Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.mft
File: PrkDKEodFdwVitcYLqC854bOsq0.mft (raw, json)
Hash identifier: Ri/M7/78HbK+fm2L3kGVfzGt+V616C5lRQAXOEPWPiQ=
Subject key identifier: AD:9B:FF:7A:E0:14:BA:19:58:F7:03:45:87:DE:12:C8:F9:94:A3:9A
Authority key identifier: 3E:B9:03:28:4A:1D:15:DC:15:8A:D7:18:2E:A0:BC:E7:86:CE:B2:AD
Certificate issuer: /CN=3eb903284a1d15dc158ad7182ea0bce786ceb2ad
Certificate serial: 019851FA7810A457E3B25DC1579983864F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PrkDKEodFdwVitcYLqC854bOsq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.mft
Manifest number: 0260
Signing time: Mon 28 Jul 2025 17:00:25 +0000
Manifest this update: Mon 28 Jul 2025 17:00:25 +0000
Manifest next update: Tue 29 Jul 2025 17:00:25 +0000
Files and hashes: 1: 0zozhddFGxlaDU0eMcPGzCbmd6I.roa (hash: HhrjUsFCH402W4XdhuJKvzUEm96xMJ7A0tUrjiNFw6Y=)
2: 2z44fAwQyyEeWoKCF_G5EjvRE_Q.roa (hash: Z34LIfgBtYIlenX8BP2t8IUqfPpsJULSyBoNS38aJWk=)
3: 4kquCz-i6kJDkS1O2XQAUk_agCI.roa (hash: Pez2ubHTLSNld28U0wPkDbmTvFBCVvXm37XAiS5Y0fA=)
4: FukUNQ-1MuiT_YZ8AK4IiNn3ZEM.roa (hash: Q+TDgTJT6+GCL8Icb4N9FEYd+k8ybFyashs6L8F6jRA=)
5: Ih96IDuDaMSdBEjycgfBHMlpv1k.roa (hash: gzRNZYScETmPIIaSnlA3ny9nEyJmD80+p4ZodHIyvdw=)
6: PrkDKEodFdwVitcYLqC854bOsq0.crl (hash: gbH2FZkXB75J6deqIbHhHNQQkz5xMJdon2WjJD/OQeo=)
7: fDTEunNvzlH5X-k5xdeAmWjVRig.roa (hash: kSsYzCwppDZTwjMBzSM9jNvsq5Yv3fwitPhSPp+j0to=)
8: s8x3Zl1NTIQSd2VaNW3r7mX9Qt0.roa (hash: 955pA2YQRo69WOfGT4zy28ccgCxBC3J2614wD9x3OY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PrkDKEodFdwVitcYLqC854bOsq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:51:fa:78:10:a4:57:e3:b2:5d:c1:57:99:83:86:4f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eb903284a1d15dc158ad7182ea0bce786ceb2ad
Validity
Not Before: Jul 28 17:00:25 2025 GMT
Not After : Jul 29 17:00:25 2025 GMT
Subject: CN=ad9bff7ae014ba1958f7034587de12c8f994a39a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:14:7a:bc:fe:73:30:b8:83:07:27:41:e7:89:
1b:66:72:00:e7:5e:33:5d:7a:92:8e:f6:0f:91:e4:
16:f9:ec:87:ad:4a:66:bc:02:53:54:d4:68:87:24:
0a:1b:b5:42:7e:ec:6b:69:45:38:c1:b0:e8:e0:17:
93:e4:8d:bf:e4:73:44:b4:25:61:f4:cf:65:84:cf:
d1:c0:3a:ae:16:4e:86:25:d3:58:2f:e8:17:4f:cb:
bc:50:3f:7b:72:3a:7f:f9:f2:18:4c:a2:fe:20:41:
4e:8a:e0:66:19:53:b5:be:01:ea:13:f1:56:1a:32:
be:33:f4:6d:f2:3b:9f:66:f3:74:e6:dd:68:04:3e:
0d:49:35:1a:53:74:7b:de:32:df:c2:45:02:10:36:
d4:b7:26:8f:9a:f3:76:55:76:ca:91:ef:72:21:b8:
2a:d6:02:05:11:fb:35:71:96:0c:c9:2e:17:25:0e:
e7:2e:1b:6f:13:20:0e:18:c3:8a:09:9f:67:e3:3c:
d4:e0:a4:ac:08:e7:4a:59:77:72:44:21:15:02:3b:
75:c4:a5:28:00:f4:30:11:fd:85:14:90:81:ef:94:
b0:5c:07:4a:65:e1:5c:66:2e:77:67:3f:23:bf:60:
f1:92:44:a8:4e:ac:8b:67:02:1f:ce:d0:27:d1:aa:
71:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9B:FF:7A:E0:14:BA:19:58:F7:03:45:87:DE:12:C8:F9:94:A3:9A
X509v3 Authority Key Identifier:
keyid:3E:B9:03:28:4A:1D:15:DC:15:8A:D7:18:2E:A0:BC:E7:86:CE:B2:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PrkDKEodFdwVitcYLqC854bOsq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92ea9f-b12e-4dd5-9bd3-b77dc8dc1c7e/1/PrkDKEodFdwVitcYLqC854bOsq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:34:8b:53:b9:a5:e1:b2:00:38:b0:80:9f:9d:5d:0d:8f:18:
23:7c:52:63:2f:6e:34:26:58:8a:ea:e9:98:a5:ab:73:2e:f8:
4c:d2:d1:31:54:47:46:61:be:c5:fd:7a:84:d4:5f:68:43:0b:
2a:2d:4a:83:a2:84:56:0a:b1:30:d0:71:73:55:7c:0c:e1:6f:
1f:11:43:a5:f3:48:d1:2a:37:ed:11:60:db:41:9d:2b:15:70:
19:54:41:54:9b:e9:28:99:a2:ae:a2:b8:89:2f:af:ce:af:0b:
8d:18:83:61:7d:5b:c0:b8:43:23:a6:24:bd:42:d9:c1:dc:ab:
29:87:0f:ed:b4:c4:37:85:e6:b3:b1:5d:c1:8b:29:63:b9:b6:
14:d2:7e:27:22:52:bd:8d:19:ab:c2:09:6c:a7:a9:84:eb:7f:
74:0f:57:34:1e:fe:e5:26:df:33:a1:d8:9d:ad:d4:24:26:8c:
91:af:22:57:5c:39:11:a1:bd:7c:31:52:91:1b:35:ae:54:1c:
55:aa:33:fe:2b:ba:fb:24:f5:93:25:8a:9c:8a:a1:dd:95:ff:
5c:25:1e:95:eb:37:0d:65:9b:9e:d3:e3:65:35:8c:2d:fa:b4:
e7:ab:8e:6c:1f:dc:93:08:db:a8:90:49:1b:74:ef:51:08:ae:
a6:0c:6c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 03:25:20 2025 by rpki-client