Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: Xvnu2833HzZtkEZltKiylzdpjUX6WwiAaMXRIEGXfOg=
Subject key identifier: B8:3E:B5:CC:22:26:BB:02:45:D2:98:AA:47:DB:7A:FA:81:D4:DC:66
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 0196501131B0E956F93954D463B3D3A05145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 01D9
Signing time: Sat 19 Apr 2025 22:00:26 +0000
Manifest this update: Sat 19 Apr 2025 22:00:26 +0000
Manifest next update: Sun 20 Apr 2025 22:00:26 +0000
Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: 7Q2nJpvDV/kQ4mVtaqKqsNjANBtbV9GsZYaT17tAAuo=)
3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=)
4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:31:b0:e9:56:f9:39:54:d4:63:b3:d3:a0:51:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Apr 19 22:00:26 2025 GMT
Not After : Apr 20 22:00:26 2025 GMT
Subject: CN=b83eb5cc2226bb0245d298aa47db7afa81d4dc66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ce:5e:da:c4:c3:15:b3:05:6a:58:cd:b0:73:
91:c8:83:2b:c1:81:d8:b8:ae:00:89:48:9e:69:93:
9e:b7:8b:88:97:89:39:b4:25:e7:88:ab:0e:1e:c7:
a7:27:59:c2:7f:aa:13:14:5a:3e:5b:6a:20:b3:b9:
a9:30:d2:e9:e8:2b:0c:32:63:83:e9:9c:74:b5:c2:
e8:a9:9a:81:b8:cc:a6:4c:24:3a:9d:46:c5:65:ca:
35:55:16:5f:f1:0b:ff:80:dd:a1:63:fa:e7:5f:ce:
a7:34:68:a0:d2:19:c5:c8:22:7c:b9:41:fc:46:a0:
38:18:28:a6:c8:a3:99:52:b7:6b:bd:a6:3d:09:55:
78:17:47:ee:31:fb:01:bf:6f:88:4e:72:77:02:a9:
83:6f:3b:22:cf:ee:5f:65:64:36:6f:46:04:ad:5b:
50:3b:4f:f6:c7:ef:d0:97:67:65:21:e9:98:1a:9f:
ea:78:4f:39:47:fa:30:4e:0a:b8:a3:df:f7:c1:fb:
35:c7:64:b0:f9:b6:3f:df:83:0b:93:5d:81:4c:47:
ef:47:81:f8:c7:f3:47:f4:31:5e:40:2a:0b:3b:20:
2d:69:94:9d:03:43:f2:1e:f6:c5:93:cc:e6:54:0e:
a4:04:81:ca:59:76:b6:9e:ee:fa:2d:11:fe:3c:a7:
85:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3E:B5:CC:22:26:BB:02:45:D2:98:AA:47:DB:7A:FA:81:D4:DC:66
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:78:1d:ab:aa:86:db:94:6c:75:a4:39:f1:89:5a:0f:50:0e:
4d:1b:ab:26:dc:54:14:12:32:c6:8a:b9:43:41:2c:dc:04:6c:
54:9a:4a:49:07:c2:1d:7a:c6:1f:54:c5:db:ac:b0:cd:b8:2a:
ed:59:4e:22:73:20:0d:cb:39:5a:39:72:66:ae:7b:d5:05:3e:
64:30:89:49:df:4d:fa:9d:92:c1:66:7d:a0:d3:a9:cb:d7:80:
49:f0:fa:ec:d4:f4:6a:7f:8a:ac:83:03:a5:97:01:ee:e4:5d:
32:c0:ee:d0:fd:32:58:65:a5:a8:84:6d:5a:5b:19:65:4c:0d:
ff:40:b4:b1:2b:ff:2e:56:47:4e:7f:28:d1:96:24:57:b3:cf:
dd:ec:5d:8c:47:6d:d3:11:37:e8:8d:15:67:ee:ee:1c:75:ab:
cd:3f:11:32:1c:b6:04:8f:8b:ba:45:30:65:9d:88:69:6b:5e:
c1:11:da:cb:59:f6:d7:a1:fd:58:2d:33:9d:ef:a4:99:6b:c3:
6f:3c:e9:21:db:76:54:fc:47:8d:d7:c9:51:55:b4:a5:f3:34:
c3:46:92:c1:68:59:89:f1:a9:e3:81:79:00:d2:a7:db:9a:57:
38:20:39:62:b6:70:11:4c:ee:00:cc:f2:81:7c:fc:9a:2a:d8:
57:f2:b3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:22 2025 by rpki-client