Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
File: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft (raw, json)
Hash identifier: zPd/YqpvreFTKQj5cQxRAsq3SwBrqeJEDkPiXJOVlpU=
Subject key identifier: C0:AB:E2:BE:80:61:D4:5B:4C:36:83:93:51:24:1F:D1:AC:84:03:56
Authority key identifier: A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
Certificate issuer: /CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Certificate serial: 0196B7B613FA843A4CD0F6183B46CF274BB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
Manifest number: 152D
Signing time: Sat 10 May 2025 01:01:25 +0000
Manifest this update: Sat 10 May 2025 01:01:25 +0000
Manifest next update: Sun 11 May 2025 01:01:25 +0000
Files and hashes: 1: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl (hash: dRoyIYl6fkIRJkhHx6RmmNa2djo7Q1B1wsRMp7o9tbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b6:13:fa:84:3a:4c:d0:f6:18:3b:46:cf:27:4b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Validity
Not Before: May 10 01:01:25 2025 GMT
Not After : May 11 01:01:25 2025 GMT
Subject: CN=c0abe2be8061d45b4c36839351241fd1ac840356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d7:32:1d:97:8c:80:ed:05:e1:be:c9:15:2f:
7d:02:d6:bf:cb:bf:51:f2:f1:4a:af:ec:9e:db:a7:
9e:1a:b8:7f:b6:7a:ac:1c:1b:cb:d9:27:f5:e8:b9:
bf:51:98:1b:3a:1b:12:1b:0b:35:e8:ec:04:98:c0:
60:a3:5c:c0:79:05:96:67:7d:11:27:56:30:d5:49:
88:61:f8:fd:f8:a9:a0:32:23:5f:70:1b:e4:b7:28:
43:08:40:42:f2:2e:22:39:06:da:ee:61:99:13:d5:
cc:32:eb:2f:45:3d:3a:a4:58:51:28:0e:b4:08:e3:
1b:36:fd:58:71:46:21:4d:a2:47:b0:5c:ff:43:35:
f3:41:eb:f5:d7:6d:6d:75:35:e6:b0:3d:60:c4:88:
d9:54:1b:2e:f0:73:4b:4f:a7:4a:de:6f:b7:e9:a6:
6f:e3:ad:71:4e:12:a2:41:6e:5d:d2:96:9f:ab:77:
c0:e5:9e:75:b5:f0:b7:0a:63:14:92:a7:57:be:26:
7d:ce:ca:45:8b:be:90:7e:f0:3e:79:7a:1a:e4:11:
7a:76:4e:b7:7e:c7:e5:ff:ae:6f:24:79:73:02:9d:
1a:59:5b:92:b6:22:6d:28:cf:22:4e:8e:dd:43:c5:
3b:bb:bd:1f:04:a2:d9:31:47:90:ab:5c:60:66:69:
ce:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:AB:E2:BE:80:61:D4:5B:4C:36:83:93:51:24:1F:D1:AC:84:03:56
X509v3 Authority Key Identifier:
keyid:A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:96:5c:b3:0b:36:96:b5:99:ac:19:ac:99:ec:8c:46:8d:cc:
d3:c1:07:46:6d:65:65:fa:b1:06:ed:00:fd:07:2b:b7:ae:85:
64:93:aa:d2:48:62:71:87:f1:9b:bd:d7:49:0f:c8:9e:c8:b7:
7c:c3:64:08:e7:1c:08:74:dd:8e:67:e2:e9:60:65:3a:f7:7d:
2e:a2:c3:bb:81:11:73:ee:7f:b6:80:33:b6:3e:5b:a9:62:ae:
90:7a:f1:81:6d:1a:ee:11:f7:ce:23:58:b0:d4:b2:1f:3b:c1:
7f:c5:3b:43:8f:45:63:19:a3:50:7e:38:22:54:17:6a:44:07:
bb:0c:48:ca:bc:18:b8:14:82:e1:9f:31:93:88:02:2e:97:d2:
a0:bf:f6:53:fa:16:b1:b4:2e:b3:2a:46:be:0f:db:00:ea:28:
b2:17:be:7d:90:eb:fe:e3:70:d2:91:0f:01:50:35:d3:6b:7c:
e4:82:9a:3f:86:26:a1:61:4e:7e:cf:17:85:82:2d:72:05:88:
92:a8:e4:ea:1f:7b:9a:f9:3a:2d:2c:24:d7:45:a6:d7:09:03:
d9:b4:9f:22:11:5c:4c:a7:af:c5:c9:1e:49:03:63:92:b1:42:
ed:3b:19:a0:ab:ba:a9:23:ab:5c:62:45:e5:bd:aa:c5:17:69:
f5:35:94:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 04:42:23 2025 by rpki-client