Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
File: pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft (raw, json)
Hash identifier: +YqTSqUklENidluPsRRA1oaSoT14lZieaBvu6svd9LY=
Subject key identifier: 23:E9:E0:F8:53:68:A7:19:9C:F8:B5:0B:E4:F0:F9:42:01:E4:BF:0E
Authority key identifier: A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
Certificate issuer: /CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Certificate serial: 0196A8E72A7CFE8B71802DE7DFB034C3B1ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
Manifest number: 09BC
Signing time: Wed 07 May 2025 04:00:44 +0000
Manifest this update: Wed 07 May 2025 04:00:44 +0000
Manifest next update: Thu 08 May 2025 04:00:44 +0000
Files and hashes: 1: LPRtA19ISdoMAcOg5dTdVh6L9Jk.roa (hash: yfplS3KyTgY8se7AVlwzcVLsAsein115ckLeaHyCF6w=)
2: pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl (hash: wTX2WFD83Q9bdoqEqMwoi/RahwG7PXhTGK9f5sJ597Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:e7:2a:7c:fe:8b:71:80:2d:e7:df:b0:34:c3:b1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Validity
Not Before: May 7 04:00:44 2025 GMT
Not After : May 8 04:00:44 2025 GMT
Subject: CN=23e9e0f85368a7199cf8b50be4f0f94201e4bf0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:eb:9a:57:fa:38:38:f1:4c:33:18:3f:ba:21:
31:3c:86:49:db:15:fc:09:46:1a:7d:8b:0b:91:c9:
2d:80:ce:a1:e2:d4:e1:4e:77:0e:0b:6b:f5:62:6f:
01:00:b5:6a:67:16:c3:a5:3d:b4:62:88:a3:5f:b4:
59:75:81:5d:ca:29:2f:d1:b1:7b:b3:1f:c3:d5:e2:
56:d1:f5:b0:53:c6:1c:8f:59:ce:6f:b0:1e:2a:72:
02:17:51:4e:e5:fd:ab:3d:51:44:4e:eb:de:00:ac:
03:0a:ad:13:b0:72:66:c7:ee:ea:46:29:bc:c1:30:
94:ee:b5:d7:c0:41:49:8a:29:b7:0b:4d:ca:a7:62:
a1:67:e1:93:80:10:db:fa:e1:4b:81:c8:c3:7b:f5:
13:b0:dc:c8:31:0e:4d:af:9d:01:e6:0d:58:84:79:
c1:73:0b:79:a5:c9:c8:29:5a:82:d8:38:16:f9:53:
a1:eb:82:72:11:a1:9c:32:2e:a9:24:9b:19:22:ad:
ab:26:c7:10:71:09:c6:71:e6:a8:df:7c:f5:c6:eb:
3f:d7:2c:43:79:b6:1a:e2:55:f4:fc:77:28:ee:ad:
cb:e9:5e:dd:07:e3:39:58:c8:06:51:e6:d5:27:b0:
d2:34:14:84:07:f3:c9:a8:c9:10:35:89:e9:a0:31:
57:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E9:E0:F8:53:68:A7:19:9C:F8:B5:0B:E4:F0:F9:42:01:E4:BF:0E
X509v3 Authority Key Identifier:
keyid:A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d7:9b:f5:4b:2f:0f:13:8d:a5:1a:45:39:00:ad:9d:fc:7d:
96:a9:bd:01:11:64:52:4f:fe:9a:48:a8:3f:f2:16:7a:21:c9:
b5:eb:57:3b:21:95:4e:e1:36:35:de:f3:04:a2:a6:8a:06:ce:
74:1b:a1:29:d0:7e:71:ce:5a:30:b8:6d:3f:05:e7:18:1c:97:
52:79:2f:b7:98:bd:3d:8b:2c:39:c3:4b:5f:a9:8e:ed:ab:1a:
69:f1:44:91:60:52:5f:7e:5c:5e:d1:53:9a:1e:70:12:91:91:
a4:a2:a2:21:71:e2:db:11:cb:0d:b4:05:ca:ed:b6:66:ed:d6:
c5:a9:1e:aa:93:2a:a2:03:0b:60:c3:bb:e2:91:3d:19:66:30:
b6:1f:be:d6:a0:74:3b:90:ae:d2:df:d2:c6:8b:96:51:50:08:
70:f0:7b:95:93:2c:5e:ed:1e:90:d6:96:00:e9:fb:55:62:1e:
e5:65:7a:df:cf:92:92:5f:6e:61:62:88:3d:60:44:60:ea:ab:
11:1e:a7:25:34:3a:c8:7f:4d:b3:08:82:51:25:bb:25:b1:1a:
cf:55:33:4b:f2:3b:48:b5:aa:b2:ec:aa:b0:c8:b9:e1:a0:1c:
66:6b:49:52:1a:fd:ed:7e:31:6d:ea:a5:e8:75:3b:2d:b0:8e:
a1:1e:07:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 07:56:55 2025 by rpki-client