Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
File: pkzfoBYCORcDN7pgk0ugbkW4zRE.mft (raw, json)
Hash identifier: ZRBUntxF8ZDsgtld24ZvMZj/U129PQnQXZ9LgVZmLAQ=
Subject key identifier: 05:A4:CA:F1:2B:47:00:61:B7:68:C9:A6:D9:98:5B:AC:85:7E:0C:A2
Authority key identifier: A6:4C:DF:A0:16:02:39:17:03:37:BA:60:93:4B:A0:6E:45:B8:CD:11
Certificate issuer: /CN=a64cdfa0160239170337ba60934ba06e45b8cd11
Certificate serial: 0196778CD9DF9A067AD8BEAEA7F4C2CB4D11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
Manifest number: 143A
Signing time: Sun 27 Apr 2025 14:00:41 +0000
Manifest this update: Sun 27 Apr 2025 14:00:41 +0000
Manifest next update: Mon 28 Apr 2025 14:00:41 +0000
Files and hashes: 1: ZSYjjoE3tBto8BluSqunJgk7oHQ.roa (hash: iHTHcMwi7ntDSxANO5civkuDptItJ8z7l7j08RXxzHg=)
2: pkzfoBYCORcDN7pgk0ugbkW4zRE.crl (hash: vHxoB6ewDL5WE7slE5H+hPZQ9xEyXebRIBmQaorfpfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:d9:df:9a:06:7a:d8:be:ae:a7:f4:c2:cb:4d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a64cdfa0160239170337ba60934ba06e45b8cd11
Validity
Not Before: Apr 27 14:00:41 2025 GMT
Not After : Apr 28 14:00:41 2025 GMT
Subject: CN=05a4caf12b470061b768c9a6d9985bac857e0ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:50:2c:50:e9:4d:5b:6a:0f:ff:35:6a:9b:d4:
b2:09:b7:5b:41:a0:a4:d1:90:f3:b7:d7:76:09:6b:
ae:02:19:39:2e:b2:3f:85:15:a2:ca:51:cd:36:ca:
84:01:a3:65:ce:fa:72:6d:b7:02:5e:ac:63:92:79:
56:51:51:a5:f2:ed:e8:46:ad:84:69:c4:b6:bd:65:
7b:87:3e:bf:36:f1:94:51:c6:7f:84:1a:cb:b0:c9:
e0:a7:57:0a:28:c7:53:41:02:e7:1b:6f:48:76:21:
6e:ed:5b:5d:35:2c:bb:52:e8:5e:a3:e0:d9:33:6d:
ee:30:74:af:85:df:62:7e:b2:6f:96:69:9c:7e:50:
a6:4c:27:8c:91:c3:e8:67:6c:cc:1c:72:37:c5:d8:
0c:f6:a6:ef:ec:ec:d6:04:8e:d6:0e:00:e6:c0:a5:
e9:01:46:ff:68:6b:89:52:c5:56:85:9f:f7:78:4b:
3a:8a:9c:d6:44:58:9c:ab:8a:96:79:72:26:0d:8c:
27:3e:50:6c:8e:63:66:5f:9d:e9:b2:e4:d3:7b:d1:
88:4e:35:5e:7f:aa:5a:da:c3:09:0e:61:93:29:ee:
6d:2e:61:27:0c:17:b2:a2:1e:36:d1:c2:4b:c9:34:
c6:cd:18:d3:4b:ba:79:ba:4b:40:56:cd:05:ff:74:
51:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A4:CA:F1:2B:47:00:61:B7:68:C9:A6:D9:98:5B:AC:85:7E:0C:A2
X509v3 Authority Key Identifier:
keyid:A6:4C:DF:A0:16:02:39:17:03:37:BA:60:93:4B:A0:6E:45:B8:CD:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:c2:c1:ea:2f:58:d7:2a:53:71:c7:a7:a5:db:e6:d2:39:dd:
8a:bd:00:ed:d8:21:2e:77:1d:a0:ec:a5:6b:ed:ea:63:e2:32:
0f:7b:8f:c3:ae:ad:0f:ca:e2:72:b4:ad:11:e3:c6:50:24:68:
50:5d:79:b8:78:82:e5:c6:66:3a:66:a7:ab:33:71:3f:fb:07:
d8:2e:6e:9b:81:e5:ce:13:36:34:7d:dc:fc:27:bb:54:68:ad:
b6:ce:fe:89:91:7e:b5:20:45:62:45:59:db:4e:65:d3:e3:4a:
f2:bc:02:54:65:56:52:71:81:ba:d6:ad:6b:b8:7d:1c:1c:e9:
d9:e1:87:ff:24:7e:70:0a:45:e4:b1:cd:af:5e:ce:2c:59:ca:
3f:e9:94:6a:ba:ef:83:48:d2:63:f8:41:cd:b4:45:52:9a:9d:
d9:c1:26:b6:2f:95:1b:d4:c5:5c:9c:40:64:27:c7:c2:a6:23:
cc:38:5b:67:34:e4:ce:1c:a0:c7:54:5b:66:d5:fc:b0:e7:10:
06:f7:66:b9:63:b6:82:0d:d5:e3:62:7b:40:61:48:39:9d:24:
e1:ae:b3:cf:d1:fe:3e:ef:4b:b4:ae:49:fe:b0:5d:93:9a:01:
6e:25:8f:dd:bc:c9:5a:96:a0:8d:6d:f0:73:b7:8c:56:d6:97:
56:05:1b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:56:56 2025 by rpki-client