Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: r5eZhZC0prfLbRmPYk52feBC7eClBkVMpksi1uO/HmI=
Subject key identifier: FC:E9:66:80:BF:49:5D:53:59:14:D6:13:15:13:71:36:A7:3D:60:5F
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 0196AF8DDB60D97A458F15D4993355EB09D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 07F4
Signing time: Thu 08 May 2025 11:00:31 +0000
Manifest this update: Thu 08 May 2025 11:00:31 +0000
Manifest next update: Fri 09 May 2025 11:00:31 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: cuWIcDex+bz5jB6Q9R86xDAIbGWfP7yGgXKhqRw/EQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:8d:db:60:d9:7a:45:8f:15:d4:99:33:55:eb:09:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: May 8 11:00:31 2025 GMT
Not After : May 9 11:00:31 2025 GMT
Subject: CN=fce96680bf495d535914d61315137136a73d605f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bd:27:9e:2d:83:3f:0b:e5:ed:b8:7c:73:73:
77:af:f0:7e:e6:62:27:18:53:45:07:ef:ee:29:b8:
ce:29:26:fa:a7:6a:cc:bb:a3:28:28:3a:00:8f:3a:
54:61:d8:46:e6:bd:64:92:12:f6:45:d4:4d:9e:72:
1f:a7:ed:53:86:71:ef:8f:8e:db:f8:0e:46:1e:97:
61:4b:bc:00:eb:7a:5c:ca:0c:85:0d:ce:6d:cd:d4:
48:f5:84:72:29:75:a4:1c:50:5f:53:e3:84:81:f3:
87:15:c7:b0:d1:78:03:a0:bc:48:16:4a:92:ab:1d:
05:d7:11:c2:b7:f3:28:18:c8:21:d0:a6:18:09:6f:
1e:13:7f:b8:af:57:c1:c4:a5:de:36:a6:de:19:13:
c7:67:89:70:79:6a:59:98:ac:69:5d:7f:75:4f:86:
8a:cf:a1:08:8c:8b:d2:92:b4:8c:c8:17:b6:08:53:
84:cd:06:c1:de:f6:4b:e3:35:15:28:7f:9b:dd:42:
eb:0e:93:e3:af:1f:8e:b0:cc:e2:2b:b2:55:fe:d0:
37:25:d1:ec:19:ab:02:6f:aa:dd:df:57:f0:ca:c2:
37:b8:81:7c:55:0c:e4:39:f5:b5:65:e2:a0:a6:50:
1c:ea:4a:68:ca:f5:eb:37:3b:28:2b:05:31:57:67:
ee:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E9:66:80:BF:49:5D:53:59:14:D6:13:15:13:71:36:A7:3D:60:5F
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d2:91:7c:87:90:da:eb:65:a1:09:d2:bc:7b:17:ac:21:0c:
35:32:e3:e8:49:2c:9e:ac:e2:06:7c:ff:32:49:eb:b7:40:93:
39:09:f0:8f:be:2b:aa:98:db:62:65:a7:67:a7:eb:cc:b1:dc:
1b:01:20:78:2f:af:fb:d0:43:92:fc:a5:9f:9d:e5:91:0a:75:
ed:3d:19:a6:b7:41:29:5d:8d:bd:85:69:71:18:5c:42:6c:9c:
9f:f4:8c:e1:2d:4d:1d:8b:32:05:bf:28:a0:14:a6:db:ea:8f:
3a:78:e2:0f:0e:f9:dc:48:79:a5:49:4d:cc:c2:97:fc:12:69:
a9:45:29:ac:a2:3a:47:2c:b1:ee:88:26:99:e1:26:bd:5f:0a:
1f:13:b1:37:09:57:95:b2:d0:b1:fb:f3:e7:f1:2f:f7:a9:20:
39:57:47:7c:23:65:35:c5:8d:21:32:c9:fe:20:65:c0:b3:6d:
20:6a:91:1e:81:94:50:6f:dd:be:78:a0:89:94:73:ba:fb:7e:
cd:c7:7b:27:fd:d3:bc:c1:fa:72:3f:41:01:20:a9:11:74:5d:
d0:59:47:33:f6:0a:34:5f:73:ab:d2:0b:75:51:ab:51:8f:b9:
eb:a3:72:e8:ae:c9:5e:a6:62:c6:66:cc:9a:96:a6:af:e4:63:
8e:60:fa:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 16:09:30 2025 by rpki-client