Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: frMXVS5SJE/MZugMXvwG1i7hD16dUJWaoaNOQrs8uDo=
Subject key identifier: D4:1C:55:7A:90:32:B2:1F:AA:1D:27:65:7F:00:01:1A:4F:EA:68:5C
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 01974B8D40AFCEF57947EA2FEAE0D1A240FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 150B
Signing time: Sat 07 Jun 2025 18:00:37 +0000
Manifest this update: Sat 07 Jun 2025 18:00:37 +0000
Manifest next update: Sun 08 Jun 2025 18:00:37 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: 0jbRzJOfhNXdGe6EOZ8yEks7/KadIrnu45hnAsk22fI=)
2: ZFcvFlhDWryyoXWXMpIDlrIOANM.roa (hash: vf4LDljSHDeogKMO6SAS7Y9xTDtYGGINc31+p97CZuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:40:af:ce:f5:79:47:ea:2f:ea:e0:d1:a2:40:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Jun 7 18:00:37 2025 GMT
Not After : Jun 8 18:00:37 2025 GMT
Subject: CN=d41c557a9032b21faa1d27657f00011a4fea685c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:90:4c:d9:0a:66:71:86:b7:37:25:08:f4:8d:
c0:54:aa:63:b2:e1:d0:ee:8a:b1:e6:22:44:b4:ee:
b2:77:4d:fe:c8:d4:aa:28:d9:63:e2:e6:23:02:72:
21:4a:1b:e1:11:8e:9e:74:4b:b7:39:1e:93:55:49:
22:3e:f3:6f:b3:8c:95:1b:a0:9b:f1:e6:24:d4:a7:
f1:9c:12:1a:de:99:88:ba:09:b7:9e:70:7c:ab:38:
27:97:51:fc:ab:97:23:be:66:c6:fc:35:96:ef:88:
60:d9:c1:76:87:84:c4:fb:91:80:c7:39:ce:a3:84:
a8:17:8e:d6:b5:38:7c:67:a5:ad:dd:0a:cc:bd:d6:
26:dc:43:c6:a3:0e:85:cc:4f:a9:8e:29:02:59:ee:
7b:0c:e3:3c:69:e3:4a:8f:fe:3a:79:0d:43:c0:69:
ad:3b:74:7b:b6:b3:58:b4:aa:42:1d:d8:bf:60:b6:
9a:34:f4:88:02:23:5b:fc:54:2a:e7:53:9a:56:ac:
d9:fb:c2:f2:fa:31:3b:2f:a4:b8:16:2b:f9:e8:67:
ce:9d:56:fb:c2:dc:92:00:62:74:30:1c:a2:8d:f8:
13:31:e5:2b:2a:2a:d1:11:b0:56:37:b1:ec:92:18:
8c:da:a2:6e:50:9e:ed:e6:7d:fc:79:6a:fe:6b:4d:
a0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:1C:55:7A:90:32:B2:1F:AA:1D:27:65:7F:00:01:1A:4F:EA:68:5C
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:f8:b0:cf:fa:6f:29:98:90:cc:14:e2:0e:61:ec:7c:2f:1c:
ef:8c:4a:4b:a9:d0:00:3e:d1:d3:a4:5a:2d:59:ff:81:d2:a9:
b0:ed:b2:cf:12:dd:c2:5e:df:f2:3c:a2:a3:66:8e:e7:c7:58:
de:bb:ce:cb:4a:6e:fe:92:09:87:f5:e5:ca:3a:5d:da:70:a7:
e5:69:d0:23:d2:a1:38:6b:a5:a4:8c:be:87:a3:12:95:01:2e:
95:9c:e8:35:15:d2:4a:de:23:70:2a:ee:68:56:49:35:db:7d:
7a:e1:d3:85:6b:c9:b3:b9:9e:21:2b:1c:d2:e0:5d:22:60:09:
71:3f:b2:a5:6f:fa:90:fc:55:17:8f:95:91:6e:d3:d8:a2:88:
6a:40:40:d3:c7:d0:de:6d:2b:2f:74:0e:cc:16:de:c9:fe:64:
10:55:f5:52:07:fe:f3:ae:b5:2c:d1:19:a0:51:e7:23:63:2d:
e7:da:59:31:a4:69:a9:19:eb:b3:0b:33:3d:60:1c:81:77:7d:
b4:c6:53:99:5b:bf:00:2f:4b:87:e6:3e:27:19:12:4c:7c:54:
24:22:52:e3:3b:e8:d5:df:d5:b3:dd:bb:4b:4b:d1:b3:39:e7:
e9:5c:22:86:79:e2:89:f6:82:8d:e7:52:90:b2:bb:ec:de:8b:
2f:9a:42:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:30:58 2025 by rpki-client