Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: lwB190PcUi76VWdK3qsyvG3sS9RSvdxM8aJG65DbmGI=
Subject key identifier: 0C:47:09:A2:3D:FA:23:6D:39:32:73:FA:19:4B:59:EC:15:C8:42:5D
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 0196730B38DD6B475C9F90CD2B4B6576F98F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0915
Signing time: Sat 26 Apr 2025 17:00:37 +0000
Manifest this update: Sat 26 Apr 2025 17:00:37 +0000
Manifest next update: Sun 27 Apr 2025 17:00:37 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: x6pfMqS5esO4Y8rVFOGTzraskqeiIh+f3Q0jR65aOT0=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:0b:38:dd:6b:47:5c:9f:90:cd:2b:4b:65:76:f9:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Apr 26 17:00:37 2025 GMT
Not After : Apr 27 17:00:37 2025 GMT
Subject: CN=0c4709a23dfa236d393273fa194b59ec15c8425d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:79:cb:7e:f8:d8:80:07:55:51:4f:7d:3c:e2:
7a:21:df:ea:61:96:65:69:f2:e5:e6:e5:95:fc:3c:
21:e0:5b:20:dc:bb:50:33:0d:ff:86:4b:a6:b9:18:
87:49:6e:86:dc:91:c3:13:57:88:58:f1:ed:68:18:
22:30:1c:39:a4:c0:0d:b5:16:23:35:2a:22:f4:8a:
9c:4f:9e:2c:2b:f8:61:3e:e2:f9:d6:9f:8e:1c:12:
98:82:9d:5b:cf:f7:37:be:1f:b0:a5:8e:e6:36:76:
ce:d1:da:10:b4:57:9c:f7:e7:d0:2c:92:6e:72:fe:
6f:8d:05:fa:c1:f1:22:10:9f:81:73:bb:fc:98:81:
f1:c0:70:6e:04:97:4d:5a:bd:2d:ae:05:87:fa:bb:
01:2c:b1:e2:8d:a8:00:71:f9:61:34:1c:7c:ea:37:
50:59:89:54:b4:13:5d:9b:75:08:dc:85:2f:2a:14:
0a:c2:22:64:65:76:4c:63:a8:24:e6:1e:48:d1:d0:
ee:2a:a1:59:c4:80:8a:d1:aa:74:b1:26:05:d5:63:
b3:d4:8d:94:d1:60:2a:15:96:ad:8c:d1:19:36:da:
24:5b:8b:95:1b:63:34:f8:e6:62:d7:6d:ee:c7:a0:
3b:d8:73:9b:d1:f9:bf:9d:d2:5e:20:14:02:4f:b7:
b5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:47:09:A2:3D:FA:23:6D:39:32:73:FA:19:4B:59:EC:15:C8:42:5D
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:c3:8d:7b:9a:a5:af:3e:96:ce:4c:bf:20:41:39:8f:eb:6e:
4c:9d:d4:f1:06:16:c8:7e:76:bf:1b:16:c0:3b:11:8c:57:7c:
1a:5f:04:b4:c4:20:bd:52:2d:10:69:f0:a1:6f:f6:a7:2b:78:
19:b5:bb:3e:5d:90:7f:41:6a:17:02:36:21:6b:f7:c5:9b:e1:
85:dc:d0:0d:49:42:aa:dd:2c:b3:43:c4:c2:fe:b9:2e:d2:ca:
91:e8:00:71:6d:9e:8e:cd:94:81:6a:16:d4:64:4e:59:cd:0e:
ed:0a:c1:3e:6f:4c:cd:af:e0:c1:2b:e6:9f:71:7f:c5:fc:56:
71:28:4f:40:28:cd:de:03:6c:03:b6:5e:10:10:eb:6d:e7:bf:
de:4e:be:9c:5e:43:3d:6a:b8:34:e1:50:f9:bb:66:b4:b5:e9:
6f:ef:1c:8a:45:e2:2c:30:a5:10:8a:fe:9c:84:98:40:40:2e:
17:03:d5:e4:0d:69:2c:b4:7b:d8:01:31:95:2d:ca:a6:7c:a8:
b8:98:fe:1d:fc:e4:64:1c:00:59:dc:9b:19:ff:3c:9f:f5:83:
2c:c0:24:01:82:60:02:c8:08:62:8d:76:3c:23:45:a6:c8:61:
10:ee:1c:01:19:37:64:74:dc:1e:ad:ab:6e:4b:8f:fa:e0:e8:
39:2b:92:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:27:51 2025 by rpki-client