Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
File: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft (raw, json)
Hash identifier: yCoT4l0WKudMIe1f51vjnhylCIxLIQreSr+DM2VN3vw=
Subject key identifier: 44:5D:28:1C:41:10:25:24:0C:BD:D4:EC:AD:71:5D:31:E9:A4:BE:89
Authority key identifier: 3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
Certificate issuer: /CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Certificate serial: 01976DAB852C6318E9645FA2A2C3D2131BCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
Manifest number: 0D09
Signing time: Sat 14 Jun 2025 09:00:46 +0000
Manifest this update: Sat 14 Jun 2025 09:00:46 +0000
Manifest next update: Sun 15 Jun 2025 09:00:46 +0000
Files and hashes: 1: 9-fbWWjNC4mOvVefigl9UV2UFJs.roa (hash: tWgz0w4Sqnk4S40gqRVMtTMDJNe1eyYOZFDB5oZ2xOA=)
2: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl (hash: mUzNLicoFVdNCda83mkl9XRKkVXlaa5uhT1aulufKKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:85:2c:63:18:e9:64:5f:a2:a2:c3:d2:13:1b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Validity
Not Before: Jun 14 09:00:46 2025 GMT
Not After : Jun 15 09:00:46 2025 GMT
Subject: CN=445d281c411025240cbdd4ecad715d31e9a4be89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:10:30:f9:bb:17:56:61:55:b1:60:9c:79:18:
05:83:e0:4f:51:aa:07:c2:54:29:1a:82:5e:96:33:
88:30:7f:63:00:a1:e7:6c:b3:d8:34:ef:7e:f9:f3:
a9:a2:aa:f1:9f:98:97:e0:1e:9f:31:e0:98:5b:c9:
45:62:64:82:19:68:22:ea:d5:c9:6a:ca:38:3e:d3:
2f:8c:58:c1:47:69:26:12:c0:5e:4d:ff:da:85:25:
ba:24:c4:8a:3b:1e:39:32:5d:eb:63:09:95:35:ed:
ed:8c:a4:da:23:a9:13:bf:f6:65:68:5b:d9:f0:26:
4e:fb:b2:92:31:bd:85:18:45:d1:ab:91:ae:0b:56:
64:8e:a9:50:50:79:8f:73:62:1e:b2:fd:ac:06:f5:
04:a2:f6:3f:2a:0c:05:cd:d1:ed:7a:6e:28:d4:90:
a0:56:f6:56:e8:80:3b:73:7d:82:f9:34:d3:24:54:
7f:c2:ca:ac:d7:10:4c:29:57:cf:9d:3d:b2:2a:04:
1e:fb:d4:8d:44:90:14:40:fa:7b:35:c5:80:37:b8:
5c:db:85:7e:c0:42:84:6e:67:29:4a:35:0f:91:98:
34:9b:fa:f9:66:13:f1:19:24:60:72:02:ee:73:9c:
92:f8:8b:26:32:cb:ab:72:7e:13:52:05:9e:d6:6b:
10:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5D:28:1C:41:10:25:24:0C:BD:D4:EC:AD:71:5D:31:E9:A4:BE:89
X509v3 Authority Key Identifier:
keyid:3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:7d:0e:7e:fe:fd:e9:ba:8b:f4:16:8f:5d:68:6b:92:61:a6:
ab:b4:b7:af:30:d7:94:62:18:3a:8d:67:cf:c1:f3:e1:d0:d3:
b5:03:b4:4c:50:48:2b:0b:77:0e:ec:3a:88:80:dc:e8:97:73:
50:e2:ae:ae:b1:41:ce:0e:41:d1:c6:f0:67:1a:7c:f1:7d:bf:
45:83:9b:3b:28:67:90:1a:4a:02:8c:0d:61:71:6e:b4:7a:1e:
33:22:63:29:d3:1a:12:77:78:5a:84:96:66:98:84:9e:c5:33:
4f:b2:e6:52:97:b7:7f:7b:bf:7e:fb:54:a4:22:cd:fb:28:2a:
e8:42:75:2c:ef:79:fc:e4:bf:d2:fc:a4:4c:fd:bf:4c:3e:b5:
f9:70:c9:84:bf:b9:53:d4:f2:c7:e5:43:c5:63:45:cd:2a:13:
6f:69:eb:02:b2:31:b2:ad:f9:72:52:2c:2d:ad:c4:ef:a9:1c:
f7:23:ba:37:be:81:61:d8:59:35:a8:2e:db:c9:f4:37:c6:81:
26:99:9d:df:93:09:a7:9c:0d:f5:4c:94:58:10:a0:fa:8e:be:
11:77:a7:c1:ac:49:4b:b7:72:3c:f9:55:05:3d:a7:d9:93:dd:
16:c3:43:2e:e5:bb:df:81:65:cc:f4:fb:93:c7:d4:10:10:00:
a4:f4:d1:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:29:21 2025 by rpki-client