Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: QXLECsaOvwj9UsiLma/jab5bG7ZR6AbROhoe9KyHAWA=
Subject key identifier: 20:F4:FD:56:4F:A2:15:10:AD:F8:CF:28:7D:06:AF:D1:A6:68:36:B4
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 01976D3E16DEDE5BF35402EDDBCFF10BB2D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 0F93
Signing time: Sat 14 Jun 2025 07:01:14 +0000
Manifest this update: Sat 14 Jun 2025 07:01:14 +0000
Manifest next update: Sun 15 Jun 2025 07:01:14 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: rhMVQ63tQvUes32nonTRxwdO+Kz9KmX3wVYCSfdrnkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:16:de:de:5b:f3:54:02:ed:db:cf:f1:0b:b2:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Jun 14 07:01:14 2025 GMT
Not After : Jun 15 07:01:14 2025 GMT
Subject: CN=20f4fd564fa21510adf8cf287d06afd1a66836b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:26:a2:a2:55:3f:72:89:67:96:db:9f:99:
4d:10:bf:2d:01:11:c6:80:ba:4d:a2:ec:b9:8e:dc:
9f:68:e8:31:15:bc:0f:13:46:64:be:7b:c5:47:da:
c2:83:89:99:8a:b2:3c:a9:f2:38:e8:be:c6:88:8c:
62:39:b1:31:5f:8c:18:b7:60:0d:31:b5:40:60:9b:
e4:9d:af:71:6d:1b:c3:c7:f0:85:c7:b2:9a:db:e1:
71:04:f4:8d:23:34:38:d7:6a:c7:9b:a1:66:11:b3:
2b:e3:d9:57:38:67:ae:51:45:a9:53:0e:dc:8b:5a:
fa:b4:4e:13:bb:c1:41:0d:5b:68:80:33:c9:d6:af:
6d:eb:7f:95:2b:4a:d1:e6:e1:39:c1:16:10:01:b7:
ab:2c:8d:74:ba:47:67:0e:71:d0:7b:6d:52:31:af:
e5:6a:ec:b9:f2:d7:20:bd:0b:14:d1:48:93:0c:2e:
9e:cf:a7:10:ce:d3:8e:68:9c:cf:4b:fe:9f:75:86:
8f:db:0a:7a:6f:b0:6d:55:f0:ec:6a:8c:50:8a:4b:
ed:90:c1:27:9d:65:9f:85:b1:80:b5:10:1a:cc:19:
97:40:10:62:41:6c:9a:27:07:fb:15:88:15:c9:02:
e8:f4:42:26:56:d7:7a:5a:5c:85:a7:1e:4b:df:5c:
48:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F4:FD:56:4F:A2:15:10:AD:F8:CF:28:7D:06:AF:D1:A6:68:36:B4
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ba:6c:e4:9c:c6:54:73:c7:05:57:2f:bc:49:3c:1f:65:7f:
e0:4e:7f:93:b2:d3:1b:28:ce:7a:8b:5b:e7:19:da:13:0b:1e:
9a:21:3e:93:72:0a:07:a4:0a:a5:c8:ae:d7:51:4e:62:63:d1:
40:2d:41:28:88:41:90:2b:12:f4:8f:44:bc:9c:e4:16:c5:34:
73:5e:fd:50:43:1f:37:2e:8b:ce:f0:c9:12:f4:1c:e6:50:49:
9b:ef:72:92:ea:2e:47:e0:27:89:9d:c4:6f:4c:7f:d9:ce:03:
92:c9:f7:97:07:30:93:3d:ba:5b:80:06:a1:fe:a3:e9:cb:2d:
b4:cd:6c:b2:6b:34:9f:93:61:ea:bf:73:71:ec:ac:24:5e:dc:
9f:31:45:e5:59:fc:e3:d3:23:71:2f:b6:6a:69:20:ac:32:9a:
58:a2:99:e1:55:2e:03:d2:da:de:62:fa:7d:9b:f6:0d:0e:6c:
1a:a1:c9:f0:71:c7:e5:4e:f0:18:f3:60:6b:d0:bc:54:37:02:
88:96:fc:02:85:d4:1c:af:c1:df:8a:7a:ec:75:8c:ab:29:d6:
0d:d5:ba:85:de:df:7b:55:92:c1:ba:4e:6e:90:49:6a:f7:92:
7a:4d:43:c5:f0:99:8d:f5:5b:cb:73:b9:99:43:46:f7:12:88:
e1:b8:94:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:31:12 2025 by rpki-client