Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json)
Hash identifier: dLr4Aj+WW/INqdPjySMOWgnpzdwCfRtuI0AxDRRc7W8=
Subject key identifier: D2:39:7E:CC:89:A7:FF:5C:FA:5E:8A:1E:5A:0D:34:F5:3A:BC:80:3F
Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Certificate serial: 019683913EB9D7F612C6CDBB6A23A8D45ECA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
Manifest number: 0EFC
Signing time: Tue 29 Apr 2025 22:00:56 +0000
Manifest this update: Tue 29 Apr 2025 22:00:56 +0000
Manifest next update: Wed 30 Apr 2025 22:00:56 +0000
Files and hashes: 1: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: p7+0rZUxUhpwQ5VCz1/jGrxeaxU2o7ZE1TDes58QShQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:3e:b9:d7:f6:12:c6:cd:bb:6a:23:a8:d4:5e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Validity
Not Before: Apr 29 22:00:56 2025 GMT
Not After : Apr 30 22:00:56 2025 GMT
Subject: CN=d2397ecc89a7ff5cfa5e8a1e5a0d34f53abc803f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:71:55:66:d7:08:c6:33:33:79:7a:fb:9c:c4:
ee:00:38:f3:00:23:bb:e8:12:79:7a:a7:b6:57:83:
5e:8e:0a:2d:cf:d8:7e:16:10:9c:d5:57:0a:78:9b:
84:19:b5:da:b4:72:09:b6:6c:cf:db:73:c9:db:7e:
34:5b:ba:27:c2:19:48:3d:3e:7f:36:c7:05:ba:da:
3f:2b:9f:eb:7c:54:4b:a3:c5:98:69:91:39:62:45:
9c:e2:c1:80:ba:4b:7f:34:79:54:72:d3:d0:b0:21:
f1:60:cd:8d:5d:f2:27:fe:5e:53:a7:16:6f:56:54:
ff:9f:d1:ab:0e:28:d3:56:48:d1:5e:ca:79:fe:5c:
c1:31:a9:f1:84:86:08:5d:ce:4c:14:0d:4b:be:8e:
d7:d3:5a:64:18:55:f4:7c:8f:67:97:0e:f5:8a:37:
a2:3a:c9:72:7a:0d:66:13:ec:cd:75:95:75:f2:ec:
9d:c5:ff:bb:86:ad:57:c3:21:bc:35:5c:b0:0d:a7:
c5:6a:c3:05:74:1c:8d:7a:2f:ac:4d:27:ce:ba:d0:
77:59:f3:b8:c6:a9:3e:51:6d:36:30:1b:eb:05:7b:
d1:18:fd:1b:65:e7:26:fe:6d:69:4d:f4:b8:fd:33:
d3:0e:31:08:a1:f8:00:cd:ed:26:12:34:1b:94:7f:
3a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:39:7E:CC:89:A7:FF:5C:FA:5E:8A:1E:5A:0D:34:F5:3A:BC:80:3F
X509v3 Authority Key Identifier:
keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:73:99:98:11:b6:84:42:e4:f7:2b:b2:59:27:a3:5d:5f:90:
d9:10:d0:51:1b:a4:ba:cc:ff:c5:02:36:ca:0b:5d:53:bd:85:
46:ea:0b:cc:1c:3e:9a:ef:14:a3:eb:66:d3:65:36:90:46:3b:
65:87:13:81:54:46:90:e8:87:06:ba:00:ef:79:ca:97:21:35:
cc:32:19:09:89:c7:fa:22:96:f2:1e:6c:d4:41:6b:94:6f:39:
a9:20:6c:41:da:6a:e2:46:d3:ce:c0:89:f0:3b:39:18:88:ee:
7e:7c:17:0b:db:42:16:f9:e1:a6:fa:e7:03:40:35:dc:19:67:
60:ad:5b:c0:c1:7a:ee:b1:f5:b9:6a:c1:11:56:c1:60:24:a7:
24:ce:8f:24:b9:14:3a:11:b6:79:8d:d1:78:8e:03:8a:9e:e1:
55:e4:e0:08:e7:92:b7:dd:92:42:bb:7a:cc:ba:36:cf:e2:d0:
2c:db:68:37:98:df:2d:e0:ae:fd:16:d1:7e:f5:57:7e:6f:a8:
97:38:a3:16:2f:32:13:a8:e8:94:c3:03:ea:a9:b8:74:08:06:
2c:77:04:c0:f7:2b:2d:47:f8:18:c6:43:49:ec:b4:01:c8:f1:
85:7c:00:10:19:8a:79:1f:f6:02:2a:13:90:8a:9b:ff:d1:7b:
90:fc:6b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 01:00:49 2025 by rpki-client