Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
File: PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft (raw, json)
Hash identifier: EPI/wxhSndDNNLL8l78q2SWfy+O623XU4lnQJZyOIFE=
Subject key identifier: 13:65:48:94:71:A8:A2:2C:35:C2:1C:82:21:85:DD:12:DB:CF:BF:5E
Authority key identifier: 3E:19:04:83:48:D7:EC:B9:F1:19:10:80:55:5B:F4:45:8A:1A:54:E7
Certificate issuer: /CN=3e19048348d7ecb9f1191080555bf4458a1a54e7
Certificate serial: 019873744986D2C58CCBA2EF9CE2C03F914A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 05:00:57 +0000
Manifest this update: Mon 04 Aug 2025 05:00:57 +0000
Manifest next update: Tue 05 Aug 2025 05:00:57 +0000
Files and hashes: 1: OEpDgvPaXUzQjnGh8DicbzVRQqo.roa (hash: Tur6sEnsgmRlnAb38JyLyFtsAnKmMwtkefk62vCJp6k=)
2: PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl (hash: SSwY1PvtZwxPVU30xqf5Hnxip1cs7nZc1XvX7w8DzcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:49:86:d2:c5:8c:cb:a2:ef:9c:e2:c0:3f:91:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e19048348d7ecb9f1191080555bf4458a1a54e7
Validity
Not Before: Aug 4 05:00:57 2025 GMT
Not After : Aug 5 05:00:57 2025 GMT
Subject: CN=1365489471a8a22c35c21c822185dd12dbcfbf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a6:ab:62:73:7d:06:56:89:eb:8b:b5:63:5e:
a5:36:6f:06:de:86:df:00:78:3a:5f:88:53:d1:8c:
02:dc:e7:cc:30:0f:59:fa:1b:fd:70:67:d4:ca:22:
45:9c:55:55:58:b9:9d:20:0d:5b:06:49:f8:89:e7:
c1:c4:41:24:3c:5c:03:45:a2:63:0b:cb:1d:34:67:
a3:cd:8b:8b:cd:e5:5c:7d:07:f8:f3:1d:ee:2f:0c:
54:5e:9c:b3:21:94:26:ac:4a:8b:fb:b3:00:f2:81:
e5:46:d8:52:d0:0b:59:fe:b0:52:74:0d:47:b7:0b:
de:03:fe:82:47:c6:a3:bc:cc:ef:1e:7b:d8:55:68:
c3:c5:07:87:1f:a1:b8:3f:af:9c:3b:79:62:20:4b:
9c:73:8c:1c:49:17:61:87:ff:4c:9f:64:69:1c:2a:
21:43:ff:73:68:7a:76:fc:8a:c6:e9:84:ef:31:2c:
0d:9e:7a:40:06:e0:39:1f:31:0e:35:95:09:7d:f9:
d2:c0:2e:65:b9:43:26:4e:e5:c7:2f:46:8c:ea:1d:
5a:3c:2e:79:bf:8b:a9:fe:21:82:7c:dc:f5:ff:64:
08:4f:86:a6:64:09:70:e4:34:92:81:0e:44:6b:72:
7b:94:71:91:82:10:8c:5d:18:20:a7:a3:27:58:d1:
95:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:65:48:94:71:A8:A2:2C:35:C2:1C:82:21:85:DD:12:DB:CF:BF:5E
X509v3 Authority Key Identifier:
keyid:3E:19:04:83:48:D7:EC:B9:F1:19:10:80:55:5B:F4:45:8A:1A:54:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ae:1c:92:30:08:1d:1c:ad:51:b4:99:19:b5:bc:8e:66:72:
58:06:8f:b6:90:07:65:4a:56:66:71:c1:2a:58:2d:81:d8:50:
87:6f:de:49:03:4f:0e:ba:ac:53:ba:6b:04:7e:07:f4:76:53:
7d:22:e6:32:70:87:46:05:d8:1d:ca:99:38:0c:7c:90:81:54:
5d:77:ca:a0:c0:58:95:2d:fd:7f:3e:ca:6e:8e:a3:b9:8f:ef:
b6:bf:e2:7c:7a:39:0a:29:13:82:68:6a:25:35:db:99:7d:ed:
0a:52:a0:61:81:9f:15:f8:63:f6:a6:4d:ea:b9:16:66:1c:41:
21:9c:c3:8b:fe:12:f1:6a:41:75:bf:bf:a5:d1:9c:ad:6d:6c:
ab:cd:41:a2:91:38:b4:6c:c2:55:12:27:d3:cf:5f:4b:73:21:
a2:a2:5e:67:e8:4c:a5:0a:4d:00:21:31:c8:cd:26:14:9b:18:
52:6e:8a:98:4a:14:93:cb:58:6c:df:17:a4:4d:f7:d6:bc:e3:
29:c9:ec:c8:d2:7f:44:67:0b:84:23:23:82:73:30:db:05:9d:
14:ad:0e:b1:54:67:4e:39:76:01:d5:56:60:05:05:0d:d9:1b:
c3:1a:53:0e:ff:4b:49:db:2d:2d:ec:c0:ec:20:cd:29:86:a9:
20:2b:da:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:55 2025 by rpki-client