Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: hXgPq0hxTaUGQOPYNvPwCwO+Z/WkrqqFztp5+wkhZI4=
Subject key identifier: 33:78:6A:BF:AB:BE:AB:7A:BE:DA:F4:E9:33:15:08:93:2C:CC:F8:6C
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 0196BBC9262B90BD6305743DC3A84F5078C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 0DF9
Signing time: Sat 10 May 2025 20:00:43 +0000
Manifest this update: Sat 10 May 2025 20:00:43 +0000
Manifest next update: Sun 11 May 2025 20:00:43 +0000
Files and hashes: 1: 8e7eehP1l-DLf5STdKJWnoHYbKQ.roa (hash: K8SacJP+Z6piM83BegnBqW6J1m/glPf8EgTcnUYrotM=)
2: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: RkIamHMz4un5PWsH7zysrnv7kocAtEoRr9IEl9UHY+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:c9:26:2b:90:bd:63:05:74:3d:c3:a8:4f:50:78:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: May 10 20:00:43 2025 GMT
Not After : May 11 20:00:43 2025 GMT
Subject: CN=33786abfabbeab7abedaf4e9331508932cccf86c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f2:85:a5:5a:2c:b6:28:07:46:88:17:e7:da:
7d:bb:0f:9f:2d:19:94:29:1b:b8:57:60:9d:b6:d5:
a4:75:fc:40:38:1a:95:3a:15:35:3a:08:d6:c9:b1:
9b:20:ca:92:a4:1d:1d:52:82:b3:41:37:05:e3:f6:
7a:60:08:2a:e1:55:be:c3:c8:9d:b6:53:98:bb:e8:
99:00:fb:56:2a:38:f7:9c:26:7a:b1:fb:bf:e5:aa:
74:83:44:5e:f2:ec:fb:c2:9e:15:23:a8:97:96:92:
e7:8a:96:65:94:66:11:4a:01:0e:be:73:1b:ba:cf:
d6:e5:c4:4f:6e:de:f6:ca:54:d1:56:22:60:a0:be:
65:72:04:ee:45:72:ce:d4:4e:f6:c3:5d:fe:67:9c:
5b:b0:9a:6d:3f:1f:33:8a:65:e7:23:70:22:be:02:
b1:08:51:f3:c9:cd:47:85:f7:ae:6b:b8:94:58:0c:
2a:ac:46:8b:22:e9:44:02:4e:00:f7:b1:09:a8:2a:
33:ff:1a:f9:f1:53:13:05:e5:80:df:3e:bd:ea:4e:
62:54:d6:ad:e9:64:1d:04:57:d4:52:ab:8b:e4:f4:
76:ad:5a:22:8a:6b:3e:56:5a:68:09:64:f5:a2:c2:
ed:09:a2:64:cd:0e:05:b8:94:1a:3e:92:85:d7:d4:
b6:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:78:6A:BF:AB:BE:AB:7A:BE:DA:F4:E9:33:15:08:93:2C:CC:F8:6C
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:81:48:4c:cc:2b:1a:e2:3e:83:4f:7c:80:2d:2d:09:3e:70:
c4:db:a7:7f:c5:75:52:65:e4:2e:6e:a5:ca:7d:3b:1f:09:12:
8d:de:00:69:b5:40:f0:e0:73:3d:81:e6:9c:58:a6:6a:56:52:
b3:22:af:2d:c5:20:af:49:b3:a3:c2:69:3e:ac:51:7c:c7:a2:
23:6c:59:36:35:7a:38:d7:98:63:3d:e8:3c:99:a1:2a:85:ca:
64:44:97:65:7e:f6:af:6f:ea:08:99:18:c5:3f:bd:38:04:87:
d0:64:b3:17:24:05:92:19:cb:29:8b:f5:8a:ef:00:df:94:0d:
64:2a:9a:d9:d9:25:81:87:6d:e2:42:79:41:7c:39:77:00:b7:
dd:24:0b:a5:fb:d9:f7:b6:cf:f1:91:0b:d4:13:f2:84:38:45:
19:88:c1:2b:c2:bb:31:f9:0e:3d:25:70:ce:e0:bb:1e:bf:70:
5c:2a:0c:26:dd:3a:73:3b:77:59:20:e5:16:0c:b5:7a:46:96:
f2:f2:63:51:39:29:be:5b:a9:a1:ca:fb:d8:a4:97:86:1b:b2:
99:c7:09:14:b6:b5:47:45:c3:aa:62:28:e7:d7:03:e7:58:33:
ee:41:94:1b:cb:e7:fa:9f:72:61:18:17:5b:0b:6d:4a:48:80:
91:63:bf:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:58:55 2025 by rpki-client