Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: OHWfXkKrMa+HwwUduC88BYR/a7y4tahDjtwYUzvijiE=
Subject key identifier: 8F:35:97:AE:31:47:A5:A1:37:52:CF:49:F0:2E:0E:59:AF:44:06:33
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 0196458D4F922054DD14375CCF8D466DD385
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 098B
Signing time: Thu 17 Apr 2025 21:00:10 +0000
Manifest this update: Thu 17 Apr 2025 21:00:10 +0000
Manifest next update: Fri 18 Apr 2025 21:00:10 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: jgr7zZTUCcs5/hccaOwrRPEiHMLv5kBnJBcTIWk/Nvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:4f:92:20:54:dd:14:37:5c:cf:8d:46:6d:d3:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Apr 17 21:00:10 2025 GMT
Not After : Apr 18 21:00:10 2025 GMT
Subject: CN=8f3597ae3147a5a13752cf49f02e0e59af440633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ec:20:ae:8d:44:4b:fa:30:dd:29:62:b9:b6:
fe:c0:f1:db:f7:14:68:5f:43:e4:c4:89:46:0e:7e:
ed:e7:fc:9d:45:bb:4a:a2:8d:4b:c3:87:80:d2:8b:
a1:23:41:ef:8b:0f:2f:2a:2f:8d:2e:ed:c0:01:ba:
a4:4a:90:bf:d1:2b:91:17:2d:73:71:a7:13:4c:86:
65:8a:4b:d8:cc:41:f7:de:90:45:58:6d:ad:f4:64:
f3:75:1e:eb:dd:20:d9:0a:04:43:4f:0d:1b:37:dc:
2c:04:d6:92:a7:5a:6a:ad:83:d3:ee:48:21:f5:6c:
a7:11:0d:75:58:11:a8:57:0c:b4:00:8d:90:be:f5:
57:78:63:23:26:e4:f0:3e:c9:23:bf:d8:23:0f:b1:
05:fd:7c:a1:3f:90:dd:69:77:d3:be:e6:90:01:70:
c8:fe:80:05:3e:ef:f6:dc:5d:d8:d0:5e:dd:3e:7c:
86:c0:47:85:09:4a:a3:88:49:4d:32:dd:1e:36:7b:
b3:ed:16:9d:f8:86:83:27:81:6f:6b:ee:02:a2:0c:
b3:c7:db:58:1a:7b:73:60:d2:60:41:8e:90:30:6d:
bd:c6:fe:aa:94:aa:08:87:50:fe:4a:7d:7f:4c:27:
78:f0:e3:96:e6:ae:5f:fd:cb:cf:96:96:f8:7e:c3:
40:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:35:97:AE:31:47:A5:A1:37:52:CF:49:F0:2E:0E:59:AF:44:06:33
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f2:36:66:ea:7e:79:ac:32:eb:2e:63:e1:1a:58:12:f9:33:
67:a1:11:87:2a:b3:93:f9:a7:a0:18:dc:e9:46:92:49:8b:6f:
36:8b:88:fb:80:66:37:9f:55:4e:8a:9a:e4:81:1a:05:94:27:
01:18:cc:21:48:38:40:04:fe:a0:4e:18:8a:0d:d9:49:63:44:
fb:ad:33:a3:ad:2a:9a:e3:f0:25:72:31:4a:1c:52:b5:98:4c:
24:59:6a:e3:e2:52:c6:f3:8c:11:73:79:0b:74:f7:da:7f:a3:
76:31:dd:c0:f3:6b:62:25:b4:69:da:66:05:1e:00:fb:45:ae:
7c:8f:75:16:f3:07:ac:a7:bf:34:2a:2c:fd:cf:35:84:1a:fa:
91:32:a6:31:9e:47:81:e2:ed:f0:a8:ca:9e:26:76:c3:1d:ac:
09:7b:4c:53:94:15:58:ba:27:d3:eb:4c:68:a2:9b:d3:3e:0c:
bb:fb:93:20:a9:06:fb:90:8e:f0:cd:a1:7d:dd:46:fb:67:a8:
51:b1:8a:1d:ba:47:49:0a:71:ed:0b:93:44:ee:8b:42:e8:ac:
4c:73:cb:45:f0:b7:43:5a:8b:1f:64:04:83:90:ae:03:d1:49:
34:8a:4f:f1:cf:a4:14:ec:b6:bd:08:4d:be:be:8f:71:2a:ce:
93:cb:db:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:53:43 2025 by rpki-client