Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: mLSNO6tsiXtomBlItS+2Q4/6Pgf1UnwTWe9gT/d6bUU=
Subject key identifier: FB:72:E4:16:26:27:1D:12:48:49:0F:F8:4E:D8:21:94:1E:F4:8F:E6
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 0197722D07C48FE70A180095A5BCBC249518
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 151F
Signing time: Sun 15 Jun 2025 06:00:43 +0000
Manifest this update: Sun 15 Jun 2025 06:00:43 +0000
Manifest next update: Mon 16 Jun 2025 06:00:43 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: 4/kzU6ga6QwYi3OrsLgBx1i9d4zqYmF4t4AqLArNUBI=)
2: ZFcvFlhDWryyoXWXMpIDlrIOANM.roa (hash: vf4LDljSHDeogKMO6SAS7Y9xTDtYGGINc31+p97CZuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2d:07:c4:8f:e7:0a:18:00:95:a5:bc:bc:24:95:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Jun 15 06:00:43 2025 GMT
Not After : Jun 16 06:00:43 2025 GMT
Subject: CN=fb72e41626271d1248490ff84ed821941ef48fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:a9:e6:af:08:96:0b:e9:3d:43:c8:5e:3d:
4d:6e:77:bd:42:2e:71:63:8d:6a:fa:b5:3f:ef:bd:
61:a8:1b:ec:2d:99:a4:8b:fb:91:3d:e6:92:fc:f1:
41:c6:0c:62:59:b0:21:f5:91:43:95:c9:4f:b7:1f:
ab:0b:df:99:73:b3:3b:eb:e6:9f:42:a2:f2:d4:ed:
09:c9:7c:1a:22:37:c3:91:8e:f7:c9:b1:58:89:1d:
66:3f:02:ef:33:f8:6a:2f:1a:73:8b:65:37:b7:ce:
68:11:b4:02:7d:93:ff:0e:50:36:75:d3:15:64:9b:
7e:0f:fa:56:52:46:94:71:1f:1a:5e:bc:84:52:16:
7b:37:fa:24:f0:5d:30:e6:0a:18:e4:d6:58:5a:d4:
94:2d:96:91:13:ef:56:90:af:02:ea:2a:e5:38:d9:
9d:ac:b9:53:59:2c:15:57:a0:ff:a0:a5:aa:a5:8d:
ec:79:ed:68:6d:6f:ee:65:e0:95:ce:09:ec:c4:39:
70:cc:4f:66:32:0e:eb:82:6a:13:d7:50:e1:3d:7b:
dd:d1:00:63:24:ff:bf:6c:3e:1b:2f:61:c3:9f:34:
23:84:da:ad:20:b4:ce:0b:0d:41:04:2c:e8:10:6c:
87:5e:91:d5:5f:cb:28:c2:4c:78:3f:54:b4:66:49:
b7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:72:E4:16:26:27:1D:12:48:49:0F:F8:4E:D8:21:94:1E:F4:8F:E6
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:97:f9:10:cf:e3:85:72:ca:29:c1:ed:f3:6d:81:86:ae:0f:
c3:d2:60:77:7b:33:72:73:62:9c:14:48:c5:1e:26:4a:34:d3:
48:f9:3c:37:e1:8d:a8:f0:17:2f:d5:b9:28:6d:5d:7f:8f:ac:
90:ec:4f:9b:5c:af:33:de:9d:ab:cb:10:c6:65:5a:53:c9:20:
a1:c8:61:c3:aa:dc:69:41:9c:7f:82:7a:db:cc:b3:35:16:e7:
bc:4a:d4:14:c8:34:13:83:90:fc:21:57:e0:98:06:4c:e5:ec:
c1:5b:b2:70:d6:90:37:a5:30:8b:02:40:2c:fe:0b:b3:17:23:
e8:bd:9e:a6:33:2f:11:1d:0e:3c:79:a3:79:b7:27:a6:97:17:
13:1e:85:f0:b9:39:4c:9a:25:d9:ed:eb:32:cd:f1:53:c1:04:
32:5d:23:ce:74:4b:d1:e9:30:46:10:01:8d:a8:87:26:5b:45:
d6:c5:4f:12:66:10:28:9e:dd:6f:92:73:3e:12:fc:24:a7:fb:
b3:64:5d:e8:7e:60:b6:05:e1:37:b9:64:56:6d:40:ba:12:47:
c1:a9:f6:d2:3a:44:9b:7d:76:6a:9f:23:09:20:2f:40:92:e8:
e1:57:62:1b:f3:89:53:3a:95:01:6b:94:51:cd:8d:df:6a:da:
e0:2f:c7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:42:54 2025 by rpki-client