Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
File: pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft (raw, json)
Hash identifier: 28qcyaNaAEVzKs6W8k3cNrCgPvxrehCrNX7JKYylrHM=
Subject key identifier: 27:FD:1E:B6:17:4F:A1:45:DC:1F:F0:73:A5:FB:50:0C:46:DD:E7:4C
Authority key identifier: A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
Certificate issuer: /CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Certificate serial: 01976E18F8C386FAEFAE8269CD01F9A2D3FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 11:00:19 +0000
Manifest this update: Sat 14 Jun 2025 11:00:19 +0000
Manifest next update: Sun 15 Jun 2025 11:00:19 +0000
Files and hashes: 1: o-nYlXPYTvbWycHnP4jG4hys78s.roa (hash: +9u5uc7wAwLvJQwWxklCfmQHya0NysgfSBmasNGP6Yk=)
2: pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl (hash: 94k1MVlRLFRvjRucICvemBRdzjDSxiAgpgZ1nmvf02M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:18:f8:c3:86:fa:ef:ae:82:69:cd:01:f9:a2:d3:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Validity
Not Before: Jun 14 11:00:19 2025 GMT
Not After : Jun 15 11:00:19 2025 GMT
Subject: CN=27fd1eb6174fa145dc1ff073a5fb500c46dde74c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:46:cc:18:0a:5a:75:10:15:40:a3:7a:46:fc:
60:62:c7:b4:51:b3:c6:5e:1e:4d:42:42:67:0e:55:
ca:88:c3:e8:ce:63:f6:32:3f:74:96:25:e5:f0:61:
97:0b:87:b1:ab:98:dd:91:9c:50:d7:60:5c:e9:9b:
eb:c8:4a:fc:02:65:0f:44:1a:80:3b:c5:81:26:57:
6b:5a:83:1f:03:6c:ba:47:aa:d5:ce:ed:31:8b:16:
f0:53:99:82:c9:67:76:b3:e7:55:55:cc:e2:ee:b9:
57:9b:7e:17:f1:a4:20:c1:f1:af:f1:94:72:9e:7f:
66:01:6d:b4:1c:d7:7e:da:3f:8d:9a:08:bb:f9:76:
c5:cf:f3:27:a0:6d:1c:bd:c9:03:4b:34:6e:8e:61:
b7:36:e7:62:2e:60:be:70:dd:db:60:c4:38:8a:f0:
01:b2:df:d8:ec:5d:6b:5b:69:c0:a3:56:77:17:0c:
e3:d9:97:a9:c2:0d:c7:90:7c:5e:ab:9e:71:37:21:
d6:cc:b2:7e:b5:a6:76:a5:89:8b:2c:b9:23:31:49:
de:df:6b:e5:6f:ba:83:79:7e:8c:82:b9:36:4a:89:
51:07:be:70:c7:4b:d6:6d:e1:53:c4:e9:e4:1b:2b:
db:96:69:17:b2:63:46:60:34:73:54:0d:a3:1f:aa:
18:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FD:1E:B6:17:4F:A1:45:DC:1F:F0:73:A5:FB:50:0C:46:DD:E7:4C
X509v3 Authority Key Identifier:
keyid:A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:5a:4f:da:83:e6:76:af:af:14:00:e1:80:2d:15:aa:3c:9a:
ec:f4:19:fd:1b:44:ab:c4:d7:6f:49:13:fd:8c:68:17:85:22:
82:34:29:cc:bd:6c:70:da:9a:f6:0a:50:43:fc:a8:71:94:8b:
43:8e:98:9a:cc:b2:72:b4:4c:bf:8b:a4:06:d3:43:59:dd:b2:
ad:fa:08:c8:b2:2f:87:32:d4:e0:f6:73:b1:12:7d:06:a6:18:
5d:a2:e2:83:89:6a:82:61:67:67:80:26:57:70:7e:01:05:08:
35:14:85:af:58:c5:4d:2d:2a:0a:2f:9d:8e:e5:6b:43:66:fa:
8f:23:84:44:a0:9b:42:89:dd:60:de:29:de:9f:51:91:12:4a:
41:d4:e7:25:7f:95:6b:9f:86:f6:a1:5f:45:4c:98:fd:c2:3c:
b5:35:20:d6:08:13:0e:e7:26:dd:91:e8:2e:49:31:bd:f6:89:
bf:5d:1d:33:08:a3:5e:19:e5:f7:a2:57:d8:00:3a:46:57:f4:
9e:81:3f:ae:de:bb:1c:84:2c:00:53:af:af:2f:8e:a1:fa:e9:
f7:f3:0a:8e:14:e0:64:f4:80:9e:25:b6:bb:b7:44:f3:80:19:
94:35:99:23:ed:ee:6a:d4:cd:75:03:84:55:83:8c:ea:31:c7:
eb:28:c0:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:05:24 2025 by rpki-client