Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: kj92A5gvn3Jn8DsB1YcBR2EZmMRrByCZ92YrT4YgeyY=
Subject key identifier: 96:3B:95:CC:F3:5B:E2:40:1A:F4:C1:8D:23:BC:48:5D:13:29:5B:BD
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 01974BFB156FAABA849BB07B9DA9A3375628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 150F
Signing time: Sat 07 Jun 2025 20:00:35 +0000
Manifest this update: Sat 07 Jun 2025 20:00:35 +0000
Manifest next update: Sun 08 Jun 2025 20:00:35 +0000
Files and hashes: 1: ET0yOb6N2KPn9sEOeciwveLzfFQ.roa (hash: 5UaUVXzPjnKQ9N0meCwxNszuKgkyrbDITbh3/+eJ6rg=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: SqDy3S/Qq1vkFUq8/Gpcr7wISoSguY8yTlWPwuDf41Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:15:6f:aa:ba:84:9b:b0:7b:9d:a9:a3:37:56:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Jun 7 20:00:35 2025 GMT
Not After : Jun 8 20:00:35 2025 GMT
Subject: CN=963b95ccf35be2401af4c18d23bc485d13295bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:71:fe:47:50:20:50:e0:c0:68:52:82:03:39:
8d:47:28:a0:2e:2a:93:4a:7f:5a:c8:22:61:59:06:
f5:b1:05:f7:fb:bf:f6:31:c6:8f:c4:65:bb:ed:00:
33:8c:c6:e7:93:b7:a7:1c:1d:3c:49:f5:25:91:80:
69:c1:cc:b7:4a:94:46:d4:8e:ff:cf:be:98:88:ab:
5c:3e:e8:29:21:87:31:d5:26:74:f3:a0:fd:2e:0f:
f6:da:f4:00:12:8d:6c:09:10:86:35:d2:f3:6a:e0:
a9:e5:52:80:ef:3f:88:84:e1:96:80:06:ac:2e:45:
c3:c5:38:0f:6c:62:60:70:11:fd:48:ef:c4:09:f1:
bc:76:d5:98:e2:2c:95:99:e7:f0:ee:17:de:b7:08:
89:37:d5:53:6a:d0:3f:61:f9:5e:7b:b8:8e:9f:4f:
53:e7:01:a8:0f:56:7a:10:17:59:1e:74:22:fd:35:
24:0a:0d:dd:e1:40:c2:95:35:e9:5e:bd:f4:ed:0a:
33:56:53:f7:3f:98:68:f7:c1:b2:a5:4a:63:b8:8a:
2b:12:e7:06:bb:d1:fd:8d:b9:e4:68:d6:cf:5d:9a:
93:2e:ac:40:6c:7f:43:d6:c9:6d:97:7d:4b:7b:e6:
6a:18:cf:c8:5c:b0:e3:7b:44:8f:d8:57:6f:05:2e:
f3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:3B:95:CC:F3:5B:E2:40:1A:F4:C1:8D:23:BC:48:5D:13:29:5B:BD
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ad:6b:6c:91:60:ef:7e:73:d2:26:2e:08:d3:da:98:0c:ac:
33:a0:bb:37:76:95:18:ce:41:19:a6:d6:cb:8d:13:cb:eb:04:
15:c1:8b:b8:d5:75:28:8e:53:c9:87:77:60:9a:d0:18:a6:90:
1c:c7:90:7a:f5:06:a4:f0:63:e7:06:0d:68:7c:6a:41:b2:2d:
f3:53:1a:ad:6e:cf:f5:18:3c:e7:be:5e:b0:a8:65:d4:21:d0:
51:0d:63:fe:db:51:f0:9f:a4:5f:b9:6d:80:b8:4f:a6:43:9c:
d4:23:f8:5f:d6:12:e4:7a:da:1e:fe:1a:4c:6e:5f:5e:af:c7:
06:ea:04:86:cd:bc:ce:c9:c6:f9:9b:50:48:f6:06:b2:9f:78:
13:9b:c0:9f:f9:73:a2:40:4c:38:f4:c3:76:51:93:51:50:a4:
10:ad:5a:1e:65:e0:df:c2:3e:c4:ad:03:90:51:0d:1a:69:82:
a4:55:13:1d:c0:78:70:7e:f8:bf:e8:5e:c5:6c:5c:ef:5e:0c:
39:8f:ef:40:33:64:cf:8f:e9:26:a8:16:a3:86:de:84:4c:5d:
46:26:62:ea:6f:7e:f7:ad:03:b8:00:8e:b5:99:cc:e1:a4:ed:
a5:0a:25:4f:b0:ff:91:86:c7:31:37:41:23:c3:2b:4a:a3:a9:
97:13:9b:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdL+xVvqrqEm7B7namjN1YoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmMTcyNDM5NTk5ZDdkYTUyNTc5Nzg5OWJmMjEzYjhlNjM1
NTQ5MTQwHhcNMjUwNjA3MjAwMDM1WhcNMjUwNjA4MjAwMDM1WjAzMTEwLwYDVQQD
Eyg5NjNiOTVjY2YzNWJlMjQwMWFmNGMxOGQyM2JjNDg1ZDEzMjk1YmJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHH+R1AgUODAaFKCAzmNRyigLiqT
Sn9ayCJhWQb1sQX3+7/2McaPxGW77QAzjMbnk7enHB08SfUlkYBpwcy3SpRG1I7/
z76YiKtcPugpIYcx1SZ086D9Lg/22vQAEo1sCRCGNdLzauCp5VKA7z+IhOGWgAas
LkXDxTgPbGJgcBH9SO/ECfG8dtWY4iyVmefw7hfetwiJN9VTatA/Yflee7iOn09T
5wGoD1Z6EBdZHnQi/TUkCg3d4UDClTXpXr307QozVlP3P5ho98GypUpjuIorEucG
u9H9jbnkaNbPXZqTLqxAbH9D1sltl31Le+ZqGM/IXLDje0SP2FdvBS7zewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJY7lczzW+JAGvTBjSO8SF0TKVu9MB8GA1UdIwQY
MBaAFD8XJDlZnX2lJXl4mb8hO45jVUkUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEt
ODg3MzMxZWZiNzE1LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEtODg3MzMxZWZiNzE1
LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO61rbJFg
735z0iYuCNPamAysM6C7N3aVGM5BGabWy40Ty+sEFcGLuNV1KI5TyYd3YJrQGKaQ
HMeQevUGpPBj5wYNaHxqQbIt81MarW7P9Rg8575esKhl1CHQUQ1j/ttR8J+kX7lt
gLhPpkOc1CP4X9YS5HraHv4aTG5fXq/HBuoEhs28zsnG+ZtQSPYGsp94E5vAn/lz
okBMOPTDdlGTUVCkEK1aHmXg38I+xK0DkFENGmmCpFUTHcB4cH74v+hexWxc714M
OY/vQDNkz4/pJqgWo4behExdRiZi6m9+960DuACOtZnM4aTtpQolT7D/kYbHMTdB
I8MrSqOplxObZA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 00:49:37 2025 by rpki-client