Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: 0MUgcBUmrUUSwZO8WKgnzVH8nFQnvrBONna/Dx2qMoU=
Subject key identifier: C5:D5:85:99:52:A6:36:3D:B7:FB:BA:79:87:E8:96:71:0D:84:AD:5E
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 01976E191E24671305024458F840AC6B0A73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0997
Signing time: Sat 14 Jun 2025 11:00:29 +0000
Manifest this update: Sat 14 Jun 2025 11:00:29 +0000
Manifest next update: Sun 15 Jun 2025 11:00:29 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: PwPpy5jsnoNYMKCivWnN6GCg/EFkOegjskG2E7VpJUg=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 11:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:19:1e:24:67:13:05:02:44:58:f8:40:ac:6b:0a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Jun 14 11:00:29 2025 GMT
Not After : Jun 15 11:00:29 2025 GMT
Subject: CN=c5d5859952a6363db7fbba7987e896710d84ad5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:84:4e:d6:e1:79:f5:1a:eb:cf:2b:e6:27:51:
04:9a:1c:e6:e6:69:59:8b:74:3b:82:15:65:d0:04:
d7:c1:56:94:1d:45:5c:18:da:bb:17:c7:e5:59:bc:
93:82:68:9f:35:6e:90:77:fc:db:d6:d3:56:71:65:
3d:c5:f7:98:61:d3:f3:44:b8:f8:24:ea:73:a0:9e:
10:0d:91:e7:e1:88:4c:5e:1d:5b:5d:48:14:dc:79:
95:cb:23:f1:00:ed:60:ae:5c:89:30:57:70:79:6d:
fc:91:7e:ff:1a:e6:65:c8:f7:ac:33:94:9f:32:1d:
a4:bd:d8:7e:04:87:ff:08:49:34:20:11:09:72:84:
ee:92:a6:4b:f9:05:08:e1:35:8c:33:bb:99:d7:83:
7d:a5:a6:35:25:7e:5b:cd:55:30:d5:5e:28:36:1b:
a7:04:38:8b:a0:9f:21:46:23:54:ce:14:63:7c:9c:
2e:19:70:eb:50:d3:c9:e4:ea:10:7c:3f:36:2a:83:
67:63:fa:14:c0:8e:c8:1c:91:e6:92:38:d8:a9:67:
36:19:04:55:7f:80:16:e0:e8:56:23:d3:98:26:16:
00:13:4b:6e:eb:64:4d:68:91:85:b0:93:ed:67:84:
8f:fa:d8:9d:a9:42:c3:6c:2a:db:17:b9:00:6f:ad:
7a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D5:85:99:52:A6:36:3D:B7:FB:BA:79:87:E8:96:71:0D:84:AD:5E
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a6:4c:13:2d:59:94:d7:aa:37:f7:dd:a1:8c:10:9d:75:16:
32:30:91:c8:78:e6:57:c9:4d:8e:2e:6c:13:ee:b0:5b:c9:39:
d1:9d:7f:c3:b3:d7:93:93:7a:24:07:88:c2:af:4a:77:d0:4f:
ea:6d:c8:b4:dd:b8:35:07:a0:c3:91:45:bd:50:36:28:e5:2c:
59:96:56:a1:c6:b1:1a:b2:82:54:17:34:36:37:66:70:cd:b0:
11:ad:8f:0e:aa:3f:d0:19:81:c2:12:42:79:16:82:9c:0f:cb:
46:ac:eb:1a:a1:4e:95:be:cd:89:27:d3:7d:95:de:24:c1:43:
d4:2b:6b:13:2b:41:46:13:5a:47:28:d9:9c:9a:07:e6:7b:61:
36:18:cb:2f:0d:f9:0e:b1:2c:33:b8:49:3e:75:0b:5c:13:af:
03:e3:86:e7:ce:1e:25:a9:e9:99:67:7e:e5:df:3e:f5:ad:0e:
b5:1c:02:75:06:01:c6:9b:18:40:0a:91:b3:58:ec:32:c7:19:
89:ae:15:26:72:c2:6b:d5:b8:4d:c2:c4:a9:02:f4:9d:b0:ff:
f6:03:d0:20:bd:d2:94:da:2a:bf:70:1f:0b:0d:5c:68:f9:a9:
07:5a:a0:aa:49:6b:c3:2e:c0:06:ef:a6:91:9e:cd:f0:cc:e0:
c0:f3:a4:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:46:24 2025 by rpki-client