Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: JWzjHsz9i66X0jRQ8XCMuVB604K1Uzk0yqctuYXIt74=
Subject key identifier: C7:6B:77:44:6F:E4:04:E5:03:56:3A:C2:0E:05:0B:E1:C1:EA:F5:55
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 0196C239A87E1B6F04EDF8A722BC197A0577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 07BE
Signing time: Mon 12 May 2025 02:01:20 +0000
Manifest this update: Mon 12 May 2025 02:01:20 +0000
Manifest next update: Tue 13 May 2025 02:01:20 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: boSu62mJtcJv4ZZgIz7inzJNAu5LVPlYNePZ8JiWQv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:a8:7e:1b:6f:04:ed:f8:a7:22:bc:19:7a:05:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: May 12 02:01:20 2025 GMT
Not After : May 13 02:01:20 2025 GMT
Subject: CN=c76b77446fe404e503563ac20e050be1c1eaf555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:69:15:99:33:88:53:1c:1a:80:6c:aa:e4:81:
72:ec:67:11:98:54:ab:07:4d:5c:68:e9:7a:db:e4:
38:c3:45:af:e9:b1:29:b3:de:63:1b:e4:6e:71:ae:
37:c2:e8:d9:6e:06:78:4e:1b:75:2e:c4:8e:90:ff:
e4:03:a3:e2:f6:7b:b6:7e:1a:a0:ee:9a:ce:2d:05:
22:13:d8:31:d0:43:74:3a:b6:d5:16:1d:5f:99:9b:
ff:8f:f2:45:c2:bf:0d:5b:9e:2b:49:aa:b8:bf:f8:
79:df:41:8b:97:ea:7c:24:a4:ae:4e:00:ff:19:73:
db:e2:99:20:ed:6d:be:51:bd:97:e8:f0:12:31:25:
4b:4e:b8:98:00:5c:88:da:14:cc:d8:f8:f9:f3:c6:
0d:a3:c5:30:a8:e5:7b:53:d0:e8:97:f4:8d:a1:35:
d7:60:15:ce:1e:ac:81:3d:1b:9e:c6:5d:f9:50:b4:
71:44:20:cd:8d:99:ee:a7:33:8f:a3:eb:55:d2:87:
c3:1e:29:0d:37:cd:9e:4c:a7:ac:bd:63:09:88:4f:
a7:14:ee:24:f2:d0:75:a6:c4:36:2e:f0:d0:51:bd:
33:fc:49:f6:75:16:55:42:f1:74:a2:94:dd:9d:08:
cf:0c:5a:13:0f:70:7e:a1:35:cf:3e:e6:53:53:64:
ee:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6B:77:44:6F:E4:04:E5:03:56:3A:C2:0E:05:0B:E1:C1:EA:F5:55
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b1:21:9d:51:74:52:2d:14:7f:30:c7:8c:cb:37:56:91:99:
72:cd:67:60:d5:2f:39:74:b1:49:6b:ea:a2:9e:41:a4:c2:a6:
4f:7d:65:7b:6e:21:5e:e4:8b:00:c2:55:55:9f:7c:5a:93:69:
d3:2b:5c:f6:8b:a8:be:47:6a:08:e1:3a:f7:ff:50:1f:a6:57:
8d:0c:98:f8:7b:ab:7d:50:e5:fc:30:c4:bc:7f:99:5c:98:82:
ce:b3:81:06:b5:0f:d4:f1:0c:e4:81:31:61:49:92:b7:ef:d8:
a1:f8:17:31:2e:77:13:92:14:4f:03:39:57:62:ec:4a:3b:b9:
b1:0c:fc:a2:02:92:41:26:aa:22:f1:11:34:7e:c0:8a:4d:51:
0d:c4:70:a9:76:99:ca:6e:11:30:85:36:1c:a6:54:15:a8:2c:
a3:73:07:d2:7e:d0:8a:aa:1d:6e:61:0b:95:75:ea:45:48:00:
92:dc:29:22:e9:2e:b2:ac:d8:10:0b:db:65:dd:ee:2b:e6:1f:
1b:1d:bd:80:5f:8b:57:39:9d:58:73:6f:ab:fd:fb:8a:2f:fb:
d9:eb:50:b7:04:f9:29:c0:65:b2:dd:6c:fd:ef:79:10:c9:0f:
a4:b3:9c:ae:5a:8c:0f:56:56:29:bf:32:b6:14:f0:dc:7b:a0:
00:c3:82:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:14:04 2025 by rpki-client