Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
File: pnUQ3cUswCV-TCVS9b1XVURUxgs.mft (raw, json)
Hash identifier: Ik9ijpgRDQO5q63T/nOJhlIqKfQtraiMf02hAdYeEEY=
Subject key identifier: 98:4F:5B:C9:21:40:E7:59:7A:6A:1D:F8:D1:D4:6E:F4:8E:AC:32:0D
Authority key identifier: A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B
Certificate issuer: /CN=a67510ddc52cc0257e4c2552f5bd57554454c60b
Certificate serial: 0196CBA9EF2E625C7680F2731718D0C47DA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
Manifest number: 04B9
Signing time: Tue 13 May 2025 22:00:33 +0000
Manifest this update: Tue 13 May 2025 22:00:33 +0000
Manifest next update: Wed 14 May 2025 22:00:33 +0000
Files and hashes: 1: pnUQ3cUswCV-TCVS9b1XVURUxgs.crl (hash: 1dpojmQ2V2IQMkl0WlGcbEG7bt2MLQaBJE/58KZ2an0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:a9:ef:2e:62:5c:76:80:f2:73:17:18:d0:c4:7d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67510ddc52cc0257e4c2552f5bd57554454c60b
Validity
Not Before: May 13 22:00:33 2025 GMT
Not After : May 14 22:00:33 2025 GMT
Subject: CN=984f5bc92140e7597a6a1df8d1d46ef48eac320d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9b:71:e4:69:bf:4c:64:aa:f0:31:4c:0b:69:
c5:d5:ac:42:2d:e9:a8:f5:57:d4:d1:82:57:ff:eb:
1c:b5:37:cc:3f:76:aa:84:ef:50:22:39:b3:84:db:
30:b9:e9:21:8b:51:47:df:86:da:db:1c:60:80:30:
69:91:a0:f4:f5:bc:2d:20:b5:b6:a6:54:a9:be:55:
c8:00:c5:64:b5:d1:b8:58:d8:ed:07:d9:08:1d:96:
50:ef:5a:36:5f:0d:c4:d7:12:8a:db:76:79:18:6d:
99:f4:ff:f6:e1:e6:d1:31:6f:e0:d1:01:b1:d3:b8:
69:e8:64:95:b4:6c:3c:2c:86:8c:47:92:73:3b:a5:
09:7c:2e:8c:46:3c:6a:03:a5:6d:4f:e2:10:06:19:
b5:10:be:21:f4:44:c9:56:32:ce:09:fc:7f:9f:65:
57:dc:b3:93:3f:e3:6d:96:3e:e6:eb:a8:ca:68:58:
98:f2:66:13:67:37:0a:9d:37:e1:5e:51:93:36:71:
b7:53:c2:bd:c0:15:da:17:8c:e2:fa:7d:98:c7:03:
73:59:52:ec:ed:25:b1:2a:46:1a:ad:19:df:73:7b:
68:3a:ef:93:66:80:68:5e:cf:5e:84:5d:ad:8a:5c:
2b:44:44:b4:be:b9:6c:b1:b9:62:06:20:7a:e1:d9:
14:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:4F:5B:C9:21:40:E7:59:7A:6A:1D:F8:D1:D4:6E:F4:8E:AC:32:0D
X509v3 Authority Key Identifier:
keyid:A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:73:d4:02:f1:2b:74:98:59:8e:73:59:9b:b2:d2:e5:77:7a:
7f:93:c4:20:29:2f:2d:47:38:76:b4:25:1b:17:4f:7d:b7:e6:
93:66:fe:0a:7c:ae:19:8c:3d:bc:ca:be:da:07:18:30:ee:6b:
0a:82:d0:bf:14:8e:61:0d:19:97:ab:d1:54:61:34:e8:4d:1e:
28:40:6b:51:ae:85:64:90:8e:6a:65:31:c7:b9:4e:16:fc:10:
e8:64:eb:81:c5:1f:74:93:ce:24:64:d7:0e:a3:f6:d5:88:ae:
5b:88:ae:5a:4b:f9:34:79:85:b4:21:1a:36:57:7a:86:00:59:
eb:6b:33:57:0b:6b:71:e5:bf:e3:0f:62:a2:bb:ee:df:b7:74:
25:56:0c:4b:ae:17:a2:37:0f:a3:1f:2a:f7:f6:f3:47:7b:6f:
11:cd:90:57:64:1a:b8:5b:85:06:53:c2:e8:63:88:e9:94:ec:
25:ce:0b:c0:5a:5d:c2:e3:2d:f2:54:53:de:df:93:b9:fe:92:
ab:ec:4d:de:08:fc:37:21:ee:91:e6:ef:3e:e2:6a:55:cb:ae:
f4:5b:32:14:91:fa:77:1f:84:65:60:ca:f1:b2:82:54:da:4e:
e5:fc:3f:c3:ff:5b:d7:64:86:bd:58:27:74:5b:5e:b4:e4:3b:
e3:2d:35:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 08:01:38 2025 by rpki-client