Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: YY0LwHmR3MD4pIBPHiQTNieDNpCsFe49+W3Z/gJAkTY=
Subject key identifier: 93:5E:26:78:7E:29:70:B6:A8:9D:8D:1D:68:69:87:E5:D0:17:0C:13
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019673AFF242F80B6D0ECEB9766EA33A0475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 149F
Signing time: Sat 26 Apr 2025 20:00:32 +0000
Manifest this update: Sat 26 Apr 2025 20:00:32 +0000
Manifest next update: Sun 27 Apr 2025 20:00:32 +0000
Files and hashes: 1: ET0yOb6N2KPn9sEOeciwveLzfFQ.roa (hash: 5UaUVXzPjnKQ9N0meCwxNszuKgkyrbDITbh3/+eJ6rg=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: /7UoXhxWJjDP4ybZFButhr4D9RdNKzypC0BOf4RId3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:af:f2:42:f8:0b:6d:0e:ce:b9:76:6e:a3:3a:04:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Apr 26 20:00:32 2025 GMT
Not After : Apr 27 20:00:32 2025 GMT
Subject: CN=935e26787e2970b6a89d8d1d686987e5d0170c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f1:21:64:f3:f5:a3:51:4b:04:ae:ce:10:58:
17:af:ab:c6:ac:a2:1e:89:19:22:d8:53:7a:8a:9f:
12:64:ed:57:02:62:70:05:0f:5f:98:13:76:0a:7a:
c6:c2:5d:1d:c6:4e:50:7a:06:94:64:b7:58:d2:fe:
7c:22:57:18:06:f0:b5:24:d8:f3:e3:6b:c4:f1:32:
4d:13:f9:51:a7:14:3c:e4:a2:70:65:fd:0a:b6:e2:
b8:30:eb:f2:05:c8:6e:b4:90:f8:d0:b7:fb:3b:74:
6a:73:78:e5:18:23:83:eb:29:bc:1d:1a:45:6c:2d:
ca:f0:41:9c:b6:d6:6c:c3:e4:20:45:90:ec:fd:43:
20:2c:65:09:b0:af:b1:66:4e:3a:ea:22:1c:da:69:
a0:98:5f:90:95:3e:99:71:e5:90:ef:52:92:84:51:
bd:49:61:51:43:cf:64:02:39:19:5f:c1:10:ba:9b:
4c:56:26:d0:83:0e:cb:ad:fd:ac:a8:ac:73:11:8f:
fb:e8:60:69:52:a3:47:d5:a2:2f:ad:66:36:3b:76:
86:4e:6b:0f:23:42:61:89:d4:72:00:34:a9:55:00:
ce:44:41:ff:ab:e0:3f:78:8e:df:ad:c3:cf:ad:b9:
33:64:a0:8e:a0:73:39:0c:d6:32:ea:59:ac:ee:26:
49:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:5E:26:78:7E:29:70:B6:A8:9D:8D:1D:68:69:87:E5:D0:17:0C:13
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:25:a6:c3:65:66:51:ac:63:86:1f:fd:96:86:64:b5:73:2d:
3e:d7:2d:87:be:6e:9f:e1:b2:11:cd:fc:82:db:4f:58:1f:6f:
a4:0a:2a:9e:85:b0:df:83:f3:ca:e3:f4:0d:4c:f0:c2:46:13:
8e:0f:0e:b9:76:2b:3d:f6:e7:05:87:a1:af:2a:e4:4b:fe:02:
1f:b0:bc:85:cc:a4:c4:3e:ed:62:c8:f8:0b:39:4f:4c:22:80:
24:59:0c:dd:f6:3f:a5:ee:7a:d8:c4:e1:8f:23:77:d9:33:a1:
da:48:bb:b3:27:2a:a5:7f:cf:28:39:b6:24:37:6e:7f:18:ca:
f0:6b:d9:7f:05:6b:4c:59:57:b0:bb:6f:f2:dd:ad:4c:79:9c:
d5:44:90:e0:a4:51:1d:ce:6d:b7:f4:b5:dd:75:b7:6a:fd:37:
4e:96:86:42:85:68:2c:54:a3:d6:5e:2d:fb:7b:e5:df:1c:87:
5d:c4:de:48:75:9b:e8:45:2f:36:f5:80:6e:29:19:49:3c:0c:
4d:62:df:78:4c:76:ef:92:0d:a4:bc:ba:7f:f9:65:7d:a4:67:
13:9e:28:14:ba:1b:89:c0:71:2b:e4:78:a7:f8:13:58:71:64:
5b:5c:15:b2:69:35:13:4a:49:7d:09:a8:a4:e6:31:64:e3:91:
b0:cd:f9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:23 2025 by rpki-client