Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json)
Hash identifier: nblT1JilDLVn5TUWC+pDjntd88RUsea9QoNyK3M0nz8=
Subject key identifier: 0D:EF:BC:B6:96:FC:A5:41:11:6D:00:D4:00:33:F7:6B:E8:43:91:8C
Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Certificate serial: 019880C2987E5C3FA33B63F2A3702E2F9CA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
Manifest number: 1004
Signing time: Wed 06 Aug 2025 19:01:33 +0000
Manifest this update: Wed 06 Aug 2025 19:01:33 +0000
Manifest next update: Thu 07 Aug 2025 19:01:33 +0000
Files and hashes: 1: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: ZRSbVELMtjdO0YoNmaBNcd2zEGdffWnoiUOZKu/7yqA=)
2: jH9C8p9nitrfAItNyA_YLJEP6ds.roa (hash: qAfQVpQ0k0QfJ2KTETvmr94XZk/rf+3SC4Qevdx1ZDY=)
3: tah1yfASreRchTqTj8AtcpkBGXY.roa (hash: 3mvJQGarrUT5b42icY1PPyWBBa9VfBbfud+/MFWuiN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:98:7e:5c:3f:a3:3b:63:f2:a3:70:2e:2f:9c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Validity
Not Before: Aug 6 19:01:33 2025 GMT
Not After : Aug 7 19:01:33 2025 GMT
Subject: CN=0defbcb696fca541116d00d40033f76be843918c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5f:e6:9a:bd:56:04:c3:c2:20:83:b0:a0:d5:
83:93:cb:64:77:31:53:2b:e1:19:ed:24:7c:2f:63:
07:71:7a:23:a8:0b:38:fe:57:b1:47:16:6f:45:4c:
de:f5:a7:07:4c:99:f6:ef:6f:38:11:cb:aa:87:32:
5e:74:d2:34:5a:70:a6:d7:ce:34:22:a6:b0:77:b6:
4e:2f:89:cc:72:47:96:db:ca:c5:5b:7d:f3:fe:c1:
f9:94:bf:c6:5a:de:70:ed:64:dd:92:9e:05:64:e0:
f1:d4:8e:86:1a:94:77:b4:7c:83:0a:f2:fb:2d:57:
30:34:ad:58:0f:d4:89:9b:7a:74:13:b3:13:35:a1:
99:b1:2d:8f:e7:15:33:14:1b:f7:6a:a4:62:02:8d:
df:5d:ca:76:b6:31:87:a3:2d:b4:1c:d6:46:24:88:
2e:80:0e:0d:1d:4f:78:4b:95:64:49:2a:06:3f:59:
a6:f4:f8:b4:f3:21:1c:c5:8c:4b:2d:24:5f:de:70:
bb:f0:55:b9:73:c8:d5:bf:ec:fb:fe:01:68:20:6f:
dd:97:3e:2c:42:59:70:1a:49:83:c3:5c:78:d6:5f:
34:32:2f:d4:b2:f3:b3:0e:ac:31:c6:0d:a8:50:18:
d8:67:b7:05:77:2c:bc:b0:62:58:2a:34:09:e1:b5:
19:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EF:BC:B6:96:FC:A5:41:11:6D:00:D4:00:33:F7:6B:E8:43:91:8C
X509v3 Authority Key Identifier:
keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:1e:74:36:24:54:82:a6:4a:f7:24:68:1b:2c:00:c0:76:7b:
eb:92:97:6b:e6:e0:3f:7b:37:f6:82:b9:d2:64:cc:2b:9b:38:
66:30:94:0d:3a:02:71:de:a9:b0:be:ec:5d:87:88:c6:a6:c0:
af:f9:c7:77:57:fd:22:7f:66:1e:c9:ff:f0:cd:01:4c:7e:5e:
83:66:f3:f4:e7:28:2e:59:b7:b6:ff:bd:09:81:f7:df:bd:5b:
6f:74:0c:b2:20:78:b8:df:96:f3:34:de:32:0c:24:88:26:b6:
d0:ae:49:a2:da:8b:ef:3b:28:8c:a6:d7:f3:6d:2f:82:4b:6b:
37:5b:12:ed:81:ea:15:13:58:29:16:1f:93:40:aa:f5:9b:4a:
77:ca:07:68:c0:37:ac:5f:13:00:aa:e1:10:32:87:5f:55:54:
11:fd:3d:14:f3:7e:64:4a:9d:43:52:c0:26:e7:76:ad:66:91:
de:11:f3:0e:a8:b5:3f:06:df:2e:82:c9:74:a0:45:0b:63:dd:
5e:fa:59:d3:e4:03:cc:16:a0:e8:f1:b4:4c:02:fe:f2:ac:b0:
8b:e9:7d:31:52:89:eb:6b:69:ad:58:47:6a:97:7d:06:64:b3:
1e:98:1a:d6:ab:45:f1:12:78:5f:61:b9:5a:98:a2:6b:e9:af:
18:cd:5d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:55:39 2025 by rpki-client