Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json)
Hash identifier: dDCTRvRB/M2GkW75PdkzOjO3YO75XlEV4Abwh0Zsw0g=
Subject key identifier: 9F:10:19:40:C9:5E:52:81:3D:D7:CA:74:C4:53:57:52:A8:D1:07:EE
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 0196C19435F3157800932C29BB4A18521548
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
Manifest number: 0CEB
Signing time: Sun 11 May 2025 23:00:37 +0000
Manifest this update: Sun 11 May 2025 23:00:37 +0000
Manifest next update: Mon 12 May 2025 23:00:37 +0000
Files and hashes: 1: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: j1Re0yRV3ovT12RRtSWnLTNZ77fO91JEM3PBVolsY2g=)
2: qkuFYPmd6yVSJeAUkr6iVxoW6uI.roa (hash: 6R5f5Psj0EmX1v5BkourUurygRB3rOnwEBUagdishKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:94:35:f3:15:78:00:93:2c:29:bb:4a:18:52:15:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: May 11 23:00:37 2025 GMT
Not After : May 12 23:00:37 2025 GMT
Subject: CN=9f101940c95e52813dd7ca74c4535752a8d107ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:53:db:82:f5:72:eb:03:ef:c9:4e:1a:32:10:
92:0c:c2:9c:12:0f:47:18:1f:01:6d:63:33:94:4b:
69:94:20:74:0f:21:68:36:fd:f1:b4:ff:12:82:93:
95:b8:f2:aa:14:f6:57:5d:a2:30:81:ec:57:46:67:
16:26:10:9e:2f:7d:46:ce:c1:df:b8:0e:10:22:72:
58:53:41:77:fa:e6:39:7c:6a:d4:6c:47:3c:31:e7:
05:9a:39:3d:92:03:b3:3f:5c:fb:40:a5:93:11:18:
63:60:aa:c1:f9:15:67:ff:bd:53:da:32:89:39:38:
f8:69:d1:55:64:86:ba:64:7f:60:5c:59:84:1d:3d:
f3:f7:67:6a:57:62:75:96:0b:e9:44:59:2d:b5:50:
56:ef:2b:c0:2a:1b:c5:a1:5b:46:f6:b5:d7:50:b9:
12:0c:6e:f5:25:61:f6:3b:51:b7:d1:31:b0:15:80:
10:0f:e5:ce:51:70:15:55:76:1c:b1:0f:22:ca:73:
bb:a8:f5:22:b2:c9:62:15:3c:ef:eb:c5:11:35:73:
e4:18:f7:05:0f:f1:2e:e2:3c:c0:e9:8e:ce:a2:ee:
6e:46:75:df:63:8d:d4:e9:88:81:05:fb:61:50:ce:
a7:ea:38:b4:0c:6d:b1:13:98:2a:a9:89:cf:e4:50:
88:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:10:19:40:C9:5E:52:81:3D:D7:CA:74:C4:53:57:52:A8:D1:07:EE
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:03:59:1c:d0:71:cd:01:45:e6:c1:6d:a0:cf:11:ff:07:d3:
0e:29:ee:85:1d:1a:2d:44:22:9b:64:53:ab:73:ad:57:69:7b:
5b:14:a8:4f:cb:69:ba:97:bf:7f:7b:b3:5d:e9:35:82:4a:86:
dd:d3:a4:9b:b9:c1:71:e1:ad:9d:fa:ec:a5:7e:4a:0f:63:73:
b7:91:8d:69:74:85:d5:fa:cd:55:79:22:40:66:67:f2:cc:f9:
a0:f9:34:10:52:04:e8:d7:ec:93:30:fd:e8:38:24:a4:d4:ae:
20:c7:52:54:1d:fa:05:9e:9a:d8:70:f0:c3:ec:a1:c8:79:b8:
36:04:01:2a:de:8d:ab:df:8d:13:d5:95:c9:8c:c2:c0:1a:99:
9a:2f:3b:a1:9d:4d:03:82:06:10:0d:d9:82:af:97:25:08:aa:
44:77:37:47:b0:27:b5:ed:49:09:78:de:34:10:0c:49:0a:69:
77:63:09:ca:3b:10:c1:8c:64:0a:e7:91:85:1c:29:a5:c5:0d:
ab:60:82:8f:6b:5b:42:f6:03:e8:00:9e:9b:9a:29:81:94:c4:
05:68:ed:ab:48:31:e1:e9:01:ce:87:03:46:58:42:7f:eb:bd:
ff:b4:e5:18:fc:1f:97:bd:b3:72:71:7d:1a:4b:a1:c5:26:b9:
83:b7:33:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 01:35:29 2025 by rpki-client