Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: jtsjBeylI0fKfd5FvkUFNAT7y/jCVPzcDyXrd6z3bAo=
Subject key identifier: AC:D4:22:39:F7:C5:BF:1A:05:0A:88:9A:7C:E1:17:0D:31:D5:55:39
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 01967DC5FAECBA554E0400A0CABD09D590EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 11A8
Signing time: Mon 28 Apr 2025 19:00:48 +0000
Manifest this update: Mon 28 Apr 2025 19:00:48 +0000
Manifest next update: Tue 29 Apr 2025 19:00:48 +0000
Files and hashes: 1: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: UQOEkJZKqYQBDdoBC9gKXoLusb6bGceo75qWr3mU9mU=)
2: f4uXUqTz6EMLfxnYPkQ3ht2dRz0.roa (hash: WwKae4E8mCPYphGvXV9B/QCbohcENp4wZ1ekmYvPPps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c5:fa:ec:ba:55:4e:04:00:a0:ca:bd:09:d5:90:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Apr 28 19:00:48 2025 GMT
Not After : Apr 29 19:00:48 2025 GMT
Subject: CN=acd42239f7c5bf1a050a889a7ce1170d31d55539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:26:fc:28:a1:e9:e1:c3:28:48:24:22:8e:1a:
61:10:5d:c5:2e:68:a6:b3:d5:0f:81:a1:42:68:f3:
a4:a4:24:c7:29:15:c4:da:4d:4d:39:eb:6c:f3:e9:
37:6b:5a:a6:f0:00:25:7a:06:07:6b:f6:26:d3:ad:
9a:a0:19:28:50:09:5e:bd:2a:c1:59:e3:d0:f4:fc:
76:7a:43:4e:86:61:df:5e:53:f2:e6:63:a0:ba:2d:
be:bb:cc:4d:b2:c3:36:24:36:f5:90:e6:7f:8d:ba:
5c:26:89:b3:38:31:d4:ce:8c:70:97:81:2e:4f:2a:
49:00:4d:80:eb:66:05:40:8d:22:74:90:b6:3c:da:
77:35:8d:d7:58:47:5d:18:73:3c:a2:7b:65:d1:d2:
78:71:19:40:9e:f8:98:0a:5c:c3:40:84:49:4a:73:
e6:f9:94:83:b8:f4:19:1c:13:68:44:e4:c7:2c:9c:
7a:06:20:79:da:b8:d0:3e:c1:25:94:6b:e6:76:e4:
ff:5d:fe:e9:51:7a:7a:60:d4:3c:cf:e7:28:bb:71:
fb:49:24:e3:4b:b1:4b:ea:35:b6:34:7a:20:61:80:
b9:48:96:d0:f3:2b:e7:c4:d9:a1:57:3b:f9:d1:1c:
ca:7e:52:5a:17:a8:0f:42:8c:97:10:e6:e7:d5:1a:
f0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D4:22:39:F7:C5:BF:1A:05:0A:88:9A:7C:E1:17:0D:31:D5:55:39
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:3a:49:7d:cd:66:d8:d0:75:08:31:8e:2c:18:bf:eb:99:26:
c4:a5:1b:18:b3:70:9b:89:8d:39:d8:7f:53:78:cb:73:b4:a3:
9d:77:08:19:97:72:b4:a1:8d:a8:74:f7:ab:5e:0f:72:39:e5:
d0:d6:33:8d:60:d8:29:2d:55:b0:d3:99:98:bf:1d:d0:71:f6:
82:71:b0:61:b7:56:e6:29:58:04:5b:21:cd:c1:a3:fa:95:67:
4f:9e:bc:5f:fb:e9:d0:78:7b:70:95:63:c2:0e:97:e7:93:bf:
15:e3:ce:ce:14:7c:ce:ce:07:72:2e:ca:b8:4c:04:4d:1d:28:
b4:9d:ee:5b:3e:8f:28:ed:a0:59:b6:8f:b8:4f:c8:65:31:91:
7e:c2:2a:67:4b:86:4a:08:7e:4d:77:07:82:f4:96:87:59:b9:
a8:7d:b0:2d:97:72:a3:7b:ed:14:7b:40:f1:8f:dc:65:8e:f8:
ad:db:42:e1:d6:e7:41:a3:81:e6:dc:35:e4:df:56:7c:53:e2:
23:95:0d:62:bd:79:5e:eb:79:57:60:ad:5e:5a:b7:79:d0:b9:
10:e6:a2:cd:12:d6:94:65:a0:2d:7a:8b:26:e3:1f:2e:60:31:
cf:23:ca:06:8d:21:5a:e0:de:9f:e7:34:04:c4:4b:d6:30:b5:
e6:66:c6:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:37:31 2025 by rpki-client