Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: OW1I47ZT6qAMJm2PDXHFk8k0zvObZGeu9zeCn7rIeMI=
Subject key identifier: 40:A2:34:59:A4:8F:B5:8E:CE:FB:6E:EA:86:81:A3:67:46:FC:99:11
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 0196BF6F964154D35594E89C823CE24B33CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 0F39
Signing time: Sun 11 May 2025 13:01:23 +0000
Manifest this update: Sun 11 May 2025 13:01:23 +0000
Manifest next update: Mon 12 May 2025 13:01:23 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: //nSTtplt3Nb4Yp5Zmrw63qWkJiMQYQegzbK3rrYikA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:96:41:54:d3:55:94:e8:9c:82:3c:e2:4b:33:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: May 11 13:01:23 2025 GMT
Not After : May 12 13:01:23 2025 GMT
Subject: CN=40a23459a48fb58ecefb6eea8681a36746fc9911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cd:4c:de:cd:08:be:4a:7f:2d:15:6e:47:af:
50:aa:8f:29:87:1c:35:4d:17:65:d7:8f:98:e9:54:
63:03:e8:11:9f:b9:5e:0b:64:90:60:a1:1c:f8:c7:
c8:c0:99:40:1f:2f:2e:08:c2:d7:33:1a:04:c4:fa:
b5:62:96:d1:01:6a:77:40:b8:20:6e:e8:fa:09:68:
b4:27:74:2d:34:94:fc:71:51:38:dd:9f:92:62:d6:
e2:aa:6d:c2:f0:10:d1:6e:88:36:e6:23:c0:c8:3b:
a7:15:ea:d1:e0:97:3f:ea:99:22:ca:27:a3:c1:56:
eb:87:87:43:67:d9:08:7a:3a:e1:2f:84:8d:96:0d:
00:56:7f:0b:5c:82:90:61:18:85:67:34:49:45:9e:
7b:70:36:66:ee:43:1f:fb:6a:1e:a6:6e:22:59:eb:
40:04:58:cf:c4:61:a9:c3:15:1e:d5:84:dd:f3:0a:
06:fb:9f:1b:ea:93:83:e1:06:31:30:77:c5:0a:b7:
7f:93:b2:8a:03:44:70:4e:63:24:ad:9f:53:6c:9c:
bb:63:0b:d8:7a:8f:c1:bf:a3:7c:00:19:71:ca:9f:
40:4f:cb:b8:c1:08:db:10:44:3f:c6:4c:d6:fb:4d:
96:ff:d6:e4:63:95:8a:19:be:f1:e2:a5:39:2e:07:
68:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A2:34:59:A4:8F:B5:8E:CE:FB:6E:EA:86:81:A3:67:46:FC:99:11
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ed:b1:bf:4c:67:47:d4:d7:2d:ac:0d:9c:86:33:27:91:67:
35:9e:4a:9a:1a:58:31:8d:c9:3f:4b:dc:78:78:c3:85:9e:2c:
aa:6e:3f:26:aa:95:94:1f:c8:23:2f:0a:82:06:43:bd:4f:ca:
c3:e6:38:8f:6a:7f:1b:03:b6:d5:ff:f6:b4:de:6b:c8:55:c1:
81:e1:52:fc:7d:cd:86:56:23:48:69:26:c7:63:8f:7a:1f:2c:
bc:f0:bf:fd:45:18:01:ba:55:d0:45:99:b3:3b:0c:cf:63:4d:
35:7c:7f:f7:3b:47:2b:0a:30:5f:ff:cc:2a:62:c4:41:b0:ad:
ab:0d:c9:d3:0a:11:cb:44:aa:ea:d7:99:64:d1:6d:fc:c3:86:
5b:40:26:e9:11:f7:97:c1:8d:9b:a9:d0:11:bf:c7:cc:ff:0a:
37:6c:0e:1c:9c:cc:3b:79:22:57:e2:30:21:32:40:9d:84:38:
31:57:0a:7b:57:e3:a1:5c:a4:c0:04:0c:e6:b0:6f:7c:8a:ab:
29:0d:7d:7e:87:05:23:34:02:88:9e:5c:ee:5c:58:89:33:b4:
10:22:00:8a:59:4b:a9:34:16:fb:3e:3f:48:6e:e8:f3:db:e3:
1d:2d:e3:53:3b:f7:4e:ac:9b:85:a2:d4:cc:16:5a:ef:be:43:
9e:1d:f1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:06:05 2025 by rpki-client