Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
File: PnFWq-5roji5BzFd-cVShlrc2ug.mft (raw, json)
Hash identifier: rw0GRJTKumIXwMQa/hlR0QLY81Y50g/89zQlVcLpHnQ=
Subject key identifier: 75:39:01:5B:F8:6B:FF:76:55:56:4D:0E:08:F5:BA:EB:06:96:00:BA
Authority key identifier: 3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
Certificate issuer: /CN=3e7156abee6ba238b907315df9c552865adcdae8
Certificate serial: 0196BC6E2F4FAB23A9B02B0792CE567C3AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
Manifest number: 07A4
Signing time: Sat 10 May 2025 23:00:59 +0000
Manifest this update: Sat 10 May 2025 23:00:59 +0000
Manifest next update: Sun 11 May 2025 23:00:59 +0000
Files and hashes: 1: PnFWq-5roji5BzFd-cVShlrc2ug.crl (hash: bopB5KeaDWcZN18IKSAIO07wOkFRFLXPl8RAhSQLBqU=)
2: vDazkPOiPtoCYetZfRX-qpQ69j8.roa (hash: B0GK+5WaWwtXf0DhRaPxfP/Ak+Di2Wr89zC0Jym0UK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:2f:4f:ab:23:a9:b0:2b:07:92:ce:56:7c:3a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7156abee6ba238b907315df9c552865adcdae8
Validity
Not Before: May 10 23:00:59 2025 GMT
Not After : May 11 23:00:59 2025 GMT
Subject: CN=7539015bf86bff7655564d0e08f5baeb069600ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:01:78:57:b0:6d:98:75:26:16:73:41:39:4f:
60:03:45:5b:87:6e:2a:f2:69:17:e1:07:89:fe:15:
cb:4d:b7:ce:83:87:87:06:ff:44:26:13:00:9c:ae:
bc:c6:d3:95:1a:fe:0e:0c:85:18:ae:e6:ab:96:1d:
53:8f:22:d4:5c:fe:c8:e9:45:56:84:a8:23:5d:91:
34:4c:8f:28:87:f3:e6:0d:fc:3a:a4:d1:33:f4:05:
e6:09:ae:1b:1f:6e:a7:05:0a:9a:9d:76:b1:d5:96:
af:66:4d:45:cc:57:e4:3f:71:b0:5d:9c:81:2f:c7:
4d:2d:b5:80:cb:72:96:ce:82:6e:ee:dd:8f:eb:d8:
d5:0d:e6:b5:81:de:a3:14:c7:5e:f8:bd:81:ce:a3:
f5:86:c9:5a:28:ba:06:b2:60:c4:c9:2e:f7:e4:39:
c1:10:c0:cd:37:66:44:a3:20:7e:1c:f2:8c:92:f3:
50:71:8c:e5:22:d4:5c:b7:37:02:2c:a5:7b:11:67:
7b:00:ba:a1:77:18:88:ce:a7:9a:f6:ae:ae:00:4e:
dd:c8:ad:00:67:0c:69:7c:f5:4b:94:4b:3e:28:7f:
dd:69:97:56:f7:e5:d2:55:66:0a:e5:5e:d9:d1:df:
4e:9e:16:9e:77:bc:b5:c0:cb:2d:aa:e1:06:09:cb:
ff:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:39:01:5B:F8:6B:FF:76:55:56:4D:0E:08:F5:BA:EB:06:96:00:BA
X509v3 Authority Key Identifier:
keyid:3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:42:d7:b2:42:9d:0d:ef:89:5e:24:dc:9a:03:32:07:b3:49:
56:2d:08:24:03:10:93:e7:8b:76:60:51:c0:71:6a:5f:ec:18:
d9:bc:61:f8:23:3c:2d:f5:5e:04:0f:47:ee:bd:b7:a0:f7:ee:
a8:e1:46:ef:96:42:2e:a1:6e:74:bc:2b:e0:7a:d0:72:2e:bb:
bc:71:3c:10:59:dc:54:48:6d:13:e6:fd:16:a9:f2:42:e2:c0:
de:c5:9e:c0:e4:6c:af:c7:69:79:69:da:ea:2f:f9:90:c1:84:
18:4d:66:eb:f2:91:22:c8:ed:ce:17:e1:a2:6e:52:75:f4:b3:
27:e0:d7:c7:7a:25:2d:3f:38:a8:83:09:8a:0a:0c:76:03:54:
79:19:70:72:a3:71:d1:7d:dd:6a:d1:7a:4c:65:a9:47:bc:1e:
ba:2b:2d:d6:ec:34:cf:9a:92:0f:3c:51:b6:73:29:7d:2b:57:
73:0d:ec:14:5c:aa:fd:89:a0:d2:7a:86:78:a0:ec:2b:59:37:
98:4b:22:47:4f:37:30:4f:35:0f:77:1a:ae:64:f2:0c:d4:09:
4a:35:af:5f:06:54:d1:8c:51:27:8b:a6:f5:c6:5f:a0:5b:91:
e3:48:f0:16:23:7f:92:ad:db:79:e6:39:67:de:54:b6:4d:16:
f1:17:f3:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8bi9PqyOpsCsHks5WfDrtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNzE1NmFiZWU2YmEyMzhiOTA3MzE1ZGY5YzU1Mjg2NWFk
Y2RhZTgwHhcNMjUwNTEwMjMwMDU5WhcNMjUwNTExMjMwMDU5WjAzMTEwLwYDVQQD
Eyg3NTM5MDE1YmY4NmJmZjc2NTU1NjRkMGUwOGY1YmFlYjA2OTYwMGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQF4V7BtmHUmFnNBOU9gA0Vbh24q
8mkX4QeJ/hXLTbfOg4eHBv9EJhMAnK68xtOVGv4ODIUYruarlh1TjyLUXP7I6UVW
hKgjXZE0TI8oh/PmDfw6pNEz9AXmCa4bH26nBQqanXax1ZavZk1FzFfkP3GwXZyB
L8dNLbWAy3KWzoJu7t2P69jVDea1gd6jFMde+L2BzqP1hslaKLoGsmDEyS735DnB
EMDNN2ZEoyB+HPKMkvNQcYzlItRctzcCLKV7EWd7ALqhdxiIzqea9q6uAE7dyK0A
ZwxpfPVLlEs+KH/daZdW9+XSVWYK5V7Z0d9Onhaed7y1wMstquEGCcv/uwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHU5AVv4a/92VVZNDgj1uusGlgC6MB8GA1UdIwQY
MBaAFD5xVqvua6I4uQcxXfnFUoZa3NroMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG5GV3EtNXJvamk1QnpGZC1jVlNobHJjMnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9hNGEwZjctN2RiZC00YjAzLWI3Zjkt
NThmMmQ0NGZmMjgxLzEvUG5GV3EtNXJvamk1QnpGZC1jVlNobHJjMnVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9hNGEwZjctN2RiZC00YjAzLWI3ZjktNThmMmQ0NGZmMjgx
LzEvUG5GV3EtNXJvamk1QnpGZC1jVlNobHJjMnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjULXskKd
De+JXiTcmgMyB7NJVi0IJAMQk+eLdmBRwHFqX+wY2bxh+CM8LfVeBA9H7r23oPfu
qOFG75ZCLqFudLwr4HrQci67vHE8EFncVEhtE+b9FqnyQuLA3sWewORsr8dpeWna
6i/5kMGEGE1m6/KRIsjtzhfhom5SdfSzJ+DXx3olLT84qIMJigoMdgNUeRlwcqNx
0X3datF6TGWpR7weuist1uw0z5qSDzxRtnMpfStXcw3sFFyq/Ymg0nqGeKDsK1k3
mEsiR083ME81D3carmTyDNQJSjWvXwZU0YxRJ4um9cZfoFuR40jwFiN/kq3beeY5
Z95Utk0W8Rfz/A==
-----END CERTIFICATE-----
Generated at Sun May 11 08:37:33 2025 by rpki-client