Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
File: PpeXKwFXszTha_kfKifuDi3BOag.mft (raw, json)
Hash identifier: lsuIE4yCzW6cJkrDnYHlfwZHWXN4kIYRP50KDUyQhl8=
Subject key identifier: 28:CA:D0:9C:8E:3E:9E:E8:14:F4:71:A8:94:FD:23:62:D4:14:07:4B
Authority key identifier: 3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8
Certificate issuer: /CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8
Certificate serial: 0196C26F87F7F61F0AEA759F19AAD7FFA439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
Manifest number: 01A4
Signing time: Mon 12 May 2025 03:00:11 +0000
Manifest this update: Mon 12 May 2025 03:00:11 +0000
Manifest next update: Tue 13 May 2025 03:00:11 +0000
Files and hashes: 1: PpeXKwFXszTha_kfKifuDi3BOag.crl (hash: tipizfbJvveAyGGxq2uwjZv6lfEli7iMrp79a4hO44E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:6f:87:f7:f6:1f:0a:ea:75:9f:19:aa:d7:ff:a4:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8
Validity
Not Before: May 12 03:00:11 2025 GMT
Not After : May 13 03:00:11 2025 GMT
Subject: CN=28cad09c8e3e9ee814f471a894fd2362d414074b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2c:42:4a:e5:65:7b:73:c3:ba:73:1d:7b:87:
a6:d1:b9:21:65:da:69:17:2f:82:95:e3:b9:a0:b3:
d7:a3:e0:c2:38:f3:9d:75:64:bf:04:c9:76:d3:93:
30:e7:3c:00:bb:f6:48:da:a3:29:ad:8b:26:f9:6c:
5d:d0:e2:9e:7d:d3:de:7c:71:9e:46:d8:35:23:e1:
95:d3:7d:fc:61:fd:fb:3e:9f:2b:4b:b7:fa:82:09:
0a:53:0e:af:ce:8c:0b:80:92:3a:8b:c8:38:53:84:
46:b4:07:16:23:d5:4f:eb:1e:21:5f:24:54:66:8a:
9e:cf:d4:49:12:83:86:38:85:5e:72:d2:7a:c5:cd:
0e:7e:02:83:56:d7:b7:36:2f:89:d0:e1:b9:01:4b:
bf:d5:35:1e:2a:64:44:b1:24:78:f6:3a:c7:37:b9:
53:10:06:f7:84:53:7e:dd:8a:2f:14:de:13:d4:df:
c0:60:32:3a:37:54:eb:de:f3:a4:8a:b4:06:51:b0:
f8:a9:06:4e:62:1b:dd:67:fa:6d:d1:b1:8b:ba:70:
90:4c:5c:60:97:b9:7d:d8:a7:de:9a:c3:43:f9:8f:
3d:d5:17:fa:22:09:39:37:f4:5f:25:a7:e0:49:a9:
6a:69:e9:a4:34:7a:2b:6c:ec:d5:21:32:c9:cb:37:
af:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CA:D0:9C:8E:3E:9E:E8:14:F4:71:A8:94:FD:23:62:D4:14:07:4B
X509v3 Authority Key Identifier:
keyid:3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d3:25:e1:3f:94:83:f9:a4:9b:54:67:82:80:0f:d7:bc:c1:
df:25:79:80:c7:39:a3:27:1d:c0:8e:fc:22:8a:82:4b:53:cd:
99:10:1d:cf:e7:71:75:e1:02:03:c2:09:36:c8:9a:58:e9:88:
37:95:52:08:28:e9:82:05:29:60:a3:c0:c1:5a:0f:55:ae:47:
c1:fb:04:eb:ef:e9:ec:36:2b:d4:9f:f0:21:e6:9d:45:10:45:
df:93:f2:05:d3:ce:7a:db:2c:f3:d4:98:99:80:ab:6a:74:44:
06:fd:18:7a:97:2a:1d:d8:b4:a6:7a:3b:9f:59:cb:e0:c0:10:
22:f4:cc:b3:d2:00:12:17:32:81:8d:66:ed:57:b9:5d:21:2c:
a7:c4:18:22:8e:77:75:d2:45:47:11:5f:a4:47:a3:95:37:8d:
47:4c:13:66:66:05:2d:0a:60:25:c7:8d:9c:4d:13:55:93:f5:
71:1f:9d:21:b4:50:69:90:41:13:62:8d:90:43:93:16:97:97:
11:c3:b3:9b:94:e8:cb:9a:3d:ba:fd:f9:d1:b1:c9:0c:92:84:
1f:c2:e0:3e:8a:5e:53:ad:7b:57:a0:a8:8c:2a:af:56:22:65:
c5:96:98:07:f0:df:71:30:36:bf:cd:64:fa:41:98:b8:5f:60:
bc:d3:2b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:18:28 2025 by rpki-client