Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
File: PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft (raw, json)
Hash identifier: PO+/APHXJCVpnC6jPLdX0c8XbWbjg8lMRmeIp80JWPY=
Subject key identifier: 83:59:9E:98:71:64:23:99:47:A6:35:E6:AB:24:8C:A4:52:3E:D4:70
Authority key identifier: 3D:4C:79:39:40:62:37:6B:CA:63:A6:3A:0B:F9:73:99:2A:9F:80:A2
Certificate issuer: /CN=3d4c79394062376bca63a63a0bf973992a9f80a2
Certificate serial: 01967BD754727D5BE9D0540EFA126176FAC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
Manifest number: 0D0B
Signing time: Mon 28 Apr 2025 10:00:31 +0000
Manifest this update: Mon 28 Apr 2025 10:00:31 +0000
Manifest next update: Tue 29 Apr 2025 10:00:31 +0000
Files and hashes: 1: PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl (hash: pX4bWgUTQ1WOO1jK50qoSpApJAB1ANWFWtUYOaUFS8c=)
2: yQbKC99XDhYm8cHYtCzNNvOq7pA.roa (hash: RfdjXnuMOAkekc3w4VyM+j8sngFlhqDHkrg6JoAkaVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:54:72:7d:5b:e9:d0:54:0e:fa:12:61:76:fa:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4c79394062376bca63a63a0bf973992a9f80a2
Validity
Not Before: Apr 28 10:00:31 2025 GMT
Not After : Apr 29 10:00:31 2025 GMT
Subject: CN=83599e987164239947a635e6ab248ca4523ed470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f8:e9:fd:ec:4f:ad:35:21:0d:93:5e:52:0c:
84:d5:29:d6:0d:44:15:ae:d8:bf:96:a8:9b:3d:c0:
89:64:f8:b9:52:e3:98:28:4b:4f:d4:81:91:0e:ce:
81:36:be:3f:30:34:2b:4c:b0:6d:62:64:a2:f9:4c:
29:49:0b:c3:0a:e2:61:3e:5b:c7:be:ca:8b:9d:8e:
1a:29:b9:a7:13:4a:ca:27:8f:d9:ad:15:95:73:9b:
af:8a:dc:21:e4:3d:03:72:46:a6:54:b3:6f:11:a9:
da:f4:19:54:55:1e:e7:96:2f:77:96:bb:a9:ba:d0:
da:f3:2e:90:9d:a9:23:4c:c9:ca:d8:c4:dc:1f:57:
4f:cf:e3:f6:4d:b1:8c:e0:82:f6:e2:33:ec:40:23:
35:24:24:17:03:91:d3:82:4e:89:f7:fc:fd:0c:03:
54:2d:8d:cb:ca:ef:43:9b:5e:88:11:56:b6:91:c1:
34:bf:51:e3:3d:ff:e4:ad:c1:11:cd:45:c9:44:7f:
82:c6:02:19:98:cb:b6:30:80:54:2d:3f:8a:3e:b3:
b8:e6:cb:f5:0b:7d:91:0f:81:be:2b:13:ac:90:01:
59:40:74:34:72:97:9e:2e:c1:11:c1:19:8d:45:a5:
18:11:12:26:05:98:d8:a0:0e:18:50:e3:c4:7d:27:
1f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:59:9E:98:71:64:23:99:47:A6:35:E6:AB:24:8C:A4:52:3E:D4:70
X509v3 Authority Key Identifier:
keyid:3D:4C:79:39:40:62:37:6B:CA:63:A6:3A:0B:F9:73:99:2A:9F:80:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6d:33:4e:9d:5f:93:90:1c:8f:67:53:43:99:7a:9c:43:88:
39:90:6a:87:80:fb:a9:68:0f:c0:c1:b1:68:bb:30:a3:0a:f4:
60:06:e4:4e:bd:ce:e3:8b:1d:bf:60:5d:a1:2a:ad:c1:51:66:
93:c7:b1:5a:2d:63:83:d9:74:b9:dd:e9:d0:0a:71:53:a8:9e:
bb:06:47:58:86:06:ed:ea:d7:b3:3f:21:1b:4c:11:f9:67:d0:
5d:56:36:06:33:72:8b:e2:36:ed:42:cf:b8:64:0f:27:3b:dd:
8e:ad:bf:dc:1a:df:1e:d5:2a:1c:e7:a9:f6:b7:82:28:c1:67:
4b:2b:8a:e3:84:c6:46:db:5b:2d:8b:84:63:b5:d0:71:60:d6:
db:3f:27:9c:c3:b4:19:0f:03:d6:d7:4e:92:c3:21:b7:55:87:
85:5c:78:61:a5:9e:1f:1f:a2:60:8e:ac:2c:62:94:44:a9:8f:
02:06:f5:df:56:3b:2d:7a:98:20:13:6e:71:2d:23:cc:3f:2c:
b6:68:9d:13:dd:3c:59:19:b6:c2:b5:cb:f6:f8:3c:20:c4:43:
9b:95:49:f1:46:b4:72:3f:17:f5:4e:25:35:ec:1a:3f:ca:3c:
eb:4d:ff:5e:53:41:ed:3f:f9:07:ad:4d:52:e3:6b:45:cd:22:
d6:08:f3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:55:40 2025 by rpki-client