Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: SUZEy41YZrzX3lRVmA2Ii6qFrxAS1/ZhRj6Cu7sD09Y=
Subject key identifier: 42:65:52:65:91:6E:8E:55:0A:5D:01:75:3F:D1:50:6C:FA:0F:A0:C8
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 019590060AE0998EA3C702147E6F00C5552B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 092D
Signing time: Thu 13 Mar 2025 15:01:09 +0000
Manifest this update: Thu 13 Mar 2025 15:01:09 +0000
Manifest next update: Fri 14 Mar 2025 15:01:09 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: UT2kxuEFuy/nktoxYvGJ1+PyWB8JHBSXpepngaVKRJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:06:0a:e0:99:8e:a3:c7:02:14:7e:6f:00:c5:55:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Mar 13 15:01:09 2025 GMT
Not After : Mar 14 15:01:09 2025 GMT
Subject: CN=42655265916e8e550a5d01753fd1506cfa0fa0c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5a:8c:c1:8f:a9:1c:1f:5d:4c:a9:33:3f:f5:
77:aa:17:a5:db:81:9a:cf:f0:1e:2b:30:f3:09:03:
0e:bc:be:dd:d2:9a:06:82:38:bf:3d:ec:d8:e1:12:
c2:bc:b3:a6:b5:c2:b8:1a:b6:b7:a0:d6:26:1f:ff:
86:cf:2d:b0:62:1c:e2:6f:1b:0e:4c:76:51:38:c5:
91:26:09:c9:1a:86:dd:83:fa:02:08:67:d9:22:3a:
5a:e2:5c:4f:ec:15:20:65:ac:ce:71:5f:ad:2e:f4:
79:0d:76:f9:cd:ef:29:8f:43:20:9e:d1:32:b6:2e:
06:f0:62:a1:f2:70:5f:b9:24:bf:6c:8e:cd:8e:a9:
8e:e6:63:e0:be:a3:c5:99:ec:73:73:64:99:ee:a8:
42:bd:9a:23:40:12:e9:6e:a5:99:82:d5:39:54:cd:
3c:c9:08:59:7f:a7:75:1e:5a:40:6a:c3:21:e0:5f:
49:f9:c7:4f:4c:67:77:e3:e7:fe:f7:76:63:85:49:
25:56:9a:9a:f0:3b:b1:2f:20:06:19:84:62:fb:f2:
7f:7c:82:3b:77:84:09:77:4a:bc:f7:4d:b2:9b:72:
21:e4:5d:0b:1f:61:66:5c:27:13:3c:be:63:78:75:
f7:9e:57:0b:5c:da:d7:7d:9d:00:84:5b:35:76:4f:
d1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:65:52:65:91:6E:8E:55:0A:5D:01:75:3F:D1:50:6C:FA:0F:A0:C8
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:c4:07:50:2d:11:3f:43:aa:f3:8a:c6:0e:e0:86:12:af:63:
3e:0b:04:c6:9e:aa:87:39:8b:64:3a:f7:cd:4b:98:a7:c9:78:
72:5f:55:3b:e9:ef:5c:c1:9c:d4:19:37:aa:24:c4:4f:54:71:
1a:cc:b4:aa:dc:73:e7:d6:7c:41:6f:c3:77:25:2f:0c:7f:35:
9a:e5:ae:1b:ea:0e:d0:c5:6e:2b:db:6e:7d:16:f0:69:f3:dd:
3d:c4:4b:de:6f:66:93:6d:60:94:6d:6f:3f:ae:e4:ce:74:62:
ad:f5:1d:5f:7c:61:ea:0f:40:ba:40:c1:7f:1f:5d:47:72:29:
a3:93:ff:d7:7e:8a:89:87:c9:a7:7e:7e:7a:9a:b8:b4:a1:88:
ba:e8:87:c5:7e:6a:b9:13:78:ca:6b:0e:66:82:18:ea:25:61:
53:0b:e5:90:ef:02:d8:83:96:b2:c5:14:b4:79:e7:79:4e:54:
70:a2:9a:3c:e4:35:53:c2:74:5d:9f:96:b2:62:02:42:c0:ee:
74:0f:8a:6b:c7:b8:56:22:f7:82:74:9b:73:8c:2e:c8:23:50:
eb:79:b8:fa:50:fb:fb:27:41:13:20:d7:72:a2:ca:75:42:42:
03:b4:e5:71:41:b6:6a:97:23:24:29:72:08:99:67:af:d5:da:
61:b0:98:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:10 2025 by rpki-client