Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: NIY0+9ZeVHJbsoTsBez93mOLitOTp88cjdHg+r0UuXQ=
Subject key identifier: A5:C7:8D:6B:1A:1C:69:56:94:5C:61:B4:10:09:26:70:C7:4B:B6:3A
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 0196BC6DCBE51987639F5065FA6EF5DC46B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 093B
Signing time: Sat 10 May 2025 23:00:34 +0000
Manifest this update: Sat 10 May 2025 23:00:34 +0000
Manifest next update: Sun 11 May 2025 23:00:34 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: /QYTmqVYTA4JySrGuqvTfyjHmIBOaa76fMikHMPT7OU=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6d:cb:e5:19:87:63:9f:50:65:fa:6e:f5:dc:46:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: May 10 23:00:34 2025 GMT
Not After : May 11 23:00:34 2025 GMT
Subject: CN=a5c78d6b1a1c6956945c61b410092670c74bb63a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fb:65:fb:c0:b3:a7:e4:2f:cd:c6:71:d9:5c:
50:50:b8:bc:32:13:13:6c:63:4c:f1:7f:8d:f3:87:
18:05:29:ef:44:75:fa:a5:65:7d:c8:44:46:aa:34:
66:13:fc:51:91:7f:d7:55:ca:1d:5a:06:41:a2:40:
46:df:b2:98:13:82:c8:14:c2:b3:a2:d0:27:d9:e0:
62:95:f2:e3:64:36:da:2a:86:a2:b9:00:5b:1f:22:
b8:41:11:53:0d:79:1a:ee:f6:6f:dd:e6:f1:48:4e:
89:f0:b5:f8:fe:a3:1d:62:fb:76:2e:16:74:c7:5c:
64:99:f7:1c:29:87:6e:e7:bd:0c:9f:3d:39:27:60:
ae:63:46:a8:20:bb:e9:c3:ab:75:6b:ad:75:cd:9d:
2e:a3:60:ab:b2:7e:56:73:e0:bb:08:99:1d:57:59:
bb:b5:79:cb:ae:2d:be:26:8e:4f:0d:9b:87:ec:cd:
42:19:af:0c:63:c8:5a:b5:b3:b7:15:7d:e1:97:96:
81:31:ef:aa:80:f7:c7:14:3f:16:59:71:c1:44:5d:
8e:23:5a:7b:fd:2f:76:98:97:56:72:25:62:84:43:
0d:eb:ae:dc:5a:24:df:83:0d:f8:9b:5b:b3:49:28:
e7:78:d5:c9:59:9a:24:e7:11:54:18:b2:be:d2:0b:
1d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C7:8D:6B:1A:1C:69:56:94:5C:61:B4:10:09:26:70:C7:4B:B6:3A
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:60:0e:a0:e8:46:55:ad:c5:bc:b7:cb:6c:01:01:41:52:9d:
71:f4:1c:99:53:99:d4:91:ad:21:e6:f8:70:38:ae:77:e5:ba:
c2:ab:a7:39:8e:c9:e8:86:84:cc:6f:a7:cb:73:40:66:a9:13:
be:54:47:05:80:82:65:d1:fb:5c:21:ca:bf:d8:2b:53:11:24:
26:1f:99:16:8d:91:52:b6:45:03:ba:f9:2f:86:c5:02:0d:69:
80:25:c1:09:91:a6:19:2a:f8:dc:44:fa:32:53:b6:3e:c0:a9:
35:9e:7f:4c:8a:2a:15:68:19:5a:83:35:48:18:63:c2:30:ab:
cf:3c:36:2c:b9:29:c0:87:78:e2:98:10:ff:a1:b2:a0:cc:e1:
1c:96:51:6d:e1:97:4a:f3:29:a6:66:a3:fe:07:fb:41:92:c3:
83:b5:f7:65:63:1b:02:02:5a:05:6b:1e:7a:9b:5e:97:74:e7:
2c:5c:57:39:cd:6d:a9:90:6d:85:52:2e:13:93:d1:77:78:cc:
13:de:a8:6e:f8:44:f7:e5:c1:58:6f:94:24:68:0a:75:37:67:
13:7a:11:0f:7b:21:5e:01:d0:b2:c4:99:eb:7d:17:3f:82:a0:
f1:80:50:57:14:2b:94:ad:dc:a0:ce:f0:55:96:32:a6:6f:36:
56:e5:7a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:13:23 2025 by rpki-client