Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
File: PRKXkoZrFiE7VsW_pr66x8YYsVA.mft (raw, json)
Hash identifier: aexoaLWySmmwgECWHwbjSz15uQZHDX59pleS0XAQ7kM=
Subject key identifier: FD:95:57:09:72:0A:EE:CE:E2:D3:03:8F:BA:F1:18:23:3F:99:69:FD
Authority key identifier: 3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
Certificate issuer: /CN=3d129792866b16213b56c5bfa6bebac7c618b150
Certificate serial: 0196760C3F6C43C0C4BC7D22F4468DBC3A63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
Manifest number: 109D
Signing time: Sun 27 Apr 2025 07:00:36 +0000
Manifest this update: Sun 27 Apr 2025 07:00:36 +0000
Manifest next update: Mon 28 Apr 2025 07:00:36 +0000
Files and hashes: 1: PRKXkoZrFiE7VsW_pr66x8YYsVA.crl (hash: leDOi/yKn8PRl1PSiSNtNip8Ey7QT493dyX3aPip14w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:3f:6c:43:c0:c4:bc:7d:22:f4:46:8d:bc:3a:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d129792866b16213b56c5bfa6bebac7c618b150
Validity
Not Before: Apr 27 07:00:36 2025 GMT
Not After : Apr 28 07:00:36 2025 GMT
Subject: CN=fd955709720aeecee2d3038fbaf118233f9969fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:b2:35:82:cc:f3:19:05:06:db:58:18:8f:c5:
2b:1d:f9:57:99:40:62:ef:87:3f:2b:23:78:39:4a:
42:b0:fc:26:f5:32:5c:5c:de:23:31:04:e2:04:f1:
90:8d:35:47:81:99:b5:e8:8a:f4:ea:98:08:d7:7e:
86:1c:c8:4a:49:8c:f5:ca:8c:66:b9:09:88:ae:2a:
05:d5:33:aa:8f:d2:1d:ed:d7:a0:a8:95:14:9d:2a:
09:d2:2a:07:98:63:2b:9b:4d:04:10:2e:84:e1:3a:
cd:94:9a:6f:38:0b:cb:1a:c8:d7:a4:8a:63:05:b5:
b4:7f:89:61:4f:bd:6e:53:78:ce:88:e6:f5:fb:09:
2c:27:c9:dc:eb:4b:b2:70:92:78:34:0f:ab:3d:ab:
8b:e8:ba:8a:7f:69:08:ea:24:51:e9:90:a2:c1:b3:
b1:e2:5f:4a:3e:c1:ca:63:2d:40:2f:8f:d9:c6:02:
9b:d1:9c:da:7d:e5:d3:98:8d:d9:da:a3:8d:db:cd:
15:25:5d:54:a7:ac:ff:33:76:d4:d8:56:71:96:5e:
93:dd:df:39:6c:0e:90:46:9b:6b:fb:5b:06:21:81:
aa:27:b7:e7:51:6f:f1:c8:fc:60:53:40:9e:4b:c8:
a6:4d:61:47:94:ee:23:07:6d:18:2f:75:c5:ce:14:
b0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:95:57:09:72:0A:EE:CE:E2:D3:03:8F:BA:F1:18:23:3F:99:69:FD
X509v3 Authority Key Identifier:
keyid:3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:6c:b1:0a:95:c6:48:f4:77:a3:95:95:66:9f:47:f5:65:ef:
05:2c:25:6b:d1:d6:d7:f5:a4:c4:e4:67:84:3a:99:28:b7:a2:
b5:38:f4:e5:48:60:21:6d:c1:27:e4:91:a1:d4:82:42:c0:fb:
23:9d:a8:a0:62:62:02:98:81:63:dc:b9:99:51:33:e5:65:9f:
25:1a:ee:e5:f1:c1:d2:71:37:f9:16:c8:ab:5b:b8:37:0a:e1:
d0:e4:fe:07:d9:82:e8:88:24:c9:9d:77:fd:66:50:65:dd:8b:
f5:79:89:2f:f0:f0:dd:dc:2e:23:93:26:84:7d:95:ea:d0:2d:
55:48:57:4f:32:8f:ff:9c:24:74:9c:13:72:9e:d8:46:4e:48:
5d:36:d7:c5:7a:bf:b1:e7:20:d4:ef:2a:3b:91:0f:fe:e6:03:
25:30:35:7d:7e:71:94:50:b4:71:2d:d7:87:85:fa:45:67:1c:
77:71:88:23:8e:c8:3f:57:b7:6d:c1:c3:0d:e2:0e:4d:34:0b:
22:1d:98:16:09:f0:19:8f:d5:6e:78:5f:61:18:bb:9a:e7:a4:
e8:fd:e4:6e:20:44:28:a7:6e:b7:5d:cb:7c:c0:2d:82:36:7a:
8a:de:2d:0a:87:d3:b9:4b:53:16:58:cd:83:1d:bb:06:14:c8:
5a:7e:d4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:58:59 2025 by rpki-client