Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: UMjHtxVxOYnxBbCAWnGMVRJFGuYBYwSNTtmp9nPR7qg=
Subject key identifier: 4A:16:D6:E2:E0:16:63:94:5B:FA:0A:B4:0A:14:D0:96:BB:07:C7:C5
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 019771BF3C4D15F3AD8F05F4698BC673D066
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 12B4
Signing time: Sun 15 Jun 2025 04:00:47 +0000
Manifest this update: Sun 15 Jun 2025 04:00:47 +0000
Manifest next update: Mon 16 Jun 2025 04:00:47 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: +BteSnvlUTnMiGKmTLlG50iHD2OtMb5iFzKMAPxzX9Y=)
2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:3c:4d:15:f3:ad:8f:05:f4:69:8b:c6:73:d0:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Jun 15 04:00:47 2025 GMT
Not After : Jun 16 04:00:47 2025 GMT
Subject: CN=4a16d6e2e01663945bfa0ab40a14d096bb07c7c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0e:e2:0b:d8:1c:d4:de:00:0a:91:d9:a7:92:
bd:6a:0a:f5:e2:a6:9f:a0:26:72:32:04:fc:de:b5:
cc:3a:68:c1:91:f5:db:59:29:58:af:93:c4:c2:da:
70:e4:de:8c:40:7a:cf:cb:e5:d9:3d:17:ba:48:90:
7b:a1:76:91:e1:83:89:97:74:05:b7:d7:7f:ca:30:
c5:a0:e1:d0:40:0a:da:cf:16:4b:71:c6:45:96:b9:
78:68:2f:22:12:ee:cf:af:6c:39:3e:47:c0:95:8e:
5f:e7:2b:1c:62:b7:55:a2:1f:f8:d0:9f:e1:36:1a:
28:97:b3:9e:c6:eb:6a:c7:53:4e:57:e4:06:6c:1a:
b6:57:47:db:8b:c3:0a:ef:2d:17:cf:aa:51:11:9e:
5b:72:08:7f:2c:94:4f:f8:16:70:8e:ea:4e:83:9d:
12:e1:a7:06:72:52:5b:45:1c:74:93:cc:8a:14:6a:
83:1e:0a:73:3c:a7:c6:2f:dc:b4:47:5a:c7:0f:85:
d1:20:b2:8f:14:34:fa:58:b8:2e:cd:62:ac:80:44:
e9:52:4e:a5:8a:70:d3:8f:b5:e4:e2:1c:3d:5a:6d:
bc:a3:99:b0:7c:b1:1c:37:e9:43:fb:6c:2e:c0:f5:
64:0e:f5:54:92:26:6e:fe:ef:4e:d1:06:00:fe:9e:
e8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:16:D6:E2:E0:16:63:94:5B:FA:0A:B4:0A:14:D0:96:BB:07:C7:C5
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:8b:7c:96:5d:1e:9f:a9:43:dd:ad:ef:9c:d9:35:3f:07:c7:
62:47:17:db:f3:6e:55:d4:7d:14:56:0a:c0:1b:c5:c8:8d:b0:
f2:94:fc:5d:38:3c:78:c6:7c:e8:91:47:8a:ce:70:b9:2d:b4:
09:d4:48:2e:15:9b:26:c4:d2:aa:af:f1:7b:99:7d:8e:8e:c0:
3f:8a:47:8c:e6:c9:a2:37:da:b1:46:34:3b:ee:fe:23:54:e9:
1f:8f:b3:72:fc:ea:ed:2e:31:49:d0:e0:11:4c:12:d0:81:df:
4f:eb:9b:ed:b2:5f:11:70:cd:ec:b0:6d:39:5f:91:95:9a:8e:
49:8d:03:c7:f2:1b:1e:e4:ad:5e:7f:87:ae:72:9e:12:21:bc:
b0:02:69:75:28:15:f3:8e:07:73:53:49:da:21:e7:87:46:ec:
56:1c:8e:57:b1:c9:e5:f7:d4:40:83:2b:cc:74:77:e4:15:35:
a8:61:ea:9f:f6:c6:5c:6f:08:c4:38:79:cf:12:cb:92:9e:4c:
21:ed:d5:f6:7e:cd:b4:54:ca:50:57:4c:5e:93:e1:ec:9d:6c:
a1:c8:af:90:24:d7:de:36:ac:14:2e:99:cf:0f:2b:ea:79:67:
8b:c0:20:8d:ee:26:c2:3b:ce:26:3c:3d:25:dc:05:4d:d2:d5:
45:fd:ba:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:35:47 2025 by rpki-client