Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
File: PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft (raw, json)
Hash identifier: VfTComywOlEVa1IcqfX0CegG0j1FQMS/gSVgSFBsnSc=
Subject key identifier: E7:9C:B9:E2:71:C4:91:BD:B1:57:21:14:F2:5D:86:B6:9F:17:68:A9
Authority key identifier: 3E:19:04:83:48:D7:EC:B9:F1:19:10:80:55:5B:F4:45:8A:1A:54:E7
Certificate issuer: /CN=3e19048348d7ecb9f1191080555bf4458a1a54e7
Certificate serial: 01976CCF9DFCB5A0EBAFFDE874ED87271A37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 05:00:35 +0000
Manifest this update: Sat 14 Jun 2025 05:00:35 +0000
Manifest next update: Sun 15 Jun 2025 05:00:35 +0000
Files and hashes: 1: OEpDgvPaXUzQjnGh8DicbzVRQqo.roa (hash: Tur6sEnsgmRlnAb38JyLyFtsAnKmMwtkefk62vCJp6k=)
2: PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl (hash: HrgsT3GuwG0P45kqZt2SHyhOMrZsA76Opo9POIawlqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:9d:fc:b5:a0:eb:af:fd:e8:74:ed:87:27:1a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e19048348d7ecb9f1191080555bf4458a1a54e7
Validity
Not Before: Jun 14 05:00:35 2025 GMT
Not After : Jun 15 05:00:35 2025 GMT
Subject: CN=e79cb9e271c491bdb1572114f25d86b69f1768a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ea:c9:53:5a:36:c0:f7:2c:2c:74:27:76:1b:
2b:ed:73:1b:b8:f5:b1:5e:a4:3c:30:f9:9e:55:50:
a0:29:92:c4:c9:cc:bb:81:9b:f5:da:52:6f:e5:4b:
4e:77:68:3f:63:60:a9:a7:75:26:3f:b1:e9:7a:e1:
01:14:67:24:cb:a2:8c:fa:19:19:bc:03:f1:03:8a:
d9:90:21:11:ff:17:ca:9b:c0:17:e7:7f:69:c2:77:
80:ad:e5:23:e5:06:ad:15:c5:e4:ef:77:f3:bf:80:
df:16:86:7b:db:5c:67:66:9c:ca:fc:89:63:02:7b:
2b:fe:c6:53:5c:0c:24:d3:e8:6b:c6:71:7e:f6:d8:
15:41:de:0e:81:8f:25:29:62:20:19:ad:21:ff:ad:
fa:dd:58:32:be:f5:d6:bc:85:b7:04:19:e6:9d:e2:
3b:57:67:44:1a:86:cb:cd:04:c8:65:a6:e7:2c:c0:
01:d7:f2:90:61:57:9d:14:06:c0:7a:c5:7f:8a:aa:
50:99:da:a3:3e:cd:9d:17:5e:57:c0:ca:37:fc:5d:
bb:04:ce:60:54:ee:90:9e:e7:1b:0f:c2:ef:23:4b:
8a:77:54:0d:d7:c6:81:f6:65:1a:8c:ef:92:07:c0:
1f:89:dd:ab:37:52:18:3f:c4:4f:43:fa:60:b4:77:
f5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:9C:B9:E2:71:C4:91:BD:B1:57:21:14:F2:5D:86:B6:9F:17:68:A9
X509v3 Authority Key Identifier:
keyid:3E:19:04:83:48:D7:EC:B9:F1:19:10:80:55:5B:F4:45:8A:1A:54:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PhkEg0jX7LnxGRCAVVv0RYoaVOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/af262c-e2cd-4841-850f-02f35ad877f3/1/PhkEg0jX7LnxGRCAVVv0RYoaVOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:64:6a:86:a4:10:bf:f2:b1:e3:62:55:77:7c:77:62:6f:a1:
a5:77:75:55:89:73:e6:e6:19:a3:0a:36:49:13:fb:1b:8c:87:
82:5f:49:76:23:29:75:36:1c:ca:72:3a:4d:78:75:1d:4a:18:
61:01:24:43:fa:50:6a:42:cb:af:c2:86:48:d7:81:14:08:db:
ce:35:8a:85:a0:b0:a3:2f:a2:6a:53:23:bf:aa:f7:d6:cf:61:
13:1c:63:50:55:f5:e3:e1:83:f7:d5:00:37:64:ff:8b:18:86:
92:e3:12:f4:62:4c:9a:3f:a5:e8:49:67:ac:ad:dd:47:8d:ba:
40:44:41:3a:8a:9c:96:8a:af:03:89:b4:7f:9a:6b:96:12:84:
b2:57:76:43:31:6a:46:87:cd:3b:6e:f8:f3:e6:85:81:8e:c9:
0c:59:47:73:8a:ba:24:0c:fa:72:1d:c6:1a:fb:08:18:b3:42:
e2:63:02:3c:04:97:c2:d5:4f:c0:cf:1d:86:84:1f:50:75:62:
3a:8e:55:ca:d9:be:92:b2:fb:19:fe:99:44:80:4c:e0:13:b3:
92:7c:46:a4:e6:2b:9f:82:f8:5f:ae:0a:6a:a2:a6:0f:74:6d:
69:55:42:c2:dc:c1:b5:a9:54:d8:72:15:55:d9:eb:67:56:d5:
f5:fe:22:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:15:50 2025 by rpki-client