Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
File: PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft (raw, json)
Hash identifier: +SmzYoYHKdNRVaKZah5gkUZCrlnBRiU0jTjaBXw7pmA=
Subject key identifier: 9B:7B:D8:9E:B6:F7:B7:AB:D5:2B:6B:B2:B4:FB:F4:30:EA:BA:B3:31
Authority key identifier: 3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
Certificate issuer: /CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Certificate serial: 0196A1D25D8EB37C96AB926022C1C501B06F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
Manifest number: 1522
Signing time: Mon 05 May 2025 19:00:40 +0000
Manifest this update: Mon 05 May 2025 19:00:40 +0000
Manifest next update: Tue 06 May 2025 19:00:40 +0000
Files and hashes: 1: PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl (hash: +lkB91cUUnXnyL8RjEFwLw/jVktv8XSmbGFk3Px89cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:d2:5d:8e:b3:7c:96:ab:92:60:22:c1:c5:01:b0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d72a5f4bf7466a61462acb88808c7f036d4d6d8
Validity
Not Before: May 5 19:00:40 2025 GMT
Not After : May 6 19:00:40 2025 GMT
Subject: CN=9b7bd89eb6f7b7abd52b6bb2b4fbf430eabab331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:12:cd:9b:b0:8e:f8:2d:ad:e0:23:7f:3a:
db:80:5c:4e:18:dc:3f:5e:16:da:2b:40:f2:72:26:
c2:b8:8b:4d:b9:e8:d5:01:9b:30:1d:ff:b9:35:60:
75:e4:bc:53:af:42:b9:7b:d3:4d:4b:a3:ba:a1:c5:
11:b9:8d:57:ad:2f:1c:42:b3:3d:37:6a:2a:38:17:
77:b4:fb:41:eb:6f:e5:2d:b3:96:2d:99:4e:dd:29:
16:f6:28:df:18:ef:e7:ef:d5:9b:ee:60:d1:97:c6:
ec:46:6a:d7:a8:31:9c:5c:7c:fe:49:ac:c9:89:7c:
c9:29:a3:9c:6d:b9:6b:be:47:e9:5e:7b:75:e8:71:
0f:14:0a:2c:b7:f6:0a:aa:66:2f:af:33:4e:24:f0:
8c:f8:cd:19:df:f2:a3:a1:b8:e7:81:9f:cf:6e:8d:
64:54:e5:0b:f4:a3:1b:d6:d7:d7:b9:7a:b2:6b:40:
70:69:2d:19:76:0f:38:7d:95:47:6b:67:8d:48:d8:
98:74:65:99:d2:48:21:da:02:b7:b3:a9:13:42:22:
de:9b:7b:5c:21:44:3e:65:73:36:2a:26:28:10:7f:
75:a5:9a:44:07:34:cc:3d:0b:6f:35:a6:ff:bc:12:
cb:de:4e:a0:37:c4:96:a3:3e:5e:00:23:bb:88:d0:
41:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7B:D8:9E:B6:F7:B7:AB:D5:2B:6B:B2:B4:FB:F4:30:EA:BA:B3:31
X509v3 Authority Key Identifier:
keyid:3D:72:A5:F4:BF:74:66:A6:14:62:AC:B8:88:08:C7:F0:36:D4:D6:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXKl9L90ZqYUYqy4iAjH8DbU1tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e89aa9-a3cb-4f75-a442-80c0f14edae1/1/PXKl9L90ZqYUYqy4iAjH8DbU1tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ad:3b:be:b8:71:be:36:b1:17:01:2c:22:61:8d:30:1c:85:
8e:3c:03:4e:44:07:99:27:20:01:1e:93:66:09:1a:9e:78:8e:
3a:4f:b3:5b:13:a7:ac:24:b9:59:17:14:e8:c4:40:ef:f9:24:
37:24:49:72:ff:95:e1:e1:af:dc:8d:91:9b:36:fa:e4:7f:bb:
7a:eb:95:70:f1:fa:dc:56:d5:7c:68:60:8f:13:13:33:67:9c:
e8:ca:7d:2c:de:4f:21:b4:26:a0:84:0b:66:8a:48:83:af:84:
ea:f1:01:5e:91:e1:1f:9e:3a:f2:47:4c:47:88:08:f0:98:d6:
f3:81:67:ea:ad:ab:5c:05:34:e4:22:45:8f:e3:98:84:a0:73:
6c:58:bb:ce:48:0b:7a:94:4a:d2:5c:c2:6e:c8:57:e9:ad:19:
d0:46:39:f3:09:a9:cf:62:75:3e:47:59:cc:f6:de:d2:c5:d8:
c3:9b:da:74:c2:c1:dd:be:e5:44:8c:22:1a:cf:10:9c:bf:0f:
54:9f:92:7c:57:49:65:2e:55:79:09:77:60:32:b0:1c:1f:08:
a5:26:c9:79:ab:20:86:67:bf:83:c5:4d:91:69:27:52:51:a2:
0c:d8:db:0a:6c:3b:b6:b9:7b:2e:5a:23:3a:1a:39:41:e4:9b:
bb:37:a3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 23:18:54 2025 by rpki-client