:2c:5d:0e:
e7:ee:7d:10:2e:95:ae:63:bb:e3:29:a7:0c:28:98:cd:f1:35:
7a:71:e8:28:7a:a7:be:d1:ae:3c:93:b5:83:ad:70:26:4c:39:
32:d1:e0:49:45:62:c7:cd:0d:11:28:59:90:c3:28:34:83:70:
57:f2:43:c9:de:2d:53:94:e4:0b:3d:4c:9f:33:b3:08:34:15:
90:8c:45:9e:a2:90:41:92:6f:2b:cb:67:70:01:4a:78:08:4b:
93:de:11:09:2a:bf:ab:90:f0:42:8c:5c:5a:fe:a4:5f:97:50:
f2:e2:de:bd:99:7c:a3:0d:03:84:aa:05:92:d5:2e:43:e6:0b:
ed:0f:1e:53:ba:8f:35:a0:28:af:8c:56:b2:91:e8:1f:55:7c:
24:41:b1:3f:15:76:1f:7b:ef:60:e9:d7:8e:de:76:9c:fe:a9:
1f:c7:36:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:12:14 2025 by rpki-client