Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
File: pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft (raw, json)
Hash identifier: i38p5mS4VMp186ZlwTF/G/sAGspdjYA4Sl74qsa415k=
Subject key identifier: AF:B3:B8:8B:8E:1B:59:17:77:C9:B6:80:F6:0A:B9:D2:E0:1B:4E:1B
Authority key identifier: A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
Certificate issuer: /CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Certificate serial: 019676E7A667FA22C205381A3F675C9530C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
Manifest number: 14A0
Signing time: Sun 27 Apr 2025 11:00:14 +0000
Manifest this update: Sun 27 Apr 2025 11:00:14 +0000
Manifest next update: Mon 28 Apr 2025 11:00:14 +0000
Files and hashes: 1: o-nYlXPYTvbWycHnP4jG4hys78s.roa (hash: +9u5uc7wAwLvJQwWxklCfmQHya0NysgfSBmasNGP6Yk=)
2: pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl (hash: IR1VS6qosqqTvHU7LQG3Hklkgh5dy9lHFH/52fYHdbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:a6:67:fa:22:c2:05:38:1a:3f:67:5c:95:30:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Validity
Not Before: Apr 27 11:00:14 2025 GMT
Not After : Apr 28 11:00:14 2025 GMT
Subject: CN=afb3b88b8e1b591777c9b680f60ab9d2e01b4e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cf:ab:e3:86:9a:1e:90:ed:26:4b:39:3a:31:
94:16:ff:56:52:d6:53:1b:4d:46:5d:78:f4:75:f9:
f3:9a:8b:b7:c7:eb:f2:3e:19:33:4b:c3:d3:4c:f8:
cb:1f:a8:94:fb:49:e4:6c:dd:18:c7:0f:f1:a4:3c:
5a:7f:7e:ba:f7:55:67:04:16:33:de:89:93:a2:20:
5c:74:da:1d:2c:1f:8a:b7:f5:85:51:40:3a:1e:b8:
6d:6e:f6:cc:30:f3:83:9b:89:fe:33:9c:ff:0f:dd:
39:fe:b3:eb:53:b8:4e:1a:21:51:54:ee:28:fb:37:
5a:d3:75:1a:f2:01:32:16:87:91:33:39:62:69:37:
0f:59:33:00:51:f5:3b:96:e3:4f:ed:d5:35:ce:de:
39:bc:b3:a2:c0:9d:a7:48:0a:f0:0e:f3:2a:82:a4:
5d:b9:71:50:60:94:c2:62:35:c8:48:ca:78:8e:d1:
df:28:ae:1a:5e:89:3e:52:3b:db:76:cf:75:6e:47:
49:e7:01:04:0b:4b:a3:da:33:e4:51:9c:4e:c2:ce:
10:6d:c9:0f:aa:ea:a6:7a:92:1f:c5:3d:39:30:14:
e3:48:aa:dc:1f:43:e8:48:a9:3c:56:43:f0:e3:97:
4f:48:fd:23:db:51:73:14:db:a4:31:4a:2f:a3:ac:
4d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B3:B8:8B:8E:1B:59:17:77:C9:B6:80:F6:0A:B9:D2:E0:1B:4E:1B
X509v3 Authority Key Identifier:
keyid:A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:2a:c3:fd:68:37:4d:d3:e7:fd:59:2a:0c:ab:21:a2:2f:d0:
88:6b:88:1f:80:72:a8:33:70:22:12:99:aa:c8:eb:b0:e3:7e:
d5:70:66:aa:ec:59:11:63:3a:f3:d9:63:e5:fa:c1:6b:26:f0:
f3:2c:ae:f7:16:9a:d8:9c:e1:aa:5a:59:05:3c:63:48:20:30:
af:7a:0a:87:ea:7f:9a:e0:ad:b2:2d:3f:c3:ba:3d:51:06:28:
7f:40:fe:79:13:fa:6d:bb:3f:2d:69:b2:0c:24:64:c1:12:5a:
7d:5d:23:1a:c2:48:6a:3a:13:7a:b6:14:9f:a9:89:79:2a:35:
dc:21:9a:25:9d:ba:1a:08:ab:50:ee:3e:0d:0b:c4:2c:a6:1f:
95:74:15:9a:5b:7d:22:cf:df:1f:b8:2d:8c:48:37:77:cc:a2:
4f:cd:65:01:05:57:d2:91:f6:c9:f9:50:18:b5:04:92:9e:bd:
40:b5:3e:be:9f:26:2b:b2:c4:33:b2:a7:9d:d2:bf:28:d6:f1:
71:d2:ed:37:fb:02:06:df:d7:ab:0c:28:df:03:62:a9:6d:c6:
27:da:7b:e6:c7:cf:65:5b:80:75:a8:0c:79:b5:34:c9:1e:c2:
0b:ec:e2:f7:6b:76:21:86:ed:c4:19:ff:de:d0:f3:2e:50:c2:
5c:ec:eb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:39:18 2025 by rpki-client