Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
File: PnpcKTN0JfqBOVVRcmyMK35MUIc.mft (raw, json)
Hash identifier: AUJv215pvTCqcFlH4FxL3tKu/ZaYZTXUeMgZH2FN+QE=
Subject key identifier: 20:3B:E0:41:1E:04:0C:FE:A6:6F:4B:39:B1:2F:CA:B9:F2:82:E9:B6
Authority key identifier: 3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
Certificate issuer: /CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Certificate serial: 0196BC0051F2D26984D16B9A53B8ECC652FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
Manifest number: 027B
Signing time: Sat 10 May 2025 21:00:59 +0000
Manifest this update: Sat 10 May 2025 21:00:59 +0000
Manifest next update: Sun 11 May 2025 21:00:59 +0000
Files and hashes: 1: PnpcKTN0JfqBOVVRcmyMK35MUIc.crl (hash: mznQmM3PuXSCXgeUIFajgxxkreHX1DwKUG/i+/h+834=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:00:51:f2:d2:69:84:d1:6b:9a:53:b8:ec:c6:52:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Validity
Not Before: May 10 21:00:59 2025 GMT
Not After : May 11 21:00:59 2025 GMT
Subject: CN=203be0411e040cfea66f4b39b12fcab9f282e9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e9:f6:b1:6a:d7:38:d4:c8:ab:a5:9a:cd:5d:
d3:c2:ab:ef:b1:c5:bb:16:82:26:d1:a0:8f:8d:8d:
18:35:ec:a8:fb:24:5a:81:33:51:77:a9:79:47:b3:
be:59:53:32:fb:27:fa:e8:16:1d:54:d0:d4:3e:60:
49:a6:80:94:5d:ab:c5:6a:6b:ca:fc:ca:b1:d2:a3:
86:b1:8c:08:be:f7:d9:a0:87:c9:df:c5:78:5c:7a:
8c:9d:bb:a5:d4:d8:98:19:aa:35:a0:91:6b:be:27:
98:c2:23:12:b3:c5:0c:93:e5:99:d9:f5:c8:e1:51:
42:c4:ce:d3:57:30:48:7e:d9:34:dc:a0:38:54:2e:
ca:40:ae:bd:51:8b:bb:6b:34:9a:8b:a8:51:cd:a9:
c9:dc:3b:97:c1:7f:09:c7:52:4a:64:c6:eb:f1:7a:
1f:a3:e0:d3:e0:e9:ca:75:fe:ff:50:56:cc:d9:7d:
bc:10:e5:28:e8:bd:b8:73:f2:51:3a:bc:4d:f8:23:
fb:8a:fc:83:e0:dd:d7:a9:f7:0e:f0:10:f2:40:f9:
ac:77:96:24:3f:0f:9a:f9:77:d6:f0:ba:d6:f0:96:
6f:5c:06:db:92:73:77:20:f6:11:3d:5f:c9:85:e2:
2d:3d:ff:ed:e8:c4:17:1a:63:71:f7:d4:42:2e:a3:
ec:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3B:E0:41:1E:04:0C:FE:A6:6F:4B:39:B1:2F:CA:B9:F2:82:E9:B6
X509v3 Authority Key Identifier:
keyid:3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:64:38:eb:49:bc:98:89:d7:a6:70:c0:a2:90:10:61:45:4e:
bb:dd:2f:34:a4:62:72:62:23:7f:bc:a7:4c:01:1a:f9:ef:6c:
38:36:b4:fe:e0:98:0b:c6:d6:9a:d7:3e:da:65:71:ba:78:92:
e1:aa:93:5a:9c:f6:96:68:ae:10:f2:62:b1:72:fd:bf:da:94:
60:ec:0e:97:99:ee:b8:2f:15:13:96:96:bd:5f:f1:32:82:c7:
14:75:6a:12:78:b8:bc:83:d4:1a:44:46:18:a0:01:dc:79:32:
65:fe:b1:27:0c:b5:af:eb:93:53:15:c1:03:94:41:ac:af:32:
b1:f6:9b:8d:f5:7f:31:9e:7f:a3:04:5a:55:57:6a:49:bc:7a:
ce:fb:da:eb:e9:51:d8:0b:68:d8:46:60:2b:11:20:9e:d6:07:
85:fa:5d:10:31:dd:54:fc:d4:35:ab:7a:84:de:69:59:ee:da:
1b:93:b7:59:df:89:a1:cb:08:8a:d8:0b:04:bf:86:b7:e5:7a:
30:30:38:05:6d:87:db:90:d4:06:07:01:fa:16:59:35:2b:aa:
7b:8f:17:d0:31:00:55:a0:1a:e7:16:4d:b8:8f:52:df:58:d1:
57:9e:d5:62:e1:db:01:85:68:6c:fa:a8:41:3d:4b:7a:5d:cb:
13:7c:19:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:10:52 2025 by rpki-client