Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: uXUO7+H1OG1vVmfav6UG0OU8cYNeuV+fMGg9XBkn5m4=
Subject key identifier: BE:CB:5E:44:0B:19:6E:3A:CA:A6:CB:E8:A6:A4:32:23:66:9F:FC:09
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 019677C3914F6AB8F4AB203D4364D715BC85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 0425
Signing time: Sun 27 Apr 2025 15:00:27 +0000
Manifest this update: Sun 27 Apr 2025 15:00:27 +0000
Manifest next update: Mon 28 Apr 2025 15:00:27 +0000
Files and hashes: 1: 4boeBlk7o1BaTuZdEOVxwc-y71c.roa (hash: RGuBRtk99FPER/w90B0w3hwMlxFq4HdA7ruV2FfydxY=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: PkvCNBMEjSZYstFPZG0762jtuXrLh9KJG55rjkkoRxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:c3:91:4f:6a:b8:f4:ab:20:3d:43:64:d7:15:bc:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Apr 27 15:00:27 2025 GMT
Not After : Apr 28 15:00:27 2025 GMT
Subject: CN=becb5e440b196e3acaa6cbe8a6a43223669ffc09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ee:81:97:b9:33:5f:6b:34:36:a1:94:3c:da:
ed:42:41:49:f5:be:a9:82:bd:31:32:1c:e2:b3:d2:
72:a4:64:b0:31:62:35:b9:d2:38:7a:90:c2:ee:1d:
e2:b5:b6:99:d5:69:83:c4:0a:1b:87:4f:01:5f:5d:
5c:06:34:a9:bd:43:a5:50:4a:99:30:95:18:fd:1d:
89:f9:22:90:02:6c:f5:0f:e2:cf:05:c5:4f:4b:65:
80:d7:93:31:c0:33:d0:55:6d:19:4a:31:fb:52:90:
22:83:b1:fd:44:50:ad:c2:f1:4e:b9:ab:cd:82:ae:
a8:c1:2a:31:3f:f0:e6:ed:45:3a:81:eb:9a:4b:7a:
dd:ce:5e:97:24:ab:f2:87:d9:5f:46:77:90:93:d3:
86:26:b8:8f:73:1b:a6:18:d0:64:ad:39:72:64:27:
7b:00:8c:f5:c8:7d:bc:eb:5b:12:fe:43:ae:db:9b:
d3:6c:5e:36:e5:69:64:fa:37:29:be:1e:f3:00:3b:
00:69:fa:fc:12:66:cb:1b:b8:bb:d5:69:02:3d:e7:
6c:c2:ba:c3:65:64:3c:e5:4d:e5:82:ff:13:fb:af:
d0:a6:b6:31:fa:95:ea:54:d6:9e:49:5a:71:36:0f:
35:64:bc:c1:d5:c7:11:c0:a8:14:30:89:c7:43:ae:
17:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:CB:5E:44:0B:19:6E:3A:CA:A6:CB:E8:A6:A4:32:23:66:9F:FC:09
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:d2:80:a1:e5:13:f5:01:1c:e2:71:fa:98:b4:85:0e:2a:b7:
a2:9d:14:08:1a:2b:82:98:3a:36:0b:ff:43:d0:39:cf:1f:99:
8f:e1:d6:e2:ae:3b:a1:63:38:24:b8:76:f3:ee:c7:f5:54:db:
3b:66:06:d7:b4:aa:cf:57:0e:c8:2a:e0:36:1f:c9:7d:a2:b3:
f8:84:cc:62:e1:0c:3a:72:53:40:d7:ee:ad:65:b5:4e:4a:65:
59:f9:e1:aa:f7:4a:00:6d:74:f6:ba:46:bc:39:a6:cc:c8:d9:
83:64:36:0e:1f:3b:c3:b5:ae:d9:a7:28:c5:a0:f0:92:ac:9f:
be:7f:ee:87:91:3e:4a:b9:63:e9:90:31:ef:f3:6e:ad:4e:41:
e5:84:5c:e1:01:76:80:f1:07:42:de:85:2e:fd:c8:61:e2:84:
c7:19:c1:c9:03:84:3a:82:49:08:67:41:0c:7a:0b:98:4b:4e:
e9:02:29:b7:6e:a0:59:14:a5:61:af:d4:42:e4:5a:6c:94:2d:
39:c1:bf:74:a1:a7:c6:b3:81:26:d8:cb:e5:55:82:fe:8d:fe:
73:a1:09:70:79:00:54:e3:f5:df:13:ad:c9:30:bc:94:64:d0:
ec:ee:01:9e:c1:66:f1:1a:ae:b2:03:22:14:ae:e5:72:31:db:
a4:5b:5f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 21:46:39 2025 by rpki-client