Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
File: pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft (raw, json)
Hash identifier: KjHfcAa0dnHcBerUi7UHmQZyWkFiFpJ2uZMiS11NIsk=
Subject key identifier: DE:67:42:C2:BF:7A:98:1C:8B:B1:B8:CA:EF:95:A5:99:1B:18:82:45
Authority key identifier: A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
Certificate issuer: /CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Certificate serial: 019872CFD9B7854EFC66312A6307CB18C59A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
Manifest number: 15A7
Signing time: Mon 04 Aug 2025 02:01:20 +0000
Manifest this update: Mon 04 Aug 2025 02:01:20 +0000
Manifest next update: Tue 05 Aug 2025 02:01:20 +0000
Files and hashes: 1: o-nYlXPYTvbWycHnP4jG4hys78s.roa (hash: +9u5uc7wAwLvJQwWxklCfmQHya0NysgfSBmasNGP6Yk=)
2: pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl (hash: 9D7TfvM5Yo1Zwudu8b4djJd+EbeL35yhQLzlpNnD/kM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:d9:b7:85:4e:fc:66:31:2a:63:07:cb:18:c5:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Validity
Not Before: Aug 4 02:01:20 2025 GMT
Not After : Aug 5 02:01:20 2025 GMT
Subject: CN=de6742c2bf7a981c8bb1b8caef95a5991b188245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:13:ed:ac:12:67:b0:75:02:67:16:47:bd:90:
5b:ec:8d:f1:88:cd:8d:e9:3f:3a:d2:e5:c0:5e:0f:
b3:14:43:37:61:d1:22:a4:e4:0d:08:6c:2f:b6:80:
ac:c2:4c:1c:2a:c8:e7:6c:70:56:d1:c1:b7:04:4d:
50:c1:d9:a3:8b:c4:b3:79:63:f0:1a:d5:89:ea:a7:
2f:90:42:89:f9:30:31:b3:91:e1:57:ae:42:91:8c:
d0:6f:01:f0:72:49:02:7f:51:dc:3e:17:76:2b:88:
b3:bf:95:50:e0:01:5d:59:ac:11:3b:56:d6:11:26:
0c:ec:bd:94:8e:aa:97:2a:09:04:98:af:1b:9a:e7:
a1:15:fe:f5:fb:ba:f1:fe:a9:d8:f3:59:e3:fb:c0:
8d:10:7e:de:03:6f:75:0f:ea:40:f6:00:55:cd:f4:
75:bb:b4:d0:37:79:8e:d9:c1:17:bb:68:54:66:65:
4b:1e:c7:15:04:d8:50:0a:31:ee:3b:58:c5:20:34:
70:ab:78:90:88:6f:22:38:c5:83:9e:ae:b4:c6:c3:
99:a5:4b:3c:75:26:e3:58:87:3f:cb:95:03:7c:b5:
10:b3:a2:0f:b3:15:88:1f:57:78:88:5d:e8:d4:d6:
b2:84:a8:bb:90:07:00:07:45:15:95:51:5d:90:c0:
98:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:67:42:C2:BF:7A:98:1C:8B:B1:B8:CA:EF:95:A5:99:1B:18:82:45
X509v3 Authority Key Identifier:
keyid:A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:b9:16:16:d4:1d:21:f4:e5:20:61:e0:fa:79:b2:4e:4a:40:
88:47:a6:74:fa:bd:80:fb:d0:78:a0:b3:6e:27:cd:24:a6:cb:
cb:1a:20:18:00:4c:70:33:49:91:40:33:53:29:f7:df:77:d6:
07:77:84:33:39:72:69:d4:cc:c2:3f:56:47:ff:e6:e6:df:5c:
e0:d5:ec:d2:c5:96:77:e0:a4:e4:28:69:49:39:ed:ae:01:01:
0c:97:66:0c:30:7f:e0:39:2e:82:84:e7:1f:41:31:b2:d3:8b:
73:12:36:f0:49:cb:46:7e:6a:c3:cb:cc:4c:36:bd:9a:06:42:
64:29:5b:fa:59:52:a9:bc:bd:62:40:b1:16:de:78:7e:c4:32:
86:ef:a7:75:3f:86:e1:bb:2d:ba:bf:f3:8b:d8:c9:e2:06:6b:
4e:d3:5c:12:c1:43:2d:77:1a:e4:73:4a:d8:ee:73:81:c2:8b:
f3:a0:45:a8:e8:83:92:de:b5:cf:db:18:1b:29:1b:5c:bd:32:
7f:fe:7b:7a:91:28:b5:54:45:8a:f4:81:89:22:0f:50:bb:20:
7b:61:61:5b:f2:46:ae:d8:07:26:50:d3:f3:5e:5f:32:10:cb:
e3:c6:37:0a:f2:3b:59:14:9c:10:ca:2b:48:4e:e8:53:b1:be:
22:c2:7c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:54 2025 by rpki-client