Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
File: PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft (raw, json)
Hash identifier: uy4+5clhuv/NRLrWN+Q8OqOwt5G/x168B9dEmDIzzs0=
Subject key identifier: 3F:43:17:7F:67:00:27:A4:BA:F4:0F:17:81:C6:03:2A:E6:A5:DA:A0
Authority key identifier: 3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
Certificate issuer: /CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Certificate serial: 0196440CC7C4C7D71A5E8291624882BDD32A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
Manifest number: 0688
Signing time: Thu 17 Apr 2025 14:00:10 +0000
Manifest this update: Thu 17 Apr 2025 14:00:10 +0000
Manifest next update: Fri 18 Apr 2025 14:00:10 +0000
Files and hashes: 1: FNcoFmyMsrmKFW3pVuTLoiKb9Y0.roa (hash: L2M1ZIYqNE7da9VzHmMG0LiaV1K9e8NQgXmk4Xn6knE=)
2: PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl (hash: HLzX1ymYWPtsjfghL2ns6EvByoJqLqkRNvgSWCvnW3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0c:c7:c4:c7:d7:1a:5e:82:91:62:48:82:bd:d3:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Validity
Not Before: Apr 17 14:00:10 2025 GMT
Not After : Apr 18 14:00:10 2025 GMT
Subject: CN=3f43177f670027a4baf40f1781c6032ae6a5daa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:53:41:97:ce:ba:d5:8a:fb:a1:a2:8b:44:e8:
26:58:56:35:30:ea:e7:ce:63:b6:5f:bb:f7:0d:9d:
d4:0a:2e:92:ce:05:54:e9:3c:11:71:f3:69:10:7f:
b3:1c:5c:39:47:40:1c:be:2d:bf:d7:47:f8:61:52:
4b:f4:2a:0e:c0:6e:00:ee:93:ea:9a:2e:9a:a9:a6:
76:17:61:bf:42:f9:49:f2:66:bc:81:fb:ce:0a:25:
d5:f4:17:fe:4c:5b:60:e5:69:4f:f1:f9:97:41:1e:
ed:40:86:22:96:5c:ef:43:bf:56:33:cd:d7:65:38:
5f:a2:fd:a0:42:cd:c5:2b:db:29:bf:e0:35:31:d1:
d8:0d:66:73:49:26:c2:2f:6c:3f:65:39:33:77:80:
0a:fe:7d:be:a9:ad:95:24:5d:40:d5:db:f0:d9:53:
08:06:ff:5b:7a:6d:9b:3a:15:bc:51:67:d0:35:d8:
eb:8a:70:2a:15:5a:55:6f:d6:f2:c1:9c:a3:e9:82:
f5:7f:58:9d:ab:3b:31:30:86:d1:1b:57:f5:20:02:
83:32:1f:5a:95:7e:ea:06:b1:47:86:7f:b5:19:b7:
62:0e:33:a2:a1:ab:9e:55:73:b5:20:5e:fd:74:fd:
3b:fe:cd:65:c3:29:ef:1f:5e:ba:1d:fd:76:14:10:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:43:17:7F:67:00:27:A4:BA:F4:0F:17:81:C6:03:2A:E6:A5:DA:A0
X509v3 Authority Key Identifier:
keyid:3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:2c:bf:d7:0d:d7:7a:de:a0:94:08:25:1c:fa:2b:bc:81:f4:
52:b9:b5:3c:31:a9:08:32:16:94:b9:9e:98:bf:62:07:be:f2:
f7:ee:2d:e1:f1:ea:e8:df:1a:8e:a9:aa:2a:52:8e:ad:64:41:
ca:02:1f:65:54:61:dd:48:17:1b:92:fa:3d:5e:e4:43:a3:31:
e8:58:33:f9:02:1f:1a:3a:6f:fe:bb:42:99:01:ca:34:e6:ce:
d7:b1:92:2a:07:b1:00:f7:5d:50:94:40:61:7f:df:85:78:6d:
38:7c:2e:23:a2:1f:f7:ef:5a:fe:c3:19:0f:c1:68:68:04:6d:
26:78:90:55:14:68:47:7f:44:d0:56:6e:4c:6e:1e:bc:b4:42:
b3:28:45:94:32:b2:ad:eb:ea:dc:9f:1c:14:4d:7a:09:db:aa:
dd:77:a1:a3:de:91:f5:03:c3:05:15:7f:74:07:19:71:19:bb:
0b:81:8d:ab:2e:30:a2:90:64:8d:06:c3:6e:d4:9c:f7:53:72:
c7:bb:58:61:b7:34:85:56:8e:bc:45:9e:1e:e3:15:fc:50:f2:
44:5b:f2:90:ed:1e:a4:ba:4c:1c:49:74:ae:80:aa:64:96:07:
ae:a6:01:1a:56:e0:ea:1a:35:2b:60:95:ef:b9:30:cc:10:c5:
d2:7a:a7:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:40:05 2025 by rpki-client