Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: Gfp/U+8PW4T22fviprVO8zAoPs5VMAdT0fO4arOb5FI=
Subject key identifier: A4:DE:21:BA:86:A7:D0:E9:40:84:69:F7:AE:D5:08:B3:E8:2E:F6:24
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 0196AA9EC2D806AC4C4D1357F2E6111B99CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 13C3
Signing time: Wed 07 May 2025 12:00:53 +0000
Manifest this update: Wed 07 May 2025 12:00:53 +0000
Manifest next update: Thu 08 May 2025 12:00:53 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: 8a5LzCOYeTDZNoWFVZi56XGi7VRZz91f3xGtsGr6HKM=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 12:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:9e:c2:d8:06:ac:4c:4d:13:57:f2:e6:11:1b:99:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: May 7 12:00:53 2025 GMT
Not After : May 8 12:00:53 2025 GMT
Subject: CN=a4de21ba86a7d0e9408469f7aed508b3e82ef624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8c:5f:e8:0b:f3:18:d7:e1:10:e0:86:54:36:
ae:57:cb:2f:0f:c3:01:4e:ed:f3:94:ad:86:46:d1:
86:0c:ce:ee:a1:ea:1e:5c:ce:be:e9:da:1a:a7:a2:
4b:72:83:e3:7e:e0:41:22:12:6d:69:15:c3:c4:84:
97:f7:04:50:86:96:9a:a3:19:19:61:a9:9d:df:dc:
5e:02:06:17:47:29:2f:3a:7e:cf:31:48:8d:a6:91:
f4:ab:51:d7:fb:53:0a:6a:37:0b:8a:09:d7:55:d2:
02:20:e8:d5:cf:cf:71:8d:ac:28:1c:b7:be:04:b7:
58:a9:f8:ed:00:eb:85:6c:3c:1a:0b:b1:e4:16:57:
d0:d7:0e:2f:d2:fd:bc:28:ae:5c:be:e1:af:04:04:
ea:e3:d7:6f:7f:e3:ff:ba:da:62:02:b8:0e:98:12:
bd:bc:0e:de:d1:77:3e:ad:8c:8b:7a:32:37:91:e1:
ac:8f:df:25:69:64:36:19:ef:17:0f:00:9e:1d:07:
2b:9b:c2:54:7f:03:88:d1:3d:b6:33:64:74:26:9f:
93:96:33:6c:fc:ea:f7:86:86:c7:4b:05:fd:f8:40:
0d:4f:7a:50:af:23:e4:d3:e3:98:31:6f:cb:5c:8a:
c5:d9:05:a2:5d:ed:87:29:48:42:ef:dd:de:e2:8f:
b2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DE:21:BA:86:A7:D0:E9:40:84:69:F7:AE:D5:08:B3:E8:2E:F6:24
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:0d:dc:b8:ff:86:7e:12:84:cd:c0:38:53:ef:c7:e9:07:37:
3f:08:3a:85:10:f5:0c:ae:f2:4f:07:8d:8c:b6:5e:20:87:2f:
4e:f6:c6:91:c0:e5:2d:81:27:e7:a6:0e:6c:f5:0a:9b:35:80:
50:5f:a3:6f:bb:97:af:e1:dd:f8:8c:5a:ad:84:ae:85:86:e4:
80:10:fe:80:f9:67:f6:7e:96:d2:76:5f:62:77:9c:bb:d9:d3:
41:c3:66:98:99:89:46:98:42:5d:b6:16:3c:6a:9f:24:a2:fa:
c3:fd:be:81:f4:35:c5:a2:83:9f:5b:46:4a:2a:15:b8:c4:c7:
de:22:a1:81:73:fc:d4:c6:5b:16:01:a2:f4:24:02:a3:63:d6:
33:b1:41:d4:44:e9:ab:fb:aa:53:fc:8b:f1:3b:38:f7:c9:d5:
5c:1c:ee:6d:4e:55:f0:b5:34:76:1d:4b:f0:23:6f:db:ce:c3:
e5:3e:13:4a:7a:7a:99:df:a4:9a:f6:aa:99:da:78:3d:30:d2:
06:7f:56:e6:ff:b7:2b:e6:f5:2e:4c:f7:d0:45:b9:1f:29:8f:
25:db:29:e2:9e:d2:3e:60:c9:cc:fe:c6:3e:6d:76:b0:2e:eb:
6d:d2:60:cd:f8:4c:9f:f2:b1:93:aa:fc:c4:5e:51:27:a3:f1:
0f:0c:4c:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaqnsLYBqxMTRNX8uYRG5nNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NzQwMTVkNTA5YjVkNGYzOTZlYTM2MzM2OWU5ZDc0ZmZh
ZDc1OTMwHhcNMjUwNTA3MTIwMDUzWhcNMjUwNTA4MTIwMDUzWjAzMTEwLwYDVQQD
EyhhNGRlMjFiYTg2YTdkMGU5NDA4NDY5ZjdhZWQ1MDhiM2U4MmVmNjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkoxf6AvzGNfhEOCGVDauV8svD8MB
Tu3zlK2GRtGGDM7uoeoeXM6+6doap6JLcoPjfuBBIhJtaRXDxISX9wRQhpaaoxkZ
Yamd39xeAgYXRykvOn7PMUiNppH0q1HX+1MKajcLignXVdICIOjVz89xjawoHLe+
BLdYqfjtAOuFbDwaC7HkFlfQ1w4v0v28KK5cvuGvBATq49dvf+P/utpiArgOmBK9
vA7e0Xc+rYyLejI3keGsj98laWQ2Ge8XDwCeHQcrm8JUfwOI0T22M2R0Jp+TljNs
/Or3hobHSwX9+EANT3pQryPk0+OYMW/LXIrF2QWiXe2HKUhC793e4o+y+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTeIbqGp9DpQIRp967VCLPoLvYkMB8GA1UdIwQY
MBaAFKZ0AV1Qm11POW6jYzaenXT/rXWTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82ODllNzAtZTM4ZC00ZmYxLWE5NzIt
NDExM2Q2ODZkZDY2LzEvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC82ODllNzAtZTM4ZC00ZmYxLWE5NzItNDExM2Q2ODZkZDY2
LzEvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgw3cuP+G
fhKEzcA4U+/H6Qc3Pwg6hRD1DK7yTweNjLZeIIcvTvbGkcDlLYEn56YObPUKmzWA
UF+jb7uXr+Hd+IxarYSuhYbkgBD+gPln9n6W0nZfYnecu9nTQcNmmJmJRphCXbYW
PGqfJKL6w/2+gfQ1xaKDn1tGSioVuMTH3iKhgXP81MZbFgGi9CQCo2PWM7FB1ETp
q/uqU/yL8Ts498nVXBzubU5V8LU0dh1L8CNv287D5T4TSnp6md+kmvaqmdp4PTDS
Bn9W5v+3K+b1Lkz30EW5HymPJdsp4p7SPmDJzP7GPm12sC7rbdJgzfhMn/Kxk6r8
xF5RJ6PxDwxMsQ==
-----END CERTIFICATE-----
Generated at Wed May 7 21:38:52 2025 by rpki-client