Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
File: PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft (raw, json)
Hash identifier: jE1sDQE4MLMWV2Kvhhfy+EBLAbHER+6jeJEOsIyoa1Q=
Subject key identifier: F2:9A:D3:6C:4E:E5:43:0F:FB:40:99:C1:E6:DB:BD:4D:A6:99:7C:55
Authority key identifier: 3E:19:04:83:48:D7:EC:B9:F1:19:10:80:55:5B:F4:45:8A:1A:54:E7
Certificate issuer: /CN=3e19048348d7ecb9f1191080555bf4458a1a54e7
Certificate serial: 01967D57BE31596542165B4B5AC12CF5245B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
Manifest number: 1514
Signing time: Mon 28 Apr 2025 17:00:24 +0000
Manifest this update: Mon 28 Apr 2025 17:00:24 +0000
Manifest next update: Tue 29 Apr 2025 17:00:24 +0000
Files and hashes: 1: OEpDgvPaXUzQjnGh8DicbzVRQqo.roa (hash: Tur6sEnsgmRlnAb38JyLyFtsAnKmMwtkefk62vCJp6k=)
2: PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl (hash: l/fzXPT+nvS5H/LStC3dCIfkzsRe27THbdkvFNHkbek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:57:be:31:59:65:42:16:5b:4b:5a:c1:2c:f5:24:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e19048348d7ecb9f1191080555bf4458a1a54e7
Validity
Not Before: Apr 28 17:00:24 2025 GMT
Not After : Apr 29 17:00:24 2025 GMT
Subject: CN=f29ad36c4ee5430ffb4099c1e6dbbd4da6997c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a2:f9:85:13:59:32:21:22:12:8a:e4:73:98:
f1:8d:31:02:e8:c6:ef:0d:98:d0:3c:5e:4d:94:2c:
2f:94:b2:41:da:70:41:1d:89:fd:ac:c7:a5:fe:97:
8f:6f:b4:c6:91:26:69:09:11:01:34:2c:e3:62:7c:
66:b7:60:3e:2f:58:63:3a:20:10:ba:b2:f0:2f:78:
a8:20:7b:2e:1c:41:09:e5:bf:c1:9f:c3:49:5b:6a:
0f:c3:e8:96:b2:04:9b:6e:b2:35:e2:cf:ce:44:f6:
89:b9:41:bc:c8:47:06:37:a5:0f:9c:ac:71:1a:94:
df:1a:f8:ac:f3:ff:b0:df:a2:a9:ac:ba:48:01:53:
1a:dc:e6:ae:d9:a8:c8:0b:62:fd:ff:bb:87:30:5b:
e4:0a:64:06:4c:d8:62:b1:5a:c1:9b:be:77:72:ea:
40:47:eb:76:7e:ee:5e:b4:99:1f:c9:05:b2:0a:e0:
33:8c:1a:c5:2c:51:f4:22:45:83:a2:92:4b:3b:d6:
9f:c1:a1:3c:7f:b0:66:06:0e:fb:a2:b9:68:b2:74:
bb:13:d4:15:cf:13:2c:1b:52:2a:79:1f:fe:95:2d:
7e:13:70:5b:ae:0a:01:14:9d:fb:29:03:77:46:28:
a5:59:04:eb:31:7d:d1:41:35:0d:f8:0d:c3:a3:e9:
41:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9A:D3:6C:4E:E5:43:0F:FB:40:99:C1:E6:DB:BD:4D:A6:99:7C:55
X509v3 Authority Key Identifier:
keyid:3E:19:04:83:48:D7:EC:B9:F1:19:10:80:55:5B:F4:45:8A:1A:54:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b8:49:3c:e3:6a:11:99:70:7b:50:c0:0e:03:34:3f:74:4a:
58:7a:21:31:0b:2c:47:a4:14:e8:68:3e:ee:9a:82:46:b5:cd:
41:06:da:3f:2c:c9:8c:66:a2:5f:7c:8e:6f:c4:ba:be:08:4e:
10:f9:d8:84:79:e8:9e:d8:94:95:f4:56:8d:47:e0:c8:90:d0:
46:69:b6:9f:bc:5f:b0:52:aa:5a:8a:80:c5:c3:16:e4:0c:f5:
7f:9d:f6:7d:1b:5a:17:5d:36:fa:80:8f:04:18:e5:66:87:00:
c4:2b:33:36:25:bd:72:e7:d9:e8:f6:4a:3a:a5:77:7d:f2:be:
37:9e:4b:2f:32:51:ae:fd:da:a1:4b:f7:76:59:6d:13:cd:7f:
90:4d:54:37:f5:d7:a4:2a:cc:12:c1:f5:82:3f:20:2c:fc:bb:
8c:c2:db:47:37:af:74:c7:14:57:45:37:73:5a:8d:0a:60:bb:
92:2f:b6:3e:c0:c0:03:54:2e:74:16:6b:a0:55:71:45:08:12:
f0:61:6c:c3:fe:3e:d2:28:fa:47:65:7f:74:b6:b3:d8:64:1e:
c6:5f:ad:93:fe:8c:fb:50:70:99:76:2c:b5:aa:0e:a9:c0:68:
f7:bd:46:4f:43:88:da:28:7c:76:87:b2:14:f6:d9:d2:51:ca:
44:8a:63:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 21:16:19 2025 by rpki-client