Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
File: PRKXkoZrFiE7VsW_pr66x8YYsVA.mft (raw, json)
Hash identifier: E7jK/d2euViLMVG6cdkJl0tqcm1iuZpn/VQHXER8xs4=
Subject key identifier: 97:A7:F4:3C:D3:91:6E:C0:99:51:A1:C9:31:06:0C:C5:1A:9A:5F:06
Authority key identifier: 3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
Certificate issuer: /CN=3d129792866b16213b56c5bfa6bebac7c618b150
Certificate serial: 01987F78778EE6043DB5EE479AA1B8CF7480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
Manifest number: 11AB
Signing time: Wed 06 Aug 2025 13:00:58 +0000
Manifest this update: Wed 06 Aug 2025 13:00:58 +0000
Manifest next update: Thu 07 Aug 2025 13:00:58 +0000
Files and hashes: 1: PRKXkoZrFiE7VsW_pr66x8YYsVA.crl (hash: fnA2mXRGcfPALCMzCej/3UI5LS+LAG2j3ku+mVblA/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:78:77:8e:e6:04:3d:b5:ee:47:9a:a1:b8:cf:74:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d129792866b16213b56c5bfa6bebac7c618b150
Validity
Not Before: Aug 6 13:00:58 2025 GMT
Not After : Aug 7 13:00:58 2025 GMT
Subject: CN=97a7f43cd3916ec09951a1c931060cc51a9a5f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f9:52:58:f4:45:bb:72:21:c9:0e:e2:63:ac:
ce:4b:cf:4d:67:75:0b:b1:49:ec:73:fd:ae:6f:63:
f3:ab:cc:c6:c5:3b:14:d9:81:fe:8a:5c:3c:e9:23:
a1:44:2a:f3:ab:92:99:58:bb:85:10:4c:e0:a5:36:
94:1d:48:d2:39:45:a8:80:d1:6a:0d:fd:8f:4c:ef:
ae:67:41:09:a3:81:4c:03:58:ad:a9:f4:32:d9:17:
31:19:6d:46:be:45:71:56:46:df:e0:03:04:cb:0d:
55:3f:44:e3:a6:b9:fe:98:b2:67:a7:85:6e:e9:aa:
96:73:35:f0:01:b4:3f:c9:ab:0a:fd:4d:cb:9f:c9:
1f:88:29:9c:93:a1:2f:3e:72:c9:3e:f4:b5:12:d3:
fe:80:11:19:a8:5c:89:f2:f7:43:92:9f:c5:56:34:
81:bd:fe:ef:a3:c7:e3:ad:df:90:96:8d:aa:83:47:
72:a5:22:33:6a:24:e8:13:e2:d5:75:4d:28:6c:29:
76:70:c0:94:8d:36:05:8c:e7:f1:9a:9a:0d:95:2d:
7c:28:b8:12:83:76:d6:60:c3:4b:99:db:56:aa:0c:
4f:d9:5c:71:7a:a7:d1:e3:6d:c8:97:4a:20:98:fb:
bb:e6:61:b1:5a:86:43:23:fa:e0:65:c7:93:66:4c:
47:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A7:F4:3C:D3:91:6E:C0:99:51:A1:C9:31:06:0C:C5:1A:9A:5F:06
X509v3 Authority Key Identifier:
keyid:3D:12:97:92:86:6B:16:21:3B:56:C5:BF:A6:BE:BA:C7:C6:18:B1:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRKXkoZrFiE7VsW_pr66x8YYsVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/56e9d5-ff45-4464-b2bb-610b9e72a6be/1/PRKXkoZrFiE7VsW_pr66x8YYsVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:95:4b:a4:e7:83:48:2b:d7:19:c7:0c:e1:ff:4b:91:82:da:
79:60:00:bc:d8:4e:a5:22:9b:f9:56:a5:39:4a:a2:2a:37:1c:
0a:9b:61:c2:ce:02:7d:e0:20:1c:19:a7:24:fb:51:1a:40:4d:
bd:80:59:e1:7d:8d:8c:4f:15:f5:35:9a:54:8c:b0:ea:0d:30:
f3:ab:18:69:0d:7e:de:a3:a3:e9:be:ce:d1:de:99:6e:5b:9c:
54:84:e6:2b:d5:2b:8d:87:68:05:bd:e8:ab:24:a2:5c:f0:2e:
7b:c3:37:96:cd:2b:d0:00:ae:bd:8e:4f:df:0d:81:05:a7:65:
bb:33:00:fe:a0:b1:1e:02:83:41:9a:b0:38:42:bb:63:46:0b:
c4:2e:6a:31:5c:61:bb:37:96:fe:c9:0c:2c:99:3a:2a:26:37:
db:88:2c:9a:ad:f3:55:ba:2b:26:a5:7d:c0:0f:45:08:5a:ba:
f6:ec:30:0a:eb:f1:a6:70:42:39:bb:0e:a7:e7:96:30:72:e7:
db:72:af:32:e9:41:6f:18:5f:60:66:29:f1:07:e7:c5:b9:6b:
ea:6e:3b:93:b6:97:9f:c9:48:e8:db:67:09:36:15:01:c2:d3:
7e:73:7a:56:2a:6a:4b:07:8a:a4:67:75:50:e6:52:9d:5e:14:
0c:a8:8d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:41:38 2025 by rpki-client