Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
File: PqFIQth34nvEBouYH-dK64vufnM.mft (raw, json)
Hash identifier: CYKy1H3eCDb7Hb3btEyMB3+fJf2ZHXAfysS0MZSq4j4=
Subject key identifier: 73:C4:3A:B4:3D:E1:87:93:B1:36:00:F8:6D:2D:F2:20:83:9F:FF:BA
Authority key identifier: 3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
Certificate issuer: /CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Certificate serial: 01961169D6CF94C5E9FFEBF99E5EC7D55774
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
Manifest number: 14DB
Signing time: Mon 07 Apr 2025 18:01:10 +0000
Manifest this update: Mon 07 Apr 2025 18:01:10 +0000
Manifest next update: Tue 08 Apr 2025 18:01:10 +0000
Files and hashes: 1: PqFIQth34nvEBouYH-dK64vufnM.crl (hash: h+furdky2yW7V8GAxdf5TUy+b+k9pikSgBSXC3h5gB8=)
2: h5AoEy-X54Db83-jTlFH2Y1fCVw.roa (hash: HOh3C7TWeQ0O5hO+1P91yiEiZozSeSnp7F1/q290vZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:69:d6:cf:94:c5:e9:ff:eb:f9:9e:5e:c7:d5:57:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Validity
Not Before: Apr 7 18:01:10 2025 GMT
Not After : Apr 8 18:01:10 2025 GMT
Subject: CN=73c43ab43de18793b13600f86d2df220839fffba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7a:74:85:ab:3b:ca:cc:5e:56:31:3d:26:67:
8d:95:b4:13:9b:c1:8a:0d:3b:6f:cb:a4:c3:b1:ad:
f1:46:56:30:d1:d4:23:55:a3:0c:02:26:78:9d:c1:
38:8b:0c:77:32:da:4f:6d:5e:91:db:e9:b0:bf:30:
3d:5d:64:0b:e8:33:63:12:53:8c:75:22:52:8a:f6:
65:79:61:51:57:5f:00:05:5e:2b:e2:8e:2b:85:d7:
b0:9d:6a:15:fc:4d:5c:b5:20:d3:12:c8:a5:0a:dd:
f3:08:8c:21:2a:2d:6e:f2:1b:c4:05:96:ec:25:f2:
2b:de:d8:d1:f9:cd:0f:e9:91:61:75:87:8d:25:86:
cd:6e:f1:83:1e:52:66:f0:76:31:f1:f1:dc:8c:50:
4a:70:e0:09:e9:48:76:4d:a6:b1:fd:1b:32:73:d9:
23:3a:63:27:18:1a:2c:24:ff:8a:7b:7f:52:a1:18:
cc:4f:0d:c9:e5:40:ab:0a:79:7e:90:7d:cb:aa:56:
7f:93:f6:c2:90:f2:e9:54:d8:ac:c4:63:f8:48:3b:
d5:7f:c5:5e:4b:6d:e0:44:3d:29:45:34:87:91:74:
49:87:81:df:ab:ac:96:6e:c9:c0:1c:87:a1:50:7d:
16:2a:19:73:25:fc:69:c0:d8:0e:3e:3e:33:46:51:
a9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C4:3A:B4:3D:E1:87:93:B1:36:00:F8:6D:2D:F2:20:83:9F:FF:BA
X509v3 Authority Key Identifier:
keyid:3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:07:91:dd:8f:69:b2:d7:6c:bc:d3:0b:31:db:32:fb:91:11:
5c:7f:e0:bd:fa:ca:ad:ea:51:af:03:25:04:76:85:53:3c:e1:
5f:0b:50:11:bc:eb:47:de:d9:d1:63:e9:9d:e9:a3:80:c7:a1:
3f:ba:bb:e4:c8:85:22:18:dc:bf:50:eb:48:75:34:5f:16:0c:
f3:65:17:41:27:0a:a4:b9:8a:c3:cf:fa:4f:40:fd:77:4d:32:
6b:e7:da:29:bb:03:59:f5:77:74:5e:25:f6:65:b9:c5:ac:90:
f5:cd:61:08:72:0a:f2:11:cb:9a:5b:0c:07:1d:05:4c:4e:37:
42:e9:1c:46:88:30:05:ba:1d:fa:73:70:46:64:5c:9a:41:6b:
52:1b:a9:e8:7d:86:37:ab:c9:38:41:c1:35:4f:85:ae:a8:a7:
80:94:ee:9e:e1:40:9c:ff:6c:35:82:01:a7:d2:d9:8d:0f:cf:
95:f5:91:f7:12:34:ae:50:e0:4e:e4:e0:f8:e8:e9:e4:5e:e0:
ec:11:ca:62:e5:c4:eb:7f:53:51:76:15:be:6e:d2:8e:57:50:
9f:67:3d:de:6e:64:43:bb:34:ad:0e:7f:df:35:89:57:b3:d7:
08:56:a4:32:20:31:e6:c2:c5:66:43:3e:1c:0d:52:9c:b6:68:
3d:23:cb:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:35:10 2025 by rpki-client