Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: zQv21PAyIoY67iE7Y0uAcmdb70O8RGiIb3rU4g9IOrQ=
Subject key identifier: E2:24:6A:D8:10:FB:ED:FE:6D:13:05:03:AA:CE:35:E3:9D:17:8A:AB
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 01968D389B6A4654B0CAF43069122EDA5563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 07F5
Signing time: Thu 01 May 2025 19:00:19 +0000
Manifest this update: Thu 01 May 2025 19:00:19 +0000
Manifest next update: Fri 02 May 2025 19:00:19 +0000
Files and hashes: 1: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: 1HzhqTUyMu6PccgxtxzwBMVL4xfLg2egShV7huuU9C4=)
2: rWk5sIUEQt5GM5tD9jvlVGxlmoc.roa (hash: bdSHmybqlxfqe2LDlmT/vhR2hatifsBsFgj+STLVUXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8d:38:9b:6a:46:54:b0:ca:f4:30:69:12:2e:da:55:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: May 1 19:00:19 2025 GMT
Not After : May 2 19:00:19 2025 GMT
Subject: CN=e2246ad810fbedfe6d130503aace35e39d178aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c6:3f:8a:92:6a:5f:c2:cc:85:d9:9f:6d:4f:
ef:2c:1f:21:b8:6a:26:c7:c2:7a:6b:02:cf:f2:17:
c5:20:ca:33:5c:6e:06:eb:3b:17:40:69:e1:ef:0e:
33:8e:95:91:55:df:59:9d:ed:22:c5:6b:6e:5e:15:
36:5a:57:ec:e2:6a:97:bf:08:f9:0a:cc:9e:1e:7f:
72:a4:4b:b0:7c:ff:a9:ab:cc:4b:82:0a:cc:16:b3:
ec:7c:03:e7:3a:38:f4:9b:18:e1:2d:6a:8e:02:e1:
97:52:03:61:11:6a:73:f1:b7:2a:30:b7:1f:2f:c8:
2e:05:1a:bc:25:2b:c4:62:1e:6e:27:51:4c:71:ac:
31:7e:4b:ec:f1:a5:01:95:27:4c:57:b9:96:10:a1:
0c:32:a0:1b:3e:c0:b4:74:0b:49:e0:7e:4e:73:91:
5d:e5:f4:58:d5:45:5b:dc:fe:68:3f:56:ca:c0:19:
ec:27:3d:30:55:ee:b5:50:59:90:8e:a1:d5:82:10:
a9:88:f1:ec:38:ba:89:f5:86:be:cc:50:55:ab:70:
9f:a9:98:12:75:69:51:77:2d:01:fb:03:78:32:36:
7a:63:ff:05:f3:bd:8f:43:02:14:4a:a2:56:9a:86:
fd:89:99:ac:8d:b7:d6:5f:b5:76:f1:6e:57:46:8a:
bf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:24:6A:D8:10:FB:ED:FE:6D:13:05:03:AA:CE:35:E3:9D:17:8A:AB
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:b1:a4:6e:36:3d:90:95:e9:31:91:37:f3:a1:db:44:10:62:
6a:80:21:e9:43:e3:bf:8d:69:9a:22:00:fd:30:1c:f8:71:22:
b8:06:e3:bc:58:cf:4c:bc:ee:a2:43:e7:24:cf:72:ec:cd:32:
a5:e8:10:ee:f7:15:cd:b2:c0:ac:a4:51:eb:48:9a:26:b3:8d:
ac:eb:72:f8:4b:57:51:00:d2:08:39:52:89:34:5f:c5:98:87:
ea:31:24:db:df:96:f1:e9:bf:a5:c2:35:12:2a:b1:5c:24:2e:
1f:37:a9:5c:13:b8:50:0b:10:41:14:bf:92:b5:3b:70:e7:15:
58:45:3b:94:72:a1:ec:42:1f:f5:04:0b:09:96:22:5e:a0:89:
f7:1d:17:8b:7c:9f:b4:ea:46:50:1e:04:95:15:e4:a7:9a:04:
d2:c5:35:05:b0:1c:dd:48:28:f1:d6:e3:6d:7d:1e:47:79:22:
2c:ba:63:2e:c7:75:a6:e9:db:88:0d:f1:1f:58:13:4d:ac:66:
81:e6:9e:2e:bc:5e:5b:18:9a:63:c7:dd:60:1d:f1:e5:c8:be:
5f:ee:da:9c:70:66:e1:b6:07:96:a4:26:75:33:ce:f5:59:91:
04:91:f6:ed:59:72:7a:da:08:f8:9d:71:8b:a5:f0:f7:5e:1d:
d4:2f:92:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 00:50:25 2025 by rpki-client