Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: 1DwDTMDZO5w0UG3ldOMdBnGhBxVJRY2aY7pXZuWvj/s=
Subject key identifier: 32:EA:8E:88:4A:0E:C3:26:D7:BB:48:7A:DD:DB:BB:45:40:3F:FD:1B
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019608D4EE0CBDB5735441E387D6D079E524
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 08DE
Signing time: Sun 06 Apr 2025 02:01:34 +0000
Manifest this update: Sun 06 Apr 2025 02:01:34 +0000
Manifest next update: Mon 07 Apr 2025 02:01:34 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: VL3bVfr/CuD2Ei/QLkQKejheToIjWzTq6y9wwrGONMk=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:08:d4:ee:0c:bd:b5:73:54:41:e3:87:d6:d0:79:e5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Apr 6 02:01:34 2025 GMT
Not After : Apr 7 02:01:34 2025 GMT
Subject: CN=32ea8e884a0ec326d7bb487adddbbb45403ffd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f6:d6:7e:e6:0d:48:ca:21:2c:3b:3b:df:89:
d9:e3:63:77:35:8b:84:b8:ef:41:b6:46:1a:e7:0a:
5b:bf:1e:db:5a:b3:29:ef:9a:44:bb:b1:c6:d3:86:
13:11:fc:d2:7d:15:75:e4:c5:0a:e9:4f:9e:0c:96:
5d:f9:98:24:51:8e:ca:00:73:70:aa:81:23:c4:50:
9b:fd:25:9c:d2:3c:52:2c:db:42:eb:39:a0:8a:35:
d6:1e:90:c3:36:55:d9:4c:90:bd:50:34:62:fa:7b:
b2:02:3d:01:b1:41:76:83:dc:97:0a:f3:d5:e4:62:
37:48:b4:7c:16:d2:b0:9a:98:76:03:fc:61:4d:02:
ea:68:8f:4f:27:c2:2d:30:d5:82:c5:63:2b:1e:4a:
c4:d4:90:38:51:61:ed:47:24:d8:64:41:3f:33:1d:
cc:a6:c1:95:53:f6:04:41:5e:d2:98:d1:e1:fe:29:
2d:f3:fa:0f:fa:32:f2:a1:05:94:f8:1e:0b:4c:2f:
5f:f3:75:9d:61:87:23:ce:c6:cc:ff:77:b9:8c:9e:
2b:3c:ef:78:99:84:1a:23:ed:1c:4f:64:1c:14:c6:
6d:cc:1c:3a:ed:17:96:7e:4e:9d:b2:fb:59:9a:ac:
94:1f:c2:de:42:dc:23:9c:a0:22:32:56:ee:39:2c:
12:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:EA:8E:88:4A:0E:C3:26:D7:BB:48:7A:DD:DB:BB:45:40:3F:FD:1B
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a1:fd:d6:2b:3f:b3:60:06:5d:b8:07:1b:ff:1e:eb:be:0c:
f9:79:f6:61:f5:74:24:97:6e:9c:44:af:ee:7e:4d:80:62:84:
a3:7b:07:69:87:60:65:b5:23:5a:60:3c:82:34:f4:2b:03:f3:
5e:cf:88:db:76:22:ef:3d:95:c6:17:04:92:e9:34:aa:e8:8e:
8b:ef:23:72:7d:94:c7:9b:0b:33:cb:0e:d2:fd:c8:5c:0b:a1:
36:68:3e:b5:11:94:72:e2:99:b1:d5:3e:d1:8c:75:e0:e5:4d:
65:22:b0:7f:71:a8:46:04:ed:d8:a0:68:32:97:c0:40:44:95:
56:9e:8d:d3:34:c8:16:ef:29:80:ad:9f:1b:7b:37:b0:e9:6d:
a4:6b:89:b5:98:b4:17:51:3a:46:17:24:9d:5f:6f:9f:10:5d:
60:ed:a2:6b:9d:87:fa:d8:78:33:93:95:77:35:1c:33:3e:db:
76:29:85:18:31:9f:0a:47:e2:01:81:b9:b6:1d:01:1e:6c:2a:
bd:c3:14:5c:d4:6a:d7:42:b7:e6:d0:d1:cf:ab:2c:89:77:c9:
71:1b:f3:dd:07:bc:cd:9c:03:06:bd:f2:61:79:60:cd:c8:30:
31:6a:44:c3:47:25:1c:74:f2:0f:8e:cb:20:26:6e:48:28:ff:
19:c0:f3:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:19:23 2025 by rpki-client