Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
File: pl24nou2YPIetcSvO5rdUtV-uJ8.mft (raw, json)
Hash identifier: oUlHhnDMhdIJGPc21x3QodXWT6U2GR1w8x6982WTIE8=
Subject key identifier: E2:45:72:E3:C0:26:CE:C9:BD:61:7B:E5:4A:94:8E:98:00:68:CB:56
Authority key identifier: A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F
Certificate issuer: /CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f
Certificate serial: 01962ABCAE3AA91C29DFD88C616577387DF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
Manifest number: 0251
Signing time: Sat 12 Apr 2025 16:02:10 +0000
Manifest this update: Sat 12 Apr 2025 16:02:10 +0000
Manifest next update: Sun 13 Apr 2025 16:02:10 +0000
Files and hashes: 1: dz9PyU4ctyXKZ49cHOyHFCLYwcU.roa (hash: 3Y8oozkK4fYw8w+acos4s7WtEJkSyImOIymISL/lshA=)
2: pl24nou2YPIetcSvO5rdUtV-uJ8.crl (hash: viDKF6SGGqMvg3Q2oJAaNWHYsxJxkQNjKRIQjDqMofo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 16:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:bc:ae:3a:a9:1c:29:df:d8:8c:61:65:77:38:7d:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f
Validity
Not Before: Apr 12 16:02:10 2025 GMT
Not After : Apr 13 16:02:10 2025 GMT
Subject: CN=e24572e3c026cec9bd617be54a948e980068cb56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:af:5c:e8:e4:9f:0e:c5:ed:57:ac:93:d6:9f:
22:8e:21:42:35:73:33:f2:61:e5:58:e7:e0:4f:c1:
69:0d:ec:17:d4:ce:f4:8d:45:56:ff:cd:f5:60:1c:
66:5e:83:13:df:59:79:b5:76:25:70:56:05:e1:f4:
24:96:ab:fd:39:cf:39:59:b8:12:97:7a:17:3e:a2:
5e:3b:bd:bf:ea:14:1a:18:43:e5:fe:7a:aa:a4:ca:
fa:22:c4:61:68:3b:64:d2:be:1c:86:60:ce:d0:70:
a1:3f:08:e5:24:0f:1a:ae:7a:3f:1a:0f:f1:a0:5c:
bf:30:0c:8e:73:e2:1c:3e:18:be:a5:30:16:5e:5b:
06:bb:29:88:1a:29:92:83:97:3c:d8:22:62:2f:89:
b4:91:8d:fb:0b:62:f3:7a:dc:11:36:e6:86:5c:2a:
7f:52:69:dd:f4:c9:f8:cb:6f:7e:2c:12:35:a2:60:
ce:b7:93:ff:24:47:99:61:26:45:60:68:01:90:79:
25:c3:c3:06:f0:7a:fe:48:f2:3c:a1:de:0b:dd:2c:
32:fb:75:21:49:8e:c9:e7:c1:da:87:2b:ed:ef:28:
ba:b4:7d:12:c0:aa:da:29:38:4c:4d:30:3b:62:d2:
75:ef:bf:95:96:c1:ef:3d:19:f6:3b:a1:65:f2:93:
08:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:45:72:E3:C0:26:CE:C9:BD:61:7B:E5:4A:94:8E:98:00:68:CB:56
X509v3 Authority Key Identifier:
keyid:A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:f8:80:2f:f7:3e:59:84:a4:66:ba:7f:5e:47:4d:b3:ca:57:
86:29:3f:b9:c9:d0:5f:8e:e2:15:34:b6:64:a4:93:0d:02:b3:
59:74:4b:d3:b5:f6:56:68:a8:a3:2e:f4:38:eb:a5:7e:3a:8c:
ae:86:24:82:93:a8:bd:e7:1a:dd:b6:12:d3:20:5e:c8:41:b3:
1f:5e:4d:a3:d0:40:bb:6f:56:87:8b:9b:31:21:a9:fe:13:8c:
cd:be:e7:5e:e1:35:f8:60:96:a9:a9:71:00:f0:15:98:88:25:
75:0b:67:68:04:61:12:61:f9:16:9f:81:f2:e2:d9:bb:97:91:
39:da:c6:97:8b:d1:ff:eb:be:62:de:6d:d4:b3:e9:a7:61:cc:
27:b0:81:11:ba:c4:07:49:b1:72:68:ab:5e:05:30:c9:d0:12:
4a:bf:3e:33:71:36:e5:5a:74:0f:ce:7c:f1:68:d6:ef:da:96:
98:6e:a6:d0:b7:d1:c2:c5:df:dd:93:a6:b7:0a:be:67:53:58:
77:3d:a4:df:f4:c8:7a:5e:05:a0:1e:43:4c:9f:e8:88:83:dd:
f8:9c:91:12:f6:36:de:5e:02:9e:c6:cb:a3:b5:35:53:c8:a3:
d7:d1:a0:92:8c:f2:22:e8:35:28:bc:95:cc:10:0b:e5:ca:00:
ba:be:f1:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:47:10 2025 by rpki-client