Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: LBxvB4+BlUi0IjdaE6cKiLRn+IMjKzvqXHRqdQwmbHU=
Subject key identifier: 6A:EC:3C:61:C6:14:56:52:98:18:A9:6A:20:E6:7C:FA:28:F9:38:DE
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 019771513E9334AD5237283FB19039123781
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 1592
Signing time: Sun 15 Jun 2025 02:00:39 +0000
Manifest this update: Sun 15 Jun 2025 02:00:39 +0000
Manifest next update: Mon 16 Jun 2025 02:00:39 +0000
Files and hashes: 1: BFaJClF3p4qT7dCc22lWmwjl7l0.roa (hash: 8kW6E4fmgwFFVui51mNwFwgDzJW114zoN23nienu6x8=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: 47zb30k/dwmvOzRPzBTYj7o4GbAMU7TSFb48jP6RwsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:3e:93:34:ad:52:37:28:3f:b1:90:39:12:37:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Jun 15 02:00:39 2025 GMT
Not After : Jun 16 02:00:39 2025 GMT
Subject: CN=6aec3c61c61456529818a96a20e67cfa28f938de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:95:79:38:6c:e8:10:e9:e3:fe:52:e0:49:0b:
55:17:70:67:e4:6a:07:0b:d6:26:2b:38:5f:c0:62:
17:a3:c8:2f:13:1a:61:2e:41:65:da:7e:0f:cd:1a:
09:fc:df:3a:ce:79:0d:6a:30:c2:11:e4:dc:27:74:
f5:a5:18:40:47:6b:b3:03:bc:c9:fe:c2:de:8a:56:
ae:be:b0:55:00:6b:a5:ed:64:e8:4b:58:70:f0:55:
a6:1e:93:0f:10:19:ca:96:8a:c1:e8:dd:ff:ad:54:
e6:ea:59:9d:64:21:0c:34:fd:73:f4:77:df:98:94:
37:98:ab:43:6c:6c:fb:41:4e:90:f3:05:18:20:64:
46:e8:85:01:2a:a4:47:f2:51:37:e0:e8:c3:be:20:
49:41:5a:54:fb:da:bf:d7:6b:83:28:95:1c:58:da:
ad:e7:c4:a7:05:a3:4e:ab:76:7f:bf:0a:58:2f:6e:
d8:19:ed:1a:f8:bc:fa:7a:2c:4a:af:ed:76:dc:56:
84:41:6b:38:e9:3e:be:31:b4:ca:d9:f1:cd:93:f8:
66:6b:93:80:76:b7:7f:38:80:c7:89:7a:ad:b2:5f:
29:d6:e4:e4:a2:af:8f:43:81:a0:70:96:b5:40:01:
ee:39:60:ca:9c:44:0f:ed:55:cf:98:82:29:b2:28:
f2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EC:3C:61:C6:14:56:52:98:18:A9:6A:20:E6:7C:FA:28:F9:38:DE
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:08:a0:9f:5b:93:14:6c:a1:bc:7b:55:b7:36:b9:01:9f:d0:
53:bf:95:af:ee:62:16:2c:c4:6d:48:46:ca:40:3f:7d:ce:66:
1b:3c:77:e7:1c:5c:48:45:1f:b3:a5:5d:7f:6f:94:7b:3f:0b:
67:13:41:87:74:d2:69:c3:fd:63:06:34:9b:5f:01:95:03:fa:
9f:8b:2a:31:86:15:be:99:eb:33:9f:6c:5a:a4:85:99:08:16:
06:bd:f6:d1:cb:ff:78:62:54:d8:08:0b:82:69:47:82:e1:2d:
0b:da:0b:c4:3f:d1:be:52:7b:a3:a1:66:73:81:7a:46:c2:d3:
e1:ab:ab:75:eb:11:55:27:07:22:cb:6a:51:f9:a0:e6:3e:3e:
b1:b3:cb:82:10:ad:49:7b:2d:ea:b6:49:de:9f:9e:dd:9b:d5:
b0:af:7f:eb:1b:53:5f:ff:20:ee:91:4b:83:94:35:1f:7e:d5:
30:6a:f3:4e:fe:c0:fd:67:a2:81:1e:ac:16:ce:d5:73:ec:e8:
7f:eb:a6:ca:25:f1:2c:7a:69:ac:dd:2d:3d:57:6b:87:90:09:
46:bc:18:f8:96:65:a9:ed:38:ca:03:06:3e:80:ed:e2:93:fb:
9d:de:5f:f3:7e:cc:43:16:9d:2d:6a:4e:08:05:c5:02:6c:c4:
e3:92:d7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:29:46 2025 by rpki-client