Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: 8L0SaL39VExzQqLY2gn4NNJ9qFXqWP+ELS2tsh9+VFU=
Subject key identifier: B2:6D:EA:EE:7A:75:42:B0:8E:77:04:C9:4F:72:DB:73:5A:91:90:BC
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 0196CE06265B62D462650E2FC9CC32BED826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 0428
Signing time: Wed 14 May 2025 09:00:31 +0000
Manifest this update: Wed 14 May 2025 09:00:31 +0000
Manifest next update: Thu 15 May 2025 09:00:31 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: NjIG9lZ0aIQdUn6ILiJfBzfM4bwTq3FxzEFENB0Fmg4=)
2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:06:26:5b:62:d4:62:65:0e:2f:c9:cc:32:be:d8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: May 14 09:00:31 2025 GMT
Not After : May 15 09:00:31 2025 GMT
Subject: CN=b26deaee7a7542b08e7704c94f72db735a9190bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e4:63:fd:40:46:bd:a4:c6:0f:96:0b:80:dd:
01:05:f9:c5:f8:7b:a7:c7:67:bc:d0:d0:48:26:7f:
f2:5f:bc:c5:6c:4d:85:31:bd:bf:3a:af:46:e6:df:
a3:59:3b:52:9c:74:1e:54:e2:74:cc:3d:91:b0:79:
48:c7:af:00:42:1b:28:da:ad:06:a0:81:10:7a:dd:
bf:20:03:ff:79:c5:3e:45:7f:62:7a:91:5c:02:d9:
a5:69:40:bc:7c:90:78:1a:e9:f8:27:de:05:0d:29:
fa:73:b4:74:34:9f:67:d2:56:2b:fc:44:2c:d7:4e:
5c:e4:7e:a2:4a:5d:f1:89:78:e4:dc:6b:7f:0f:19:
42:a7:b7:b3:8a:6f:c6:41:c1:d8:c7:94:8a:19:6c:
86:5a:50:d3:e4:e1:2d:e2:cf:a7:41:3e:16:cc:69:
c4:5b:8b:97:cf:7b:d0:7c:51:88:fd:5b:b8:1b:42:
e9:fc:b7:3c:b3:68:d6:85:03:8c:95:21:10:af:0a:
cd:90:4f:86:9d:69:76:0b:3c:0f:21:5b:6c:9d:d6:
1b:e8:fd:5e:8e:7c:0e:87:a3:e9:82:21:9e:cc:1f:
e3:f0:26:a6:ca:af:4b:a2:19:61:4c:0d:d1:cd:be:
9f:e3:ee:62:d0:f8:31:9c:d7:0a:f9:dc:bd:f6:40:
11:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6D:EA:EE:7A:75:42:B0:8E:77:04:C9:4F:72:DB:73:5A:91:90:BC
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:f1:91:ac:6d:e5:58:77:c4:75:6f:a4:6c:b2:f1:6f:7e:67:
90:c3:14:aa:93:6a:1c:ae:e5:8f:e6:8a:0d:b7:d7:a4:4d:4c:
d9:fa:a8:bf:c2:74:5e:53:5f:7a:84:5a:09:1f:42:31:d6:86:
e6:75:5f:32:fc:27:31:4a:90:11:a3:20:62:e3:5b:b0:09:02:
17:c9:8c:0a:a4:94:13:22:54:54:49:0c:08:d6:80:72:b2:21:
e4:ce:14:91:5e:46:ed:65:83:4e:d0:21:fd:39:cd:cd:49:af:
2f:23:b5:49:60:e0:39:81:a5:84:08:45:d3:bd:74:c6:65:6f:
b8:26:bb:7f:63:ae:d7:6a:0d:3a:82:6b:72:bf:a2:f0:a9:2f:
40:18:f6:3f:cb:c8:10:f9:fe:f6:8b:d7:5f:5a:76:b3:40:65:
44:22:48:5d:b1:c7:51:cf:e1:cb:f1:f1:97:a8:9c:f6:bf:00:
94:44:a9:f5:89:3f:75:ad:78:33:59:92:00:d2:0e:04:15:9d:
c3:98:63:72:35:0f:a7:6f:bc:f8:6a:2f:da:07:cd:01:ec:8c:
bf:bc:e4:30:be:d3:55:36:88:b7:be:cf:86:57:56:97:a4:e5:
2b:22:87:34:23:15:f6:a7:a1:6f:64:70:7a:ac:83:0a:e8:9d:
c3:0e:9c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 12:30:37 2025 by rpki-client