Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: lHokgsWSkRiK96mp8YuKVtQ5PPI7Qr/2DthWz5QWSjA=
Subject key identifier: 26:46:C9:DC:57:5A:83:4B:62:6F:79:16:D7:BD:6D:0F:D3:A1:CF:3F
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 01977F43A4E5EAD4BD4DB855D6A294889A6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0BA7
Signing time: Tue 17 Jun 2025 19:00:28 +0000
Manifest this update: Tue 17 Jun 2025 19:00:28 +0000
Manifest next update: Wed 18 Jun 2025 19:00:28 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: wn0puXZaWgXfKJ989RNV+sXcMgooAGuI0wFRF+h5jQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 19:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7f:43:a4:e5:ea:d4:bd:4d:b8:55:d6:a2:94:88:9a:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Jun 17 19:00:28 2025 GMT
Not After : Jun 18 19:00:28 2025 GMT
Subject: CN=2646c9dc575a834b626f7916d7bd6d0fd3a1cf3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:8f:c0:a3:9b:e2:e2:b4:f4:3a:63:f2:ae:
76:57:e7:60:00:9c:cb:de:4a:88:e9:ad:e5:19:82:
a6:fc:a8:41:9f:ed:8a:5f:29:44:2e:96:31:05:19:
54:62:e7:6f:6e:81:77:94:c6:6d:b4:e0:46:71:0e:
60:9f:60:1b:33:c9:80:32:74:0f:09:4e:fc:4a:15:
2c:6d:39:8e:94:df:24:99:b3:9d:55:b3:cf:81:9c:
2d:cc:7b:04:02:f9:c0:4c:6a:19:78:2f:dc:06:41:
2d:bf:5e:4b:9f:ed:2f:87:0c:c1:6c:9d:bc:ef:07:
cb:58:31:c7:27:fa:94:5a:59:b8:5c:00:e6:23:38:
99:65:ae:4c:0b:72:3b:65:30:61:7a:20:a6:96:f4:
a9:44:11:04:23:bc:0a:39:88:d9:7a:c4:0e:c3:79:
15:81:06:e0:59:1d:ec:85:67:a5:b1:4e:d7:f3:f2:
ff:c8:04:29:bb:05:ec:a5:91:61:49:e2:ee:25:e3:
e7:0e:f9:02:c8:ea:24:6a:72:26:2e:8a:64:6b:a6:
f2:75:61:e3:69:bf:0b:bd:0c:5c:49:7f:c7:e9:e3:
ce:3d:9b:d8:4b:1f:3e:bb:dc:ce:a5:a6:27:e0:18:
5e:27:23:e9:df:29:5f:27:c1:46:ae:58:f5:15:fa:
95:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:46:C9:DC:57:5A:83:4B:62:6F:79:16:D7:BD:6D:0F:D3:A1:CF:3F
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:4d:3a:c9:00:34:d3:bb:2b:5a:c8:1b:9e:4b:39:c6:5c:2d:
63:fa:bf:ea:cf:26:d0:72:cb:fc:db:4c:2f:0c:e8:14:e3:df:
24:51:39:fd:1b:5d:3d:28:2e:0f:fd:37:5c:1b:6b:8e:9e:82:
39:bc:35:97:2d:19:ac:ff:46:c4:60:9d:2b:12:20:c2:a3:b9:
87:16:b2:6a:c1:14:d0:f4:33:6f:84:44:54:e0:39:eb:7e:37:
e7:03:4f:56:20:88:5d:48:18:23:5e:b9:a5:c0:c1:74:81:57:
c1:c6:af:60:26:f5:ef:59:44:0a:9a:96:87:28:2b:0e:fd:0a:
a0:fa:f7:48:f2:b8:9f:54:a4:1e:ae:34:c9:10:4f:bd:ef:86:
8e:e7:ba:5d:4f:33:e9:13:8f:26:96:15:d8:12:23:c8:9d:01:
86:db:41:af:bf:98:91:46:fa:2a:4f:8a:1b:b8:e4:95:f3:d7:
22:2b:f9:99:66:69:6f:7c:5d:bf:08:76:da:05:e2:8f:0a:f0:
33:67:62:5f:8a:b1:9f:92:17:c6:40:37:9f:29:28:3a:4d:e0:
1f:01:eb:9a:38:00:50:36:3c:74:28:0d:fe:2c:5f:46:04:81:
9a:de:ff:54:b1:12:04:d6:02:46:4d:27:3d:f0:d5:4c:55:88:
39:eb:56:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 01:49:47 2025 by rpki-client