Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json)
Hash identifier: Qa0+S1GuRo9xW4u811bznHt2X3PYw+EfEkApiV/hKmM=
Subject key identifier: CD:E9:02:92:A2:B6:7C:D0:A9:AA:0A:A1:04:29:16:71:49:0C:E1:01
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 0197715165C98702F749B0FB93E49B51D3A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
Manifest number: 1593
Signing time: Sun 15 Jun 2025 02:00:49 +0000
Manifest this update: Sun 15 Jun 2025 02:00:49 +0000
Manifest next update: Mon 16 Jun 2025 02:00:49 +0000
Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=)
2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: DkZlzlAJkXYouZHayT/Qdeh/V7R/iTS/DQuEpykEFFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:65:c9:87:02:f7:49:b0:fb:93:e4:9b:51:d3:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: Jun 15 02:00:49 2025 GMT
Not After : Jun 16 02:00:49 2025 GMT
Subject: CN=cde90292a2b67cd0a9aa0aa104291671490ce101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a8:ea:81:dd:cd:e4:98:23:5e:94:70:b3:2d:
58:d6:fb:47:39:52:2d:1e:ea:18:76:e3:5d:80:9f:
4e:ac:71:bf:d8:f2:fd:13:0d:8f:3f:8d:90:5f:fa:
41:6a:74:9c:81:be:0a:7c:cf:d9:6c:ba:38:2d:71:
4f:ae:ee:da:50:03:78:d8:81:07:ae:47:ce:6d:b4:
3e:ba:22:2a:d4:21:d6:66:0e:80:59:7e:7a:93:90:
43:d8:08:45:e1:62:5a:9c:e4:a6:bc:4c:70:15:5e:
9d:9c:3b:ed:e1:fd:39:ca:56:de:1d:0f:ad:2d:b3:
1a:4e:b6:9f:aa:98:d5:0b:5f:bc:b6:41:ad:38:f8:
30:0b:4a:f7:53:5f:fa:b0:02:ca:53:54:96:d9:e7:
27:c9:43:08:68:82:61:6b:f7:1e:2d:34:0b:57:a3:
a1:5e:96:f7:bb:c3:78:e2:95:33:04:5c:07:49:06:
40:fb:cf:8e:46:22:ee:35:be:8c:3c:53:37:d5:29:
0f:a2:6e:86:f1:0c:c1:0b:06:84:0b:2d:da:4a:89:
74:99:c1:5f:10:70:75:98:d3:0c:31:65:41:6a:be:
ff:b4:b9:db:f9:3b:89:76:f7:08:56:65:c5:99:b8:
8d:b9:06:33:ed:fe:f5:0e:4c:d4:aa:d3:fb:f1:91:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E9:02:92:A2:B6:7C:D0:A9:AA:0A:A1:04:29:16:71:49:0C:E1:01
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:72:4c:91:fc:f0:f2:fd:55:ee:1a:80:61:4b:a8:17:83:01:
f8:dd:ec:33:04:6a:57:37:de:e5:1c:c1:61:f5:b8:11:e2:21:
5c:0f:23:2b:8b:dd:3c:34:e2:f8:59:23:bb:ae:c6:39:77:2e:
b7:c8:83:04:f5:79:c8:7a:2a:7d:94:85:47:e8:ef:92:d2:23:
76:a1:70:fc:2d:ec:d8:46:c7:78:a9:1c:f9:db:7d:35:f9:24:
6f:d6:ac:35:e3:ad:d0:1f:d9:43:2e:3a:e9:ea:76:b1:64:93:
02:30:0a:fe:6e:66:67:e5:26:f2:8b:9b:b2:3a:0f:38:e4:d9:
1d:45:3c:7b:34:86:7d:cc:9b:0f:51:ca:1a:97:a0:23:b6:7d:
98:9d:52:68:84:ac:73:ed:dd:5c:3b:54:4b:ba:48:0e:e5:70:
bc:83:05:cd:aa:a6:26:1c:bf:d5:a4:be:7a:b2:52:e3:02:f1:
14:d4:3d:85:4e:ba:d0:e8:34:11:2c:6d:d3:e5:38:33:3b:20:
80:6f:75:65:c5:12:35:ee:7a:30:d3:9c:2d:57:52:63:96:44:
74:10:04:c6:7c:d3:15:e9:52:76:7f:56:63:b1:a4:00:1f:e3:
0b:bf:9f:c5:ce:d5:74:df:55:1a:29:6a:ce:d5:35:d7:f3:a5:
68:96:c8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:52:24 2025 by rpki-client