Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
File: PRKXkoZrFiE7VsW_pr66x8YYsVA.mft (raw, json)
Hash identifier: /BYrjL3NUPJAqJjn9d6MaRFqeQioaDrbAcA/RUTWq+w=
Subject key identifier: 9F:10:1D:78:70:AA:38:3C:2C:CB:D4:29:E9:86:30:3C:B4:2C:BF:80
Authority key identifier: 3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
Certificate issuer: /CN=3d129792866b16213b56c5bfa6bebac7c618b150
Certificate serial: 019769609F6DD91FA2344A5BD1FE50525339
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
Manifest number: 111B
Signing time: Fri 13 Jun 2025 13:00:29 +0000
Manifest this update: Fri 13 Jun 2025 13:00:29 +0000
Manifest next update: Sat 14 Jun 2025 13:00:29 +0000
Files and hashes: 1: PRKXkoZrFiE7VsW_pr66x8YYsVA.crl (hash: kxZAMbZp+rUXxApCVpqGAJLP2VnqsZHNJ99ijGFBbi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:9f:6d:d9:1f:a2:34:4a:5b:d1:fe:50:52:53:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d129792866b16213b56c5bfa6bebac7c618b150
Validity
Not Before: Jun 13 13:00:29 2025 GMT
Not After : Jun 14 13:00:29 2025 GMT
Subject: CN=9f101d7870aa383c2ccbd429e986303cb42cbf80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:85:f4:66:97:b4:86:02:b4:7b:25:05:fb:0c:
2c:f3:07:04:14:59:f9:57:f5:03:fb:a8:03:58:00:
c8:57:3b:4a:ef:e4:3a:99:6e:6b:6a:9c:52:05:14:
42:e9:5a:ea:e1:a4:12:96:37:ad:9f:ac:81:8f:5f:
47:82:48:3e:b4:fe:73:e6:75:19:32:99:fc:f8:4b:
69:e7:54:00:b1:07:0d:0e:84:99:aa:bc:ea:51:9b:
3c:4a:24:1e:6a:ab:48:2f:80:87:ef:67:8e:b6:68:
32:5a:6d:98:9e:8a:b2:21:64:7d:ec:ba:b7:9f:ac:
44:b7:59:a5:b9:52:3e:62:3a:14:4d:97:b0:3e:21:
6a:c4:48:16:e0:52:42:9f:3d:56:57:cc:de:32:ee:
8e:b2:a7:0c:20:26:51:5c:fc:a9:67:e7:fb:f4:4d:
c8:95:ba:29:f0:d0:aa:7b:e7:3b:be:eb:47:0f:33:
25:48:db:a4:af:f6:61:93:9f:c6:2f:fe:c7:9e:b8:
c0:4c:af:b7:da:35:bc:af:b0:64:f4:3a:e3:be:80:
42:93:53:7f:fb:03:2a:94:84:b5:55:3e:29:51:6f:
96:73:63:51:7f:56:e1:16:b9:92:f8:3c:37:65:5e:
15:2f:0b:1a:62:6a:5c:1e:8b:75:2a:0a:19:e5:ea:
eb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:10:1D:78:70:AA:38:3C:2C:CB:D4:29:E9:86:30:3C:B4:2C:BF:80
X509v3 Authority Key Identifier:
keyid:3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:4a:b9:21:54:73:00:87:eb:2a:28:76:35:94:5e:a5:22:de:
51:9f:d5:04:79:b4:9a:f3:28:4f:c5:d1:58:50:29:fc:47:81:
9f:dc:6b:ae:7e:e0:b2:5f:0e:32:7a:a5:b1:59:c7:8b:59:0e:
85:03:a2:16:49:7f:b0:d9:ad:0b:69:0e:98:34:08:6d:2d:06:
98:33:84:e1:d6:cf:04:44:38:17:6a:a0:47:bc:6c:af:79:87:
f6:14:80:42:47:53:d5:bb:cc:1c:bb:3e:00:1f:17:5c:8f:34:
c5:66:e2:3e:62:a3:62:ea:fd:95:31:db:68:d5:59:6d:5c:ff:
5c:31:0e:f8:bd:fd:06:50:98:47:03:6f:b1:af:4e:79:82:f4:
9b:dd:92:76:df:87:f6:3d:50:03:2f:da:df:fd:ef:47:af:53:
bf:a4:b6:74:74:04:58:a9:a9:e8:f4:55:25:0e:2a:85:7e:00:
c3:b5:3b:c2:9c:ed:b4:d3:5b:c3:46:b6:b6:35:03:28:fd:8c:
a8:c0:52:ca:58:4c:79:89:56:57:d8:8d:39:09:cc:be:ce:38:
d7:7b:f3:6b:42:40:b9:30:cf:f3:7c:9f:43:50:4a:84:0f:eb:
45:cc:e2:a5:f5:38:69:07:6d:9e:a4:cb:dd:de:42:ea:0a:30:
77:76:07:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:27:31 2025 by rpki-client