Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: YBGvNjEBadLuIcEcHOPo3NEUgCp+mzuZuG6doMId7cw=
Subject key identifier: 16:44:98:FD:E7:11:E7:3D:F2:51:35:A8:52:44:AF:3A:71:AA:F3:7C
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 01987E664481F65F145E0F0B0A85B2A81BC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0A24
Signing time: Wed 06 Aug 2025 08:01:28 +0000
Manifest this update: Wed 06 Aug 2025 08:01:28 +0000
Manifest next update: Thu 07 Aug 2025 08:01:28 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: LunlAAZ20+A7T3W6K3VmtKXoIBAxjmAsMObU7RmAnDs=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:66:44:81:f6:5f:14:5e:0f:0b:0a:85:b2:a8:1b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Aug 6 08:01:28 2025 GMT
Not After : Aug 7 08:01:28 2025 GMT
Subject: CN=164498fde711e73df25135a85244af3a71aaf37c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8d:c0:77:7a:8e:d9:16:95:6d:c4:5c:a6:6d:
9c:ca:f4:11:cb:25:0b:43:4d:eb:b7:0b:34:a5:c5:
ad:bc:90:59:a1:d7:bc:9b:fe:1b:dd:b2:63:2f:5a:
b6:9b:0f:ce:df:bd:cf:0e:ef:48:9c:ac:4b:10:cf:
ba:11:02:5a:54:22:1f:c8:76:41:80:80:ef:96:ee:
d4:cd:b4:45:20:43:d8:97:ad:20:eb:d6:c8:ef:81:
5d:c0:9e:be:dc:5a:ea:41:6d:f6:a1:a2:6f:2b:b1:
4e:97:af:49:11:09:28:e7:7a:b1:76:2e:84:f0:1a:
17:5f:a6:ab:6a:7d:39:fc:f6:56:9a:e0:42:50:e9:
30:b8:92:38:cc:80:92:cc:c1:66:25:8a:9b:c3:5e:
fc:eb:4f:56:47:98:5a:76:f4:10:87:2a:f0:9c:57:
d2:9f:ef:e8:af:ed:8a:fa:dd:d5:f1:4e:59:4a:5c:
bf:a6:17:bd:8c:be:5b:41:a2:ca:7a:18:07:57:b0:
54:c7:68:c2:91:72:b1:9e:34:ea:34:b3:bd:2f:fe:
73:70:18:d5:47:76:8d:73:41:bb:6a:57:8b:81:5b:
99:a7:f4:f5:8d:91:f3:93:66:2b:2b:b1:8e:17:9c:
43:45:6c:9a:ea:bc:89:0d:68:c1:3a:f3:4e:64:5b:
1a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:44:98:FD:E7:11:E7:3D:F2:51:35:A8:52:44:AF:3A:71:AA:F3:7C
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:76:95:32:2b:95:d4:2a:49:ce:28:c5:1f:a8:c9:2d:7e:62:
38:2c:08:96:80:e9:02:cf:6b:eb:7d:d3:ea:a6:36:69:4a:3e:
9e:f5:cf:c7:56:5d:3b:6a:3d:46:14:fd:e3:ee:41:56:21:e5:
33:63:29:42:83:f7:61:a5:97:db:0b:8c:0a:8e:c3:f3:32:d9:
2b:7d:dc:12:ff:68:ab:4e:0c:c1:5d:69:46:7c:7c:c8:41:d0:
c2:a2:af:ef:67:39:40:b0:7f:98:b7:72:ae:18:8e:d9:02:0c:
b6:22:ce:67:a8:99:f8:d9:c5:4b:2b:71:bc:93:90:52:84:eb:
dd:7e:85:ce:91:a9:6a:c3:62:2e:40:51:6d:42:a7:b8:c6:87:
e7:32:45:f5:98:74:86:20:c2:fb:34:a2:ca:9a:09:ca:e2:d8:
30:21:ed:5d:5f:54:e5:ea:63:3e:2b:4d:24:84:13:42:21:57:
57:d3:66:7f:41:68:95:76:4c:b9:a5:0f:a2:5b:f2:68:45:f7:
86:dd:00:5d:db:98:7d:da:0e:a4:6e:90:a1:2c:c0:97:1f:a7:
63:16:83:f2:af:a9:33:1c:03:17:07:f9:aa:4d:33:73:c9:ef:
88:d0:8d:08:bb:6e:13:12:c4:28:7d:2d:21:7c:c0:1a:5c:09:
1a:a4:98:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:17:27 2025 by rpki-client