Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: LvNvgHFxSzA7/zwg/NPnv/dsJ0oua/9Hs7Cg2/1s62s=
Subject key identifier: A2:F5:9A:6B:0D:7C:7D:93:96:A0:86:69:7A:E6:63:27:A3:9A:0B:BD
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 0197726469A875C2BDDF66F0CC320BB2F6DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 1065
Signing time: Sun 15 Jun 2025 07:01:12 +0000
Manifest this update: Sun 15 Jun 2025 07:01:12 +0000
Manifest next update: Mon 16 Jun 2025 07:01:12 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: 9q6W06WCJVxYAhgPn3W95MzfrA9bTQQ0mArxW/ga0wA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:64:69:a8:75:c2:bd:df:66:f0:cc:32:0b:b2:f6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Jun 15 07:01:12 2025 GMT
Not After : Jun 16 07:01:12 2025 GMT
Subject: CN=a2f59a6b0d7c7d9396a086697ae66327a39a0bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c1:66:7c:d3:ad:b7:14:91:0c:6e:c5:22:ae:
a5:10:f6:82:73:44:9f:28:6b:5a:5e:ad:af:0e:87:
c0:a9:80:74:81:07:68:24:52:45:b9:57:cd:4d:f9:
41:51:ce:93:52:6c:36:b7:4c:ad:c3:c6:5e:8d:39:
7c:ac:58:9b:b3:7b:27:d8:75:40:05:fb:3e:d0:e8:
ad:82:fe:87:ab:70:12:42:da:3e:af:47:d8:46:37:
ea:6b:81:e7:88:34:b1:ea:40:74:b7:72:ca:6e:73:
16:f1:f1:f3:80:ac:52:f9:46:71:b7:2c:84:11:3b:
4d:7b:04:96:69:f0:e8:9c:f7:d7:7e:e6:82:8c:c5:
24:e5:5d:08:d8:8e:f1:a0:07:e6:91:63:97:a1:46:
42:bc:e2:11:83:18:86:e7:ea:dc:5b:fb:cc:06:44:
e5:d1:fc:5c:c1:e5:d9:ea:0c:3d:80:3f:35:73:89:
97:67:cc:c8:10:c7:51:74:4a:49:06:84:31:bb:34:
00:8f:72:62:09:52:7c:5d:76:b8:b9:98:b2:3c:76:
23:3b:cb:8b:84:c1:37:8f:50:b2:98:4a:5e:99:f5:
30:34:5f:08:a0:a8:29:8c:eb:21:5b:52:fc:7c:4a:
89:84:80:67:c4:b7:3e:68:89:91:e0:ea:68:e4:9c:
a1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F5:9A:6B:0D:7C:7D:93:96:A0:86:69:7A:E6:63:27:A3:9A:0B:BD
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:38:c7:90:18:22:c7:b1:57:0a:19:db:36:c5:3d:ba:87:e0:
da:67:2e:60:db:38:f8:11:1a:f2:d6:e0:45:2e:96:d5:6d:7e:
99:1f:75:a4:63:03:f2:a3:7e:17:a3:80:dc:1f:df:00:24:7c:
36:2c:34:3f:2d:d1:02:95:91:49:55:e7:8a:5e:eb:9e:1d:db:
f6:dd:90:42:62:6d:fe:b5:83:90:c4:dd:a3:9f:3b:6d:2c:85:
76:19:18:66:ee:a2:12:08:ac:8b:1a:a8:38:fa:26:25:6a:22:
da:2e:0b:ee:ff:eb:ee:ff:26:fb:b1:da:67:c7:0f:39:3f:0f:
b9:91:35:63:0f:c9:6a:eb:b9:3e:5a:88:fb:1c:a9:bd:ca:13:
33:54:52:02:d3:4a:67:0a:35:0d:f5:bb:7d:a1:95:71:82:13:
12:dc:16:2a:e6:54:82:b2:6e:77:24:12:18:24:12:d8:0e:a7:
7f:06:92:39:cd:6a:b8:b9:f2:db:ff:25:39:71:3a:36:a1:a5:
0e:9e:10:de:92:8a:34:7f:ff:7b:7e:c3:1d:ea:82:12:8f:f0:
e7:2c:50:f6:c2:91:62:45:90:96:2a:d3:56:60:51:a2:ee:12:
4e:eb:4c:83:4f:41:b9:8d:31:0d:5d:47:b2:25:8b:f1:b5:20:
2c:ec:0d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:59:17 2025 by rpki-client