Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: qRwgZqZOKP7gTJw1JVk1D8lsZuatqVNnWDk83zLb2L0=
Subject key identifier: 52:63:55:F7:CB:72:93:16:9B:A2:F2:82:C6:58:6B:C8:65:6A:97:03
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 01976E50849D6D11A4CBD1B7E0C47A8BD0EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 0E16
Signing time: Sat 14 Jun 2025 12:00:59 +0000
Manifest this update: Sat 14 Jun 2025 12:00:59 +0000
Manifest next update: Sun 15 Jun 2025 12:00:59 +0000
Files and hashes: 1: J60Pw4hyKKjQhqi1eSTzFtauoi0.roa (hash: Pts66hPVy/S0JFZfVc88DLunALgdL+k1upaL/I3M97g=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: fqyi8uL1q6sYBGYQFVzLZ8hpqJKQwUSqUvto4+vmZSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:84:9d:6d:11:a4:cb:d1:b7:e0:c4:7a:8b:d0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Jun 14 12:00:59 2025 GMT
Not After : Jun 15 12:00:59 2025 GMT
Subject: CN=526355f7cb7293169ba2f282c6586bc8656a9703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:94:d8:04:3d:13:89:9f:38:ea:d8:72:ef:3d:
fb:c5:df:4b:c9:1c:5a:21:2a:8c:b7:7e:85:33:47:
ce:24:06:93:6e:c3:24:db:78:ec:b3:84:1e:cb:a0:
76:74:aa:05:b3:ef:1e:1e:b3:36:04:51:d0:a5:56:
e9:3a:c1:6f:bf:01:c6:ad:17:1b:70:d3:01:14:c0:
de:1e:88:21:4a:ee:de:79:aa:37:ca:ab:1e:c1:e8:
da:f5:43:99:fa:a5:60:c4:46:17:18:04:3a:9a:91:
75:56:a7:4e:7b:fd:46:dc:5c:0d:c5:46:6c:83:59:
95:9d:0e:a3:19:37:d6:41:76:13:b0:e6:d5:3c:64:
c6:1b:da:e6:ba:50:0e:3a:c6:00:0f:c8:8e:4f:f1:
40:10:e6:d0:63:7c:69:c1:27:91:1d:d5:92:a4:cb:
42:3b:f7:be:82:d1:12:4e:b0:4d:50:41:4c:ef:10:
6a:79:64:76:dc:34:9d:70:d8:33:15:14:03:ff:97:
8a:03:43:d6:a5:85:bd:10:ff:43:b7:78:77:aa:63:
cc:5a:16:ce:b3:48:c0:82:7d:d3:01:6e:e9:e4:a3:
11:6f:2f:c1:85:e2:49:01:b1:64:ac:51:76:9d:1c:
fa:18:45:a5:93:80:95:9c:55:e5:d9:19:79:68:1c:
28:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:63:55:F7:CB:72:93:16:9B:A2:F2:82:C6:58:6B:C8:65:6A:97:03
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:d6:9a:ba:8c:6e:a6:30:dd:7e:b4:13:21:ec:31:78:18:be:
9d:1e:3c:53:8a:1d:d6:b8:26:a2:3b:b1:18:06:d2:a3:ea:ea:
79:41:dd:1f:99:ca:a3:da:d9:df:47:e6:af:40:15:65:cf:84:
67:43:5a:f4:83:32:77:64:41:4e:83:a1:07:3b:d3:a8:01:67:
fa:df:19:16:86:a1:f5:11:24:1e:92:47:cd:8e:a0:62:02:b2:
a6:aa:a5:ba:97:75:74:09:25:f9:d6:92:ce:71:73:53:47:b6:
82:17:50:50:e2:32:78:16:cb:6c:8f:06:96:16:24:cc:02:cf:
f9:39:0d:84:66:27:83:e4:19:d4:f5:83:44:d4:e9:73:ae:2a:
df:1b:0d:0c:32:44:85:13:a8:a7:24:b3:05:ea:03:1d:63:ce:
0f:0b:f6:66:f3:6e:a2:ee:a1:90:28:e9:e3:df:8a:1a:c5:e6:
0a:fb:26:fb:d4:d6:10:3b:f9:49:5d:b9:69:46:19:9f:60:99:
09:60:c7:53:1b:99:1f:33:3b:ec:ee:b7:f9:53:05:af:c3:89:
75:ba:c3:4b:3b:e7:ce:da:66:ac:bc:03:36:e0:bd:44:78:24:
b6:37:4a:3a:fb:62:e8:63:a7:8e:72:c6:35:8d:ac:25:34:01:
ec:c9:a6:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:45:14 2025 by rpki-client