Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
File: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft (raw, json)
Hash identifier: trEhOn904w1XfsicqBeRoD638LBDgvLoUXIcGYu3jLQ=
Subject key identifier: 52:99:97:71:98:55:7F:B6:7F:0C:DA:FF:6D:61:96:AB:A9:75:85:22
Authority key identifier: 3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
Certificate issuer: /CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Certificate serial: 0198933654CA5575191B9D1A3DD54FE75C7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
Manifest number: 0DA1
Signing time: Sun 10 Aug 2025 09:01:07 +0000
Manifest this update: Sun 10 Aug 2025 09:01:07 +0000
Manifest next update: Mon 11 Aug 2025 09:01:07 +0000
Files and hashes: 1: 9-fbWWjNC4mOvVefigl9UV2UFJs.roa (hash: tWgz0w4Sqnk4S40gqRVMtTMDJNe1eyYOZFDB5oZ2xOA=)
2: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl (hash: DVCTcLZr1zvWXLs1pVvkQF1oiHW9Z0l59glUJ3+jkEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 09:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:54:ca:55:75:19:1b:9d:1a:3d:d5:4f:e7:5c:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Validity
Not Before: Aug 10 09:01:07 2025 GMT
Not After : Aug 11 09:01:07 2025 GMT
Subject: CN=5299977198557fb67f0cdaff6d6196aba9758522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:57:c2:45:73:69:4c:0c:29:44:b5:84:ac:a7:
12:7e:ba:37:41:1b:e6:5d:bc:41:d4:87:2e:41:f6:
54:9a:6a:02:7f:9b:4b:4d:c5:d5:1f:f7:d4:9d:7b:
d3:f1:13:7c:d6:b2:7f:5c:e2:71:67:47:4f:83:8f:
3a:dc:7a:87:27:e3:50:5b:47:86:a0:44:6e:a5:35:
56:ed:4d:ea:a4:b5:e2:7f:1a:4a:77:66:3e:78:2c:
fa:05:ae:99:1f:42:f4:a6:f9:29:8f:ad:ac:46:c9:
87:30:64:b6:64:87:2e:91:16:74:d2:5c:67:71:a1:
da:d8:67:17:0b:90:8a:ef:47:65:ee:cb:10:e2:35:
9f:63:bb:7a:57:00:32:36:fe:f8:78:81:bb:17:14:
73:4c:39:55:78:05:fb:f1:64:02:b4:12:f7:62:b5:
c9:8a:f3:7c:d1:98:41:c0:5d:f8:d1:7c:72:b2:c5:
35:2f:27:00:ab:13:c0:a2:99:32:09:b8:86:56:ad:
5f:1a:20:47:f3:9a:d5:09:86:8a:4a:b2:5c:69:f2:
ab:bf:b0:88:45:d0:81:ce:44:d7:38:cd:35:50:80:
f1:60:19:62:3b:f3:e4:6e:37:33:db:6d:25:df:59:
1d:4b:31:6b:59:91:da:f1:30:e0:83:2c:2e:15:f9:
0e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:99:97:71:98:55:7F:B6:7F:0C:DA:FF:6D:61:96:AB:A9:75:85:22
X509v3 Authority Key Identifier:
keyid:3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:45:22:df:5c:8f:27:de:fb:c4:75:d9:a6:02:fc:c8:50:48:
5a:4e:f5:20:5b:1b:2e:e2:db:b5:8b:dc:05:68:79:89:26:7f:
15:8c:6f:d0:d0:41:0e:ab:14:7b:fe:ee:5a:9e:a7:5d:51:dc:
a0:6a:48:d8:d1:2b:97:76:00:e6:c6:83:e9:19:91:3b:7c:ea:
19:0a:e9:fc:0d:35:07:41:61:a6:3c:ca:18:b3:7a:c2:96:4a:
89:77:8d:59:61:68:ca:cb:45:51:9c:71:52:bc:19:c4:f6:de:
1c:06:bc:d3:d8:43:38:a3:a4:d2:98:d9:5a:98:f4:92:b3:e6:
ea:1e:24:41:46:48:d7:98:7b:b8:63:0e:ca:e8:db:38:ed:ad:
dd:dc:74:3d:87:c5:7d:f1:8b:84:7c:9f:98:01:b5:3c:32:09:
40:5c:09:c9:68:28:2f:c2:e9:cd:23:95:53:59:f3:63:59:55:
8c:75:6e:84:31:2d:37:a7:37:6a:5e:ac:39:b1:6c:91:91:0d:
af:4b:8e:df:ab:d5:4e:33:84:76:35:f0:e7:b6:ed:b4:4a:6a:
35:c1:65:1e:32:fa:54:b4:a9:8d:f3:5f:9e:50:ad:6d:70:89:
70:09:bc:51:41:49:33:4e:fe:84:c0:22:c6:43:9a:41:07:59:
1d:64:58:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:11:59 2025 by rpki-client