Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
File: PheDehDbHT3XPiDfC0eeQNsiNv4.mft (raw, json)
Hash identifier: 212t/P+3SS6c3npBsIoN0od20FEZULv0Qp2dxWxcvW8=
Subject key identifier: C9:B9:08:45:C9:F7:24:76:A4:70:B3:1A:3B:6D:47:18:3A:0B:F9:CF
Authority key identifier: 3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
Certificate issuer: /CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Certificate serial: 019676B117FC33F48E868DBC5CAADD3EDF70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
Manifest number: 0D23
Signing time: Sun 27 Apr 2025 10:00:39 +0000
Manifest this update: Sun 27 Apr 2025 10:00:39 +0000
Manifest next update: Mon 28 Apr 2025 10:00:39 +0000
Files and hashes: 1: IjLvJG0-M1KnBbBDVenkXKquV78.roa (hash: n27HZGX2v3aJZrtVUVhPUuskMFjClOmq43C+EIraFso=)
2: PheDehDbHT3XPiDfC0eeQNsiNv4.crl (hash: ayaaq/T/LfUif2pj3tEKYeqFqZpUJkCrfTQLoMjVOdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b1:17:fc:33:f4:8e:86:8d:bc:5c:aa:dd:3e:df:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e17837a10db1d3dd73e20df0b479e40db2236fe
Validity
Not Before: Apr 27 10:00:39 2025 GMT
Not After : Apr 28 10:00:39 2025 GMT
Subject: CN=c9b90845c9f72476a470b31a3b6d47183a0bf9cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:46:57:27:13:c9:41:db:f4:ba:0d:2f:30:45:
53:b8:1d:bd:ea:46:18:ff:72:52:62:ff:e4:10:2f:
d3:f7:94:08:66:86:44:c1:c2:0d:f8:29:51:47:6b:
19:d4:62:68:2d:5c:14:d2:bc:a8:a3:85:e3:e0:ae:
f0:9a:03:fe:a4:4b:d4:3c:c2:7b:52:98:2e:ed:8f:
2b:d7:e1:82:76:1f:2d:8f:75:5f:2d:9b:28:a1:82:
e2:1b:b0:52:df:59:f2:cd:9f:49:e7:3c:b4:02:87:
28:20:34:32:eb:1d:df:73:46:1c:e1:2a:4e:bb:49:
ab:46:3a:c1:0d:e6:dc:da:fa:df:e0:62:84:98:3e:
23:2f:35:b3:40:67:a0:b2:8f:fc:e4:b9:d4:73:f3:
78:d5:e6:e3:ba:e4:04:21:fb:79:f5:ab:b3:ec:7b:
98:53:4f:cc:24:0d:d5:65:99:b6:d1:26:9e:b4:e4:
45:af:48:f9:62:4d:29:8c:e7:25:fa:17:bf:67:0b:
32:48:ad:29:b8:e5:70:ea:da:b3:39:8c:4c:d4:42:
12:cb:13:7c:3d:1c:19:7b:dd:a5:52:4c:b7:d0:9c:
a6:e6:1e:a3:49:48:83:f4:f9:d3:83:8f:51:fd:01:
bd:49:ed:ad:2f:86:d2:01:de:73:dc:f6:d7:08:3b:
76:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B9:08:45:C9:F7:24:76:A4:70:B3:1A:3B:6D:47:18:3A:0B:F9:CF
X509v3 Authority Key Identifier:
keyid:3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:56:c9:4d:56:b8:0a:6b:aa:94:8a:a9:d4:82:c6:de:4e:4f:
c6:d0:8f:2a:b3:32:95:2e:6a:b2:fd:32:10:f1:c9:01:e2:9a:
f0:db:98:24:cd:23:21:24:76:95:47:ac:53:00:16:9a:9a:5e:
44:e9:e3:e0:4d:77:3b:73:7c:80:66:7e:5e:59:76:e3:80:a4:
66:ef:11:49:2e:79:ff:e9:fa:f1:51:3d:1c:4d:ff:63:45:f5:
e4:f3:ae:e6:cc:f6:2c:e8:a5:8d:e8:c8:36:67:64:48:8e:6d:
dc:3d:df:45:44:6a:08:39:ac:7c:f1:4b:62:97:d6:ee:af:d9:
aa:4d:a3:d0:2d:72:b8:92:fe:d2:08:88:4c:8a:06:65:14:9e:
9f:5a:1f:3d:8d:50:36:df:a9:3e:24:65:6f:8f:6c:e4:18:03:
26:5b:ae:44:fb:25:e9:39:03:77:b4:b6:90:6a:20:75:e1:46:
51:aa:dc:4d:cd:dd:f6:ed:23:61:c0:65:62:da:66:c6:71:18:
d7:6c:3d:c2:61:34:97:32:6b:00:3a:92:22:7e:02:43:5c:59:
e6:bd:38:80:80:56:dd:ae:46:c6:e2:78:e2:10:2b:bc:3b:42:
52:26:b3:f8:f5:52:c3:77:ec:42:6e:21:ac:b9:fd:29:98:56:
2d:13:13:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:11:47 2025 by rpki-client