Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
File: PE71UtfFcTYTTntE1pfLAs3n2H0.mft (raw, json)
Hash identifier: uYP21FiXpbUw87vyt0+1VZHp3gCNGHAJdPMOjo5VvtI=
Subject key identifier: 3D:50:DD:49:75:85:39:75:E0:F3:C4:45:02:9B:6F:A5:4D:29:DC:30
Authority key identifier: 3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
Certificate issuer: /CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Certificate serial: 01984475963F49570B9260FA72C711F56754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
Manifest number: 0A63
Signing time: Sat 26 Jul 2025 02:00:13 +0000
Manifest this update: Sat 26 Jul 2025 02:00:13 +0000
Manifest next update: Sun 27 Jul 2025 02:00:13 +0000
Files and hashes: 1: PE71UtfFcTYTTntE1pfLAs3n2H0.crl (hash: zPuaIWn4bUdOO9CHAnZwZ5bSrlMm7Z+OOaiwkeTEeyA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:75:96:3f:49:57:0b:92:60:fa:72:c7:11:f5:67:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Validity
Not Before: Jul 26 02:00:13 2025 GMT
Not After : Jul 27 02:00:13 2025 GMT
Subject: CN=3d50dd4975853975e0f3c445029b6fa54d29dc30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c2:46:1b:12:5f:36:d1:d8:7a:04:ca:61:45:
bf:b6:08:91:16:4b:de:a7:ef:44:27:ff:b9:6a:b1:
4b:ba:4a:d2:f0:8c:1a:ab:9f:1b:b6:44:c8:74:67:
9a:eb:90:d7:52:3d:08:f6:a7:0b:55:b5:64:5a:7b:
cb:eb:f0:4e:5a:31:1c:3e:dc:56:7d:e5:a6:8f:d1:
75:eb:6d:d8:77:f9:b1:94:98:81:05:97:fe:c0:87:
1b:3b:4d:52:6c:49:dc:80:03:ab:0f:ad:8c:12:c0:
c9:4d:d5:80:5b:53:05:18:be:50:29:5c:00:00:a4:
25:87:57:06:f6:29:93:16:19:e2:be:28:d0:28:f4:
ad:a4:74:30:ba:05:69:59:c2:1b:91:33:bb:bc:85:
05:df:ec:a2:b0:e5:9a:a8:28:80:b5:85:ee:bf:bd:
53:75:6e:5d:78:ec:4b:4e:48:15:27:1c:fc:d4:cd:
ca:16:a6:cb:9f:f8:07:56:f4:c4:d9:67:8d:a5:84:
5e:04:0b:66:b5:19:58:39:aa:d1:6b:5d:ac:c3:16:
aa:dc:b3:e2:a3:4d:47:04:66:92:53:d9:f4:92:0f:
15:20:1e:1e:bb:6e:ab:b9:e7:61:d9:f3:c0:d5:b5:
ac:58:74:b1:80:36:53:d4:1b:dc:14:7b:c9:89:ee:
e0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:50:DD:49:75:85:39:75:E0:F3:C4:45:02:9B:6F:A5:4D:29:DC:30
X509v3 Authority Key Identifier:
keyid:3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:92:c5:cb:bd:20:d3:b2:0e:c9:92:6f:c8:57:82:3e:14:77:
7f:a0:9d:08:6d:f1:99:1f:4c:58:ed:07:28:cf:dc:d6:28:2d:
53:72:d4:46:5b:5b:aa:5d:da:b3:5c:aa:fd:23:7c:87:c7:47:
aa:f1:73:8c:20:4a:52:7a:07:48:12:51:7a:c9:b7:3e:43:d9:
a7:2e:b9:7f:1b:95:f4:ed:27:88:56:b0:9a:d9:d1:7e:9a:d0:
5b:30:2f:9f:cb:31:9d:cc:c7:28:7b:e8:aa:dd:b5:6d:9b:26:
4b:5c:18:99:40:49:a8:b5:aa:29:45:76:ff:aa:06:f5:d4:5a:
93:5a:5f:6c:fb:ed:9c:9c:c8:31:70:f1:c9:1d:b5:31:28:8f:
1d:b3:7e:d5:85:aa:1d:4a:5a:5f:dd:b1:e9:9b:4d:1b:6a:c7:
e9:5b:70:95:10:1d:53:9c:fa:42:ef:29:af:8d:07:97:af:ff:
66:0c:1c:91:c0:8b:a0:48:82:e6:fe:ac:35:c6:9f:0b:9e:7e:
10:0d:b4:57:a1:be:90:c3:7c:e6:1f:29:c4:5f:97:31:7b:51:
99:92:0c:fb:63:2f:3b:c8:9a:de:25:bf:3b:53:49:b8:e1:b7:
4d:b6:67:4a:cd:37:39:6f:65:d2:76:78:27:47:76:f7:e4:38:
e9:0f:6f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:55:27 2025 by rpki-client