Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: Rz8o1f8KoId11vQqJSzh0ApIokk8+wdHkh+Xr+wV59Y=
Subject key identifier: 5C:AC:19:47:11:8D:95:8A:A3:9A:8C:E7:BF:A0:35:01:74:49:52:FD
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 0196A465CFBEA69775CC25BFD42B1B557F4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 068A
Signing time: Tue 06 May 2025 07:00:57 +0000
Manifest this update: Tue 06 May 2025 07:00:57 +0000
Manifest next update: Wed 07 May 2025 07:00:57 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: IKq5g5ghbZmDFFsKfNMudvLqHf3o6d8cVdxOatoT9g8=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:cf:be:a6:97:75:cc:25:bf:d4:2b:1b:55:7f:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: May 6 07:00:57 2025 GMT
Not After : May 7 07:00:57 2025 GMT
Subject: CN=5cac1947118d958aa39a8ce7bfa03501744952fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:92:eb:47:7d:43:ce:a2:24:e8:c6:9b:dd:5f:
83:07:f4:74:82:49:06:11:ae:b0:dc:91:5f:87:bd:
05:99:b6:a6:ad:5d:4e:07:4a:c0:4f:25:79:82:46:
86:18:f6:19:8d:15:be:6d:fd:01:97:c7:ff:ed:a2:
44:da:e9:ea:a2:7a:30:c8:39:7f:3a:d9:41:d0:21:
e0:cf:a8:50:ec:cf:bf:cd:5f:a7:9b:fc:7e:01:5c:
11:cd:fd:65:5b:99:df:a1:a6:c0:cc:68:4b:ab:66:
d2:4f:dc:74:e4:73:0a:a8:52:f3:4f:07:3b:66:07:
77:0c:27:85:72:00:67:00:b4:f2:c5:13:58:f3:d4:
9a:f0:6c:63:2e:f0:2e:e6:ad:b4:72:d7:07:6f:e1:
65:b9:3c:43:fa:83:77:52:96:1b:8b:ca:f0:3f:42:
c2:b4:09:57:89:ca:3e:50:8b:7b:2d:af:a2:95:4e:
b9:76:fd:61:7c:11:ec:e9:b1:a0:ce:24:5b:b2:e3:
aa:c7:1f:c6:c6:b7:9f:6e:2b:eb:be:dc:82:f2:cf:
52:dc:96:d4:be:0b:05:69:00:58:a3:ae:88:36:5f:
8a:c1:6c:b9:cb:20:ba:84:39:31:d8:5e:c0:19:8c:
09:4f:1b:ee:d5:ee:1f:17:ce:c4:47:30:b1:ad:02:
b1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AC:19:47:11:8D:95:8A:A3:9A:8C:E7:BF:A0:35:01:74:49:52:FD
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:cc:2a:2f:97:26:21:2e:75:5d:d7:4a:04:e9:a4:2b:9c:b1:
bd:ae:66:45:65:79:c4:33:56:07:a4:cb:29:42:30:44:c8:ac:
f4:d1:c0:80:70:10:25:50:64:d1:61:99:ad:bd:52:ed:83:86:
ea:4e:ff:fd:4c:45:c6:c9:4a:a9:7f:e1:fb:19:32:c7:da:b4:
75:16:26:77:ee:3b:11:39:d0:5f:00:b0:8f:05:cc:cd:66:c1:
fa:44:0d:fd:2b:e8:df:77:29:7d:6e:bb:63:6c:c5:77:fb:92:
63:65:88:8a:c0:62:68:7a:57:7b:cc:35:83:47:ab:ce:bf:ea:
ca:68:a2:71:fa:00:2a:b0:73:37:4e:3c:e1:93:8d:79:9a:f0:
13:9d:9e:1a:7c:b1:4d:1b:6c:f1:d0:4c:87:79:53:34:14:2a:
95:e0:97:9e:2c:05:67:35:ac:6d:25:8f:50:41:49:a4:a8:9e:
b1:69:75:85:20:d5:72:61:f1:10:89:47:d4:b0:87:84:e2:13:
7b:0d:17:1d:e7:ae:c3:94:41:0d:67:ea:6a:f7:6a:f2:01:2f:
87:c9:4d:3c:dc:7e:3d:54:e8:18:a3:43:c6:d8:df:6b:91:40:
3c:0b:24:41:68:72:f5:d8:b6:37:3a:4f:c8:b1:31:80:7c:05:
28:6e:55:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 11:28:31 2025 by rpki-client