Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json)
Hash identifier: Zo6G2c8XaL7N7E5Mfij57yTV9rbgsRmmVsfcUs46cV8=
Subject key identifier: 25:24:3C:15:6E:3B:57:A7:92:50:35:6A:05:91:F4:E9:71:B0:21:3D
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 0196C382BD03E8080D05295048DA5B113436
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 08:00:47 +0000
Manifest this update: Mon 12 May 2025 08:00:47 +0000
Manifest next update: Tue 13 May 2025 08:00:47 +0000
Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=)
2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: Kwzjvj9ifxgwGm8/NSReICwor5JoHQ+L2MldodsPi6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:bd:03:e8:08:0d:05:29:50:48:da:5b:11:34:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: May 12 08:00:47 2025 GMT
Not After : May 13 08:00:47 2025 GMT
Subject: CN=25243c156e3b57a79250356a0591f4e971b0213d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:28:8a:87:a6:3e:e1:0c:1e:ad:79:51:6b:be:
92:ff:0c:ec:95:82:21:b3:37:17:3b:1d:41:58:6b:
62:c0:d2:9e:06:f2:61:80:6c:16:c3:68:b8:44:7f:
3e:0d:31:78:95:18:68:be:3b:29:e1:78:7d:36:5e:
16:e0:0b:f6:76:ed:b5:ef:d2:69:7b:5d:e4:72:e6:
64:89:28:39:55:0b:ee:dd:e8:11:47:e9:6e:0a:52:
74:b7:e2:5c:1e:de:0b:2c:d2:10:27:8a:96:2d:09:
46:0c:a5:19:50:1c:28:3b:e4:45:46:fe:34:f8:fc:
3b:04:73:cd:02:96:69:b7:48:e8:e2:db:22:03:86:
71:d0:2b:8e:a2:46:c2:bf:49:cd:8c:b1:9b:29:6f:
5b:50:3c:d0:7c:f2:cc:5d:1f:e8:c3:5c:5f:23:8c:
fe:41:1d:fd:fc:b8:9d:d3:99:0f:e6:e4:43:31:dd:
05:a6:61:a6:83:ba:bf:1a:03:b7:6d:36:38:e2:93:
a0:83:34:de:70:2c:88:b4:cf:a7:ec:23:d8:cc:ae:
ed:2f:58:85:c2:93:00:e3:77:cd:44:02:dd:98:6b:
19:5c:76:a7:d6:8e:42:5a:4a:e5:62:71:59:2b:24:
32:35:76:1b:6a:13:d9:28:8b:95:fe:fb:f6:de:63:
e6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:24:3C:15:6E:3B:57:A7:92:50:35:6A:05:91:F4:E9:71:B0:21:3D
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:aa:91:f3:39:91:58:f5:2c:24:57:a1:57:a6:45:4e:bd:f3:
ae:01:b2:d8:d1:ae:cb:ed:b4:ed:74:a4:59:b3:79:19:8f:91:
da:91:82:0c:88:69:09:d2:ae:8a:f8:64:79:64:d2:10:e1:96:
de:d4:ab:8e:f8:b3:00:6d:21:3e:a8:df:b9:e9:90:01:1a:bb:
ba:66:02:20:5b:05:d7:c5:52:4b:3c:a9:f0:70:c3:a3:45:0c:
36:88:ea:53:20:b8:03:07:63:c5:a5:ec:d5:13:7c:63:c8:6f:
16:12:e8:6a:69:3b:60:5f:3c:fe:8f:46:81:13:44:66:28:e3:
b7:43:3c:8b:18:6f:dc:c0:c7:d1:fb:dd:b2:c3:bf:c8:4e:41:
45:bf:49:15:f5:05:30:40:2a:de:9a:1a:ef:7f:6a:7d:15:2e:
c1:c1:ce:60:e3:ba:fa:34:0e:5b:1d:f3:29:7b:1a:3e:a6:09:
2d:80:b3:46:cd:70:e0:85:0f:72:fb:29:b5:e8:99:e1:35:e0:
90:63:5d:8b:7f:fc:9f:be:1a:f8:15:a3:56:b1:c1:26:b8:c7:
84:bf:73:1a:71:c9:4a:bb:c8:6d:a9:a0:1e:9c:5e:15:5d:22:
61:56:58:81:21:d9:1d:68:b7:94:a0:8a:a2:e0:ac:38:e5:c7:
ce:6d:a5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:34:25 2025 by rpki-client