Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
File: PHQZW9u2a2A65joVGPBm-gsRUfU.mft (raw, json)
Hash identifier: u/Vft+LL9m2aWUY1gkhwxzuOew64ea0l0RAaaBv91e4=
Subject key identifier: 7C:E3:DB:1F:D4:C7:1E:5E:83:CC:66:20:B5:5D:2C:2F:75:F6:13:EB
Authority key identifier: 3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5
Certificate issuer: /CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5
Certificate serial: 019677FAAA311D085DDFCE9A7F7F3DDAA1AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
Manifest number: 0842
Signing time: Sun 27 Apr 2025 16:00:38 +0000
Manifest this update: Sun 27 Apr 2025 16:00:38 +0000
Manifest next update: Mon 28 Apr 2025 16:00:38 +0000
Files and hashes: 1: PHQZW9u2a2A65joVGPBm-gsRUfU.crl (hash: 9NBYqGxKZKfd+aCeeOhRN/cM/ftY9OHrfjJzKMmpMVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:aa:31:1d:08:5d:df:ce:9a:7f:7f:3d:da:a1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5
Validity
Not Before: Apr 27 16:00:38 2025 GMT
Not After : Apr 28 16:00:38 2025 GMT
Subject: CN=7ce3db1fd4c71e5e83cc6620b55d2c2f75f613eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:27:7e:d5:10:aa:93:5a:f5:c3:89:ff:8b:48:
42:aa:b4:46:11:b9:5b:d1:f7:c3:b0:aa:68:2a:16:
ea:f7:0b:04:db:df:6b:1c:db:4e:c1:35:d8:62:4e:
ea:32:12:b3:17:97:2d:b1:2c:0c:da:59:8c:1a:ac:
1b:06:7c:27:fc:13:d7:c6:ac:98:34:a3:31:76:21:
af:bc:b3:d1:00:49:c0:0a:e8:8c:7b:25:d3:da:47:
e6:9d:ea:09:7f:78:e4:a5:cf:9b:0d:b6:de:a2:4e:
9e:76:66:71:ae:3f:b1:9b:97:63:14:86:56:3b:1e:
c3:58:d1:bd:1a:e1:32:f5:1f:f8:85:84:02:b9:71:
4e:33:ae:10:a1:a3:19:91:e3:af:db:83:ef:42:00:
cd:0f:a6:c6:a4:bb:1f:66:a6:4b:9a:a5:be:fe:19:
11:e3:cd:80:8c:8b:c9:a9:e5:b6:a7:08:1f:bd:19:
b2:c3:a0:c5:0a:aa:af:7c:5f:c6:40:5b:27:96:1f:
82:e4:bb:ef:d1:9c:9a:1c:d4:22:35:0d:b4:f7:62:
6f:42:20:7f:79:33:ea:b1:28:c4:a7:47:48:85:34:
5d:11:c8:a3:4b:96:15:3d:67:8e:9e:a5:52:bc:db:
eb:ef:37:a1:32:1d:a8:ba:ce:ae:f6:50:87:80:63:
30:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E3:DB:1F:D4:C7:1E:5E:83:CC:66:20:B5:5D:2C:2F:75:F6:13:EB
X509v3 Authority Key Identifier:
keyid:3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:3d:a3:38:18:cb:e4:2d:df:cb:fa:5f:84:1c:d7:7f:74:47:
f5:da:c7:2d:6d:28:b0:93:9a:d0:6c:16:1c:0d:33:6d:d3:6c:
52:28:f5:06:c2:55:54:26:3b:6d:aa:06:e5:82:ec:86:3d:f4:
1c:40:6d:34:fd:e8:f7:ad:86:07:00:30:c9:f9:19:25:a4:1e:
3e:dd:89:e6:33:18:e4:67:2a:a9:65:b5:3c:3d:d9:2c:41:02:
f1:15:36:ac:57:fb:79:36:7e:54:5e:b8:c4:b1:b6:c0:5c:42:
a6:7f:71:f4:cb:e3:b1:24:59:7c:3b:51:2a:8b:f4:43:b2:f5:
a8:3b:57:7c:7b:bf:04:fb:e0:33:ad:ca:8f:20:b3:5a:a9:3b:
77:65:76:31:af:e3:a3:fd:36:9d:98:e3:13:12:f3:5c:c6:14:
4f:09:b2:e2:c2:82:0c:16:cd:21:e9:89:ac:3f:3e:e7:03:26:
f4:e4:fc:6d:b0:28:81:53:b5:90:d3:d1:cb:9c:28:09:fe:ce:
ae:77:68:5d:20:3b:d6:a0:a1:82:ed:24:1e:c6:84:68:17:ce:
80:2c:71:95:30:3e:cb:ec:d5:b1:8d:97:c5:ad:33:20:3c:b6:
cc:ef:a1:93:4d:b2:92:b5:ce:e5:4f:f2:46:0e:15:a0:48:d4:
2d:a2:97:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:01:07 2025 by rpki-client