Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
File: pPhDYAPTdgICa2VTF1XKj80xvtI.mft (raw, json)
Hash identifier: HnEN2RVQJsVK/I8qqehil0yaegqasz+ItYsBTO3sUTM=
Subject key identifier: DE:EA:F5:DE:8E:83:51:2C:9F:6B:7C:C0:1A:83:52:7B:94:6B:CB:67
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 019777C110AC8E082E5C1101A6E58CF93EAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
Manifest number: 15AE
Signing time: Mon 16 Jun 2025 08:00:30 +0000
Manifest this update: Mon 16 Jun 2025 08:00:30 +0000
Manifest next update: Tue 17 Jun 2025 08:00:30 +0000
Files and hashes: 1: HMGH1OixlUbIZln6UuRHK_JoRTM.roa (hash: hIobepQhJMDuyYwWr9rOBNqOIvasbF7MFvvQPTjZKdk=)
2: PQ45AYuoXrKgjYd4a2nYqs6hfn8.roa (hash: 7Md1PLbDzWkJqH/gps7rzdw/URXMoRhj3yufH4c5pmc=)
3: XXKuildCsFJXdNyCwBMrowurkY0.roa (hash: NXW1f3EG3KW4h6xADEdnRgY4ZNLFSP48OU6WesEP2Jo=)
4: pPhDYAPTdgICa2VTF1XKj80xvtI.crl (hash: teT3lBufOfPktagVqnXCpi2sSaBFd458s+K7ydxclys=)
5: pjx3rNTZc8zgxWfuwXBOXgS3sqk.roa (hash: WRGBj9YhrJQ6r6myfQ5P/R+NIt879XmbiNbiLcGeJP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:c1:10:ac:8e:08:2e:5c:11:01:a6:e5:8c:f9:3e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jun 16 08:00:30 2025 GMT
Not After : Jun 17 08:00:30 2025 GMT
Subject: CN=deeaf5de8e83512c9f6b7cc01a83527b946bcb67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:84:0b:f3:3c:e1:99:b1:6f:9e:a4:e8:9e:1b:
f2:b2:6f:e0:42:1e:62:d7:92:33:69:c4:09:31:40:
5c:d7:98:18:b5:68:f2:c4:9b:5b:be:e7:9c:06:0d:
3f:27:c4:cb:09:64:db:18:4f:a3:12:fb:ad:80:fc:
fe:45:b4:91:d1:ee:48:13:e0:07:1f:17:22:78:c9:
16:01:06:4f:ca:28:48:5a:c0:d3:d8:8f:54:f0:89:
26:55:01:8e:c6:60:30:72:56:73:73:25:78:ba:7a:
d6:a4:b1:47:98:67:0e:ac:4a:48:29:16:f3:88:65:
4d:0d:18:82:4d:fe:ec:1c:65:b8:1d:2a:97:17:74:
d2:cf:43:ac:a3:4c:35:6f:4d:3a:43:23:72:9c:1c:
9e:49:d7:42:61:50:41:e6:cc:6d:ef:e4:63:f3:87:
e1:26:d5:9c:cf:b0:8c:05:5a:dc:b0:b8:67:a7:63:
6f:70:73:15:26:43:8e:22:fc:f8:3e:7b:60:02:dd:
ce:c7:f1:7d:c5:be:36:f7:e1:cc:27:ec:5b:ba:e5:
7a:53:fd:0a:85:59:de:11:45:73:eb:68:18:fd:8b:
16:ab:85:5a:3b:0e:19:cc:59:d2:bf:30:70:34:ce:
25:a0:c1:1b:b7:65:65:23:3d:00:12:0a:46:14:09:
5e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:EA:F5:DE:8E:83:51:2C:9F:6B:7C:C0:1A:83:52:7B:94:6B:CB:67
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:75:ba:d6:26:3d:85:f4:5c:ec:58:21:51:c1:73:a2:2f:76:
31:0b:74:75:c0:8c:59:b5:57:30:98:30:21:35:a4:08:f5:ff:
de:92:64:c7:b4:19:cf:5e:a9:bc:82:d1:32:14:d7:cf:92:51:
78:e8:c3:94:df:60:b5:ad:1b:ca:c6:79:5c:56:63:69:d7:f2:
a8:f2:ed:9c:3c:1d:a6:32:89:81:eb:35:b9:49:f8:a8:55:6b:
7e:71:7b:a2:a2:94:01:0b:21:32:42:37:4a:35:ee:49:34:cd:
72:24:ef:0c:e5:19:30:0a:38:a7:bf:62:d9:cd:6a:b7:c3:9e:
79:03:72:86:8f:68:85:5b:f3:ac:f2:a8:86:68:57:df:d8:be:
94:f2:7c:98:d9:0e:dd:76:3d:5a:81:16:82:f1:83:5e:69:42:
81:02:19:31:6c:de:19:c6:e6:05:09:4a:fe:60:6e:fa:5b:fc:
a3:f9:4b:1b:5e:8b:b7:27:65:da:bf:a0:d1:5b:b1:d3:80:02:
3b:65:40:69:96:8b:06:bf:f2:21:ad:5f:e2:f5:87:73:be:7a:
c9:56:41:d6:d1:44:6c:dd:47:2a:c6:4c:4e:a4:1c:cb:a5:13:
bd:41:1e:13:69:40:32:9d:02:19:55:a1:74:40:70:47:a9:67:
2b:fd:ca:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 14:53:43 2025 by rpki-client