Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: bD8/NqydIkX6nNcSQAulmcVXOK6CEIIgfUtlzBRYhkc=
Subject key identifier: BD:EA:D8:BE:74:EA:0C:0D:87:BC:A2:A3:B6:1B:B5:41:C4:CA:91:7E
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 01976CCFF18ED00DD8F9EB4D7FDD23AE3E79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 05:00:56 +0000
Manifest this update: Sat 14 Jun 2025 05:00:56 +0000
Manifest next update: Sun 15 Jun 2025 05:00:56 +0000
Files and hashes: 1: ET0yOb6N2KPn9sEOeciwveLzfFQ.roa (hash: 5UaUVXzPjnKQ9N0meCwxNszuKgkyrbDITbh3/+eJ6rg=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: H8iHS5VcbAuBpAFk8sIy9biRKXEGO7eJ6Tm/D/LuICI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:f1:8e:d0:0d:d8:f9:eb:4d:7f:dd:23:ae:3e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Jun 14 05:00:56 2025 GMT
Not After : Jun 15 05:00:56 2025 GMT
Subject: CN=bdead8be74ea0c0d87bca2a3b61bb541c4ca917e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3d:24:0c:6d:cf:9a:05:23:f5:d5:33:6e:f8:
a4:15:58:d2:fa:2d:42:38:dd:6b:15:27:d0:80:19:
4d:40:c3:49:65:a4:53:22:1d:d9:7c:77:15:ef:a1:
81:3b:50:f9:d2:da:b6:f8:40:51:d1:59:c2:4f:74:
3f:14:98:63:97:7e:99:c2:e6:1f:8d:ec:6b:fe:46:
cd:d7:b0:84:4b:f8:ed:82:86:6e:51:b5:34:26:87:
d8:40:25:35:46:d6:eb:95:30:34:44:84:44:f1:0e:
13:0d:2f:3d:6e:36:fd:88:94:07:37:e2:90:1e:25:
ea:00:8a:40:0a:7d:3c:57:e8:bf:b4:1f:8b:4f:85:
54:64:f5:62:b3:c8:36:f3:19:bc:65:f4:c6:4e:24:
6c:bf:88:5f:71:37:c8:0c:b7:71:74:27:74:18:d0:
62:6e:f6:af:de:3b:63:4b:8f:62:59:dc:03:01:ef:
7b:9a:d2:7d:62:d4:75:e7:65:69:81:04:50:11:47:
f1:79:2e:d1:64:f1:19:c7:07:8f:14:06:4f:d3:e0:
d7:81:57:4e:28:98:9e:4c:95:ae:98:49:0d:0a:fc:
4d:23:aa:2c:2a:fe:7a:8b:ee:7b:13:72:ce:71:89:
07:6e:b4:f2:cb:38:80:1c:d4:0f:12:0e:9f:56:04:
b1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:EA:D8:BE:74:EA:0C:0D:87:BC:A2:A3:B6:1B:B5:41:C4:CA:91:7E
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c2:e1:58:22:ae:9c:f4:37:e0:c5:98:68:c7:16:05:1e:be:
17:dc:56:c2:d8:2a:aa:69:4d:8f:9b:ce:14:88:4c:cc:a3:d2:
7d:3c:17:a7:b3:c7:5a:a3:2a:7d:5e:a9:71:8c:45:85:4c:b3:
2c:f4:66:ac:64:e1:e5:59:73:80:81:f5:62:4e:74:6c:49:8a:
2b:c1:77:69:cb:53:71:ff:7c:81:a3:9a:9a:ab:7d:7c:e9:74:
d7:3b:75:a3:a9:e9:22:63:e7:4d:ba:63:20:9e:39:97:25:ed:
62:e4:f8:8a:a6:e8:f2:f8:fb:98:a5:47:5a:ea:4d:d8:46:8c:
ad:fc:6b:4e:36:f8:f2:d3:2a:61:4f:e9:59:f8:a9:95:69:f6:
4f:9f:6e:ee:d5:17:a4:5f:b5:ba:44:72:f1:4f:7c:45:28:4f:
c8:41:af:92:1d:e9:54:75:7b:fc:d4:ec:13:87:b7:19:f0:0a:
aa:30:db:ae:77:8e:66:50:3b:32:a6:e1:0b:59:6a:0a:aa:23:
b9:6b:19:ee:cd:59:99:74:2a:24:4a:bb:3a:f9:af:e1:0e:f0:
23:f6:8a:af:a3:b7:ea:f3:9e:35:51:6d:82:67:45:f3:24:e7:
03:72:ac:03:3f:83:54:fe:e7:ff:36:10:b5:ad:bd:a2:12:af:
99:63:7c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:57:10 2025 by rpki-client