Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
File: pxTGIdV85C4lCT7OhXvbh146zqo.mft (raw, json)
Hash identifier: RanxtzTg9n9gTxiL35GcjQOknL585wRiKWGx/U70EFc=
Subject key identifier: B3:12:9A:9F:3F:79:99:A4:90:FA:08:74:CA:27:9F:9D:50:98:38:2C
Authority key identifier: A7:14:C6:21:D5:7C:E4:2E:25:09:3E:CE:85:7B:DB:87:5E:3A:CE:AA
Certificate issuer: /CN=a714c621d57ce42e25093ece857bdb875e3aceaa
Certificate serial: 0196B85A68D1C98A261C5062FB91B011EAE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxTGIdV85C4lCT7OhXvbh146zqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
Manifest number: 01FE
Signing time: Sat 10 May 2025 04:00:54 +0000
Manifest this update: Sat 10 May 2025 04:00:54 +0000
Manifest next update: Sun 11 May 2025 04:00:54 +0000
Files and hashes: 1: pxTGIdV85C4lCT7OhXvbh146zqo.crl (hash: S2tAbu7JvCnqY4wbJy7+uGr0jLWDXuF3wbu/pohv3kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxTGIdV85C4lCT7OhXvbh146zqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:5a:68:d1:c9:8a:26:1c:50:62:fb:91:b0:11:ea:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a714c621d57ce42e25093ece857bdb875e3aceaa
Validity
Not Before: May 10 04:00:54 2025 GMT
Not After : May 11 04:00:54 2025 GMT
Subject: CN=b3129a9f3f7999a490fa0874ca279f9d5098382c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1b:3e:1c:9a:c9:ec:5e:b7:2d:22:02:db:8f:
0e:02:0e:57:4a:92:ec:46:2a:a4:f5:cd:58:e9:ed:
28:8b:62:3e:5c:22:91:eb:db:ad:56:12:98:c8:f1:
99:9b:bc:17:f9:a1:d3:12:e6:b2:0d:2c:35:56:9f:
42:bc:52:67:b6:6f:75:73:98:49:ca:c2:3c:4e:c7:
eb:7a:b8:ae:a8:36:e1:20:ff:f3:49:91:75:c4:2b:
d5:1b:75:dd:34:dd:f8:f7:54:b7:99:32:6a:00:f7:
c7:6e:a9:46:23:a0:cd:e3:4f:2d:3a:ee:86:96:2f:
44:48:19:05:2e:0a:7b:e2:20:3f:05:89:4e:07:23:
77:6e:e7:7d:59:21:d1:c7:24:18:c6:c8:c0:e3:dd:
38:1f:76:f6:f4:c2:87:1c:2d:b3:25:14:c2:30:2b:
15:fa:3c:e2:f8:90:ff:2d:c2:b9:74:7d:f9:16:29:
10:a6:b9:40:d1:22:76:71:bc:b2:5e:c8:84:01:9f:
02:ad:00:ef:00:ca:8d:e0:36:ed:90:f1:2d:34:3c:
05:3e:d8:7a:29:28:45:8e:8b:4a:f4:ec:73:70:d5:
61:f8:9c:5a:89:79:53:5e:1b:de:9d:b0:13:cc:07:
d8:8f:45:78:c9:b6:f9:7f:92:57:dc:29:84:2b:ff:
05:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:12:9A:9F:3F:79:99:A4:90:FA:08:74:CA:27:9F:9D:50:98:38:2C
X509v3 Authority Key Identifier:
keyid:A7:14:C6:21:D5:7C:E4:2E:25:09:3E:CE:85:7B:DB:87:5E:3A:CE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxTGIdV85C4lCT7OhXvbh146zqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:77:1c:cd:62:cf:da:61:ca:d9:bd:c9:83:ee:22:20:61:17:
4f:d1:ee:20:c8:ab:da:c1:1b:c3:98:4e:f8:6e:90:34:da:42:
bd:7f:9e:96:44:9f:08:22:8f:ef:57:70:70:f8:e0:e0:6c:3a:
47:29:0e:f1:a5:59:1e:b6:e7:9a:bc:f4:a3:a1:88:ee:20:d9:
67:5f:56:f8:84:c5:85:a5:55:25:62:94:7f:bf:99:23:2b:42:
dc:61:bd:fa:63:b9:20:49:30:46:89:8d:fe:fa:93:0a:da:16:
17:f7:fe:e1:c2:4f:8b:47:0b:8d:86:8c:19:c4:4e:c2:fd:21:
2a:4f:b7:49:84:01:d9:5b:47:63:ee:8a:ad:61:9c:14:24:cd:
12:1f:1b:70:3c:8c:60:0f:0f:cc:98:9e:44:e2:ba:c4:24:8a:
6b:67:ef:49:4d:22:66:58:80:38:c4:0a:f8:0f:67:1e:8c:a5:
02:0f:d6:0a:74:45:21:b2:e7:6e:8d:b9:07:07:5b:0b:b3:d7:
1f:5b:0b:6f:b2:04:dd:3b:17:f8:cb:4a:73:01:1c:bc:75:49:
72:0e:79:19:d9:c0:9b:e3:fa:35:52:d6:1d:07:83:a2:f8:e6:
e4:1a:3d:84:5b:d8:4b:6e:84:c7:07:8d:a4:dc:23:77:d0:82:
96:ee:48:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:13:19 2025 by rpki-client