Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
File: pdCLMVCtNN4riFkhdBkkCDlvEfs.mft (raw, json)
Hash identifier: enPLnfC9T433pri2V/Iwf0bmC5UqcHEhtcNNY4XZL24=
Subject key identifier: 66:4D:9B:56:E7:B9:F9:57:D8:24:BC:FF:F3:5E:B9:70:13:16:C5:DF
Authority key identifier: A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
Certificate issuer: /CN=a5d08b3150ad34de2b88592174192408396f11fb
Certificate serial: 01976F9A48226CA40AB8E21024FDAD5BFD61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 18:01:10 +0000
Manifest this update: Sat 14 Jun 2025 18:01:10 +0000
Manifest next update: Sun 15 Jun 2025 18:01:10 +0000
Files and hashes: 1: bY2tBQ51YL8a-pcphuYuVQz7bOg.roa (hash: FnAC9AE4W5+r++w2y10UXXpTgultC6LrjOa8S41rhns=)
2: pdCLMVCtNN4riFkhdBkkCDlvEfs.crl (hash: wStBM2SFspWAX8zp/vGCbfcB8g96ek2BuL1vSBUcDgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:48:22:6c:a4:0a:b8:e2:10:24:fd:ad:5b:fd:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5d08b3150ad34de2b88592174192408396f11fb
Validity
Not Before: Jun 14 18:01:10 2025 GMT
Not After : Jun 15 18:01:10 2025 GMT
Subject: CN=664d9b56e7b9f957d824bcfff35eb9701316c5df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:5f:08:33:3e:b8:ce:fb:d2:56:5d:3b:63:
c9:95:fb:2e:f8:9a:77:b1:04:ff:6d:b8:69:df:6d:
6f:63:77:04:87:f0:99:c7:a9:d4:de:60:64:c3:2a:
c2:85:d6:3d:0b:ab:e3:d9:69:f3:e5:72:f8:a9:89:
12:8c:a8:9c:e8:1c:3b:cf:3e:cd:b2:98:11:0d:33:
24:16:8b:df:a2:0f:18:f1:bf:32:13:4f:e6:ee:b4:
5b:8a:35:18:b3:f7:40:66:a6:57:b4:f4:3d:25:4a:
67:61:62:f3:5e:44:d8:0e:31:3b:90:a5:3f:68:8d:
95:1a:43:47:05:97:02:b3:40:c3:a2:6d:d4:81:26:
89:aa:a1:5f:09:8c:ec:e1:eb:44:37:a3:da:27:0d:
d1:01:46:a6:af:bd:24:af:3a:66:45:50:b6:dc:74:
b1:70:00:82:b6:6e:e5:e3:13:04:e5:a3:60:a1:4e:
73:55:47:e1:a7:12:28:a4:5d:95:bf:4a:3f:51:d2:
8f:32:52:67:48:ec:29:5a:d2:a6:a8:4d:dc:bb:94:
b6:e3:e2:a5:ff:71:1a:e4:c9:1f:ba:dc:b3:f4:dd:
50:7f:00:5d:67:f4:d2:6b:5f:35:53:a8:11:3e:ae:
75:79:9c:ea:de:c3:a0:57:1d:12:e9:f2:e0:80:0e:
11:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4D:9B:56:E7:B9:F9:57:D8:24:BC:FF:F3:5E:B9:70:13:16:C5:DF
X509v3 Authority Key Identifier:
keyid:A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:c6:6a:4c:23:5f:db:87:8b:76:54:a0:81:65:d1:86:eb:06:
43:fa:eb:12:9c:bc:64:38:8f:44:34:b1:83:de:07:72:20:10:
d8:90:6f:01:39:11:72:0c:71:62:df:ef:5d:21:f8:52:25:dd:
fe:c1:8e:01:9b:52:85:68:4f:a0:5f:30:78:e3:51:fd:40:e5:
75:ad:02:b7:0d:21:94:cc:6e:0a:6c:fd:13:93:4f:ff:a0:1e:
6f:97:0d:a8:19:45:7f:b1:8e:24:4a:99:7a:bb:6b:e7:9a:2d:
05:f1:12:7d:19:32:75:bb:07:c0:8d:d4:29:cd:19:5a:94:b2:
64:4c:d4:bc:cb:47:c1:59:a5:f0:70:67:94:b4:4d:0d:0a:d5:
d0:c9:86:bb:67:a1:ac:a3:8f:2c:31:ea:f2:3b:b8:b5:28:71:
fc:f4:1a:99:90:5c:6d:0f:05:85:9f:eb:0d:80:8a:ff:e0:e5:
19:4d:f1:88:6c:34:fd:c3:10:c1:62:af:91:42:f1:e3:83:1e:
cb:02:4a:17:41:08:dc:1b:1b:26:6b:0d:b1:81:f0:7b:da:42:
63:19:cd:2c:af:56:18:28:52:1f:94:f8:8a:fb:d5:be:fa:97:
c9:b8:99:59:f0:0f:f0:43:61:e5:06:47:e6:c1:1f:c5:41:13:
cd:41:1c:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 21:52:11 2025 by rpki-client