Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
File: pnkWCgRJ6LUPwByF3PzlSyxim1E.mft (raw, json)
Hash identifier: ekRH2ta+TXo2FmUS/BRRlxQXR22x1jhc7l84Sh2XPPE=
Subject key identifier: 18:68:58:CC:C2:25:ED:9F:ED:24:43:3C:11:A1:BF:E5:30:13:D5:6D
Authority key identifier: A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51
Certificate issuer: /CN=a679160a0449e8b50fc01c85dcfce54b2c629b51
Certificate serial: 0196C4CBE6F0E58D953ADB042F34A8D76AAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
Manifest number: 0F3D
Signing time: Mon 12 May 2025 14:00:19 +0000
Manifest this update: Mon 12 May 2025 14:00:19 +0000
Manifest next update: Tue 13 May 2025 14:00:19 +0000
Files and hashes: 1: 6zgBCVzd-5kdX0sgGe0YDglrk04.roa (hash: mpYaeNHnIzoaHZnsNjSuZCAnd5S6WeK+VhnJsngc1QQ=)
2: pnkWCgRJ6LUPwByF3PzlSyxim1E.crl (hash: HiExaLQarDLKvu1uersLnx0rs+rPSkEBfHMznVnrYQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:cb:e6:f0:e5:8d:95:3a:db:04:2f:34:a8:d7:6a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a679160a0449e8b50fc01c85dcfce54b2c629b51
Validity
Not Before: May 12 14:00:19 2025 GMT
Not After : May 13 14:00:19 2025 GMT
Subject: CN=186858ccc225ed9fed24433c11a1bfe53013d56d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:40:2e:d3:f1:dd:e3:8e:0f:57:fb:fe:f1:40:
18:ce:ba:06:b3:22:49:b5:30:56:60:0f:1d:d2:65:
2c:d1:37:48:32:89:a6:04:40:a2:71:f4:23:db:8b:
5c:71:13:b5:b5:71:85:c7:23:56:0f:e9:c7:2a:28:
f3:77:f6:0a:e9:5e:96:14:4f:c8:f4:58:3e:f1:52:
4b:0c:e4:c7:1e:49:24:8c:5e:f0:c7:cb:4b:f1:49:
44:36:52:b4:b1:81:92:89:5d:6b:e6:6d:d1:44:8a:
77:f0:05:66:db:88:ec:1f:7a:82:0c:26:e3:4b:46:
fc:a1:e1:b6:01:c1:f8:91:9f:27:29:38:6a:2f:7c:
b7:79:29:0f:d1:fa:91:22:4c:95:02:bb:3c:a5:8d:
13:66:b9:5b:6c:a6:55:28:cb:97:fb:0e:6a:53:3e:
ec:a0:27:9e:f3:50:49:b9:c5:19:b2:2f:45:9c:c2:
e6:34:1b:35:03:0b:df:8f:be:1a:0f:72:de:03:e9:
aa:92:79:b9:52:fb:4a:1d:9c:b6:92:bd:e5:f0:bf:
6a:e1:82:7d:9c:e4:ea:b5:67:65:6d:a3:f1:72:30:
97:b6:43:e6:2b:48:59:c0:f3:6d:dd:23:97:74:b5:
8d:ed:2f:1f:71:f7:f3:72:be:fd:b1:62:af:86:71:
32:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:68:58:CC:C2:25:ED:9F:ED:24:43:3C:11:A1:BF:E5:30:13:D5:6D
X509v3 Authority Key Identifier:
keyid:A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:bc:f6:92:da:81:e1:e7:f7:e3:f3:34:9f:7d:e6:c5:9d:ae:
e8:48:53:c6:d1:6a:22:77:72:b0:52:c8:37:6c:42:77:e2:28:
53:22:05:aa:96:be:82:61:5e:70:44:6c:c8:84:e5:a0:67:06:
f1:98:62:2d:39:1d:fd:60:54:bf:00:0b:84:81:bf:00:90:9c:
54:68:52:cc:08:bb:aa:f5:ab:fa:01:a8:09:f0:ef:cd:b9:71:
0e:98:9b:34:36:2a:3f:0e:c9:ea:19:20:33:16:77:53:54:0c:
a7:16:1a:e8:df:cf:1f:f0:37:0a:be:4a:af:01:1a:96:ff:1a:
06:39:06:47:59:19:f5:27:f1:6f:cd:4f:98:4a:dd:28:96:f0:
20:c9:97:0d:ab:6c:cb:5f:04:f1:e9:35:47:b8:70:83:5c:29:
8f:61:28:3e:33:88:d2:3a:46:5c:48:4f:e6:7e:63:41:57:5e:
57:60:a2:11:41:3d:0e:48:dd:69:ef:9f:41:1f:48:89:51:4e:
5e:2c:dd:6a:0b:27:8b:9b:05:fd:00:d7:af:bb:52:2f:69:12:
50:ae:2c:b4:7e:9a:ff:32:7a:87:70:b9:de:0b:d2:38:79:18:
4b:7a:51:c1:73:54:b5:8a:02:6e:24:fd:6a:7f:ad:bd:41:18:
0d:44:76:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:27:42 2025 by rpki-client