Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
File: pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft (raw, json)
Hash identifier: KTM3/TBfx4sLFmLrzsE9uR/RdEr4lpg9vdPvClo3NYg=
Subject key identifier: FC:67:F0:2E:3B:16:AD:96:4C:30:C1:E0:F3:B8:31:5F:81:6E:67:10
Authority key identifier: A4:AA:9B:CD:06:EA:6C:56:5D:D9:07:CA:04:E5:07:7D:68:C0:66:4F
Certificate issuer: /CN=a4aa9bcd06ea6c565dd907ca04e5077d68c0664f
Certificate serial: 01974A0CE1EF5B5E1329AA9A2B0C5D611C7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 11:00:47 +0000
Manifest this update: Sat 07 Jun 2025 11:00:47 +0000
Manifest next update: Sun 08 Jun 2025 11:00:47 +0000
Files and hashes: 1: pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl (hash: 07fA/za6k3rvS13xon/SQgJWtaMDZL2f/28PWEtRg9w=)
2: vUo_vlJ6sLUoSusR9Owa3qVO6yc.roa (hash: tQbWOVu74034awYo0QKVFApUcQf9SPwefFwA/Lt3iQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e1:ef:5b:5e:13:29:aa:9a:2b:0c:5d:61:1c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4aa9bcd06ea6c565dd907ca04e5077d68c0664f
Validity
Not Before: Jun 7 11:00:47 2025 GMT
Not After : Jun 8 11:00:47 2025 GMT
Subject: CN=fc67f02e3b16ad964c30c1e0f3b8315f816e6710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5d:12:6a:c0:aa:61:ee:99:5f:5a:3e:d7:c9:
72:87:7b:50:80:61:8b:19:2f:9a:5e:c4:5f:79:85:
0b:45:5e:60:7f:63:bd:8a:bb:2c:f8:cc:83:ad:03:
96:13:c3:fa:05:c9:98:58:da:cb:56:b8:0c:2a:aa:
21:59:28:49:1c:27:db:b9:27:be:5c:00:f9:fd:36:
5d:ec:67:41:8c:df:12:88:fe:24:11:8d:5d:9f:d0:
1c:52:cf:dd:f8:fc:10:52:57:af:6f:87:93:ea:94:
3a:66:06:eb:c5:fe:a7:e2:6b:46:3d:70:fd:9e:71:
58:51:9e:32:3a:e1:39:3c:bc:02:b4:a8:9a:b5:bc:
d0:5e:f3:97:8d:4d:56:b5:98:a3:eb:e8:a1:ad:2d:
7d:c9:7f:c4:63:06:f9:8e:61:48:d1:94:b0:2f:6f:
4f:5a:cd:ab:5a:f5:f7:43:c9:15:51:27:11:13:ca:
d0:33:e5:53:4a:22:64:bf:20:b1:07:d7:65:dc:57:
19:6f:73:58:5d:95:af:df:55:2c:ba:eb:47:bd:13:
f8:3d:91:83:14:de:3a:78:25:47:14:5b:4d:f9:88:
c9:7f:cd:82:db:c9:d9:00:8a:88:91:09:4b:8a:6e:
b3:8e:f5:66:a1:b9:07:79:61:8a:7c:79:9d:09:37:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:67:F0:2E:3B:16:AD:96:4C:30:C1:E0:F3:B8:31:5F:81:6E:67:10
X509v3 Authority Key Identifier:
keyid:A4:AA:9B:CD:06:EA:6C:56:5D:D9:07:CA:04:E5:07:7D:68:C0:66:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:dd:9e:8e:12:5a:d1:e0:47:6b:fc:61:06:f0:49:f9:79:dc:
50:f5:f4:80:3e:46:59:e0:83:54:a2:f4:3c:89:79:db:14:6f:
64:05:8f:d1:d4:1c:24:78:0a:f6:60:f4:ff:59:1f:cc:c6:21:
81:74:c1:dc:51:8a:1c:75:83:35:68:62:4b:df:c9:2e:e9:5e:
63:f9:6a:c9:65:c3:03:17:6a:25:3a:f8:81:7e:e5:ed:b6:3a:
53:c3:2e:fb:3d:6a:93:cf:d8:74:21:9a:95:8f:1f:6e:2b:46:
b6:55:db:b1:0b:5b:89:01:da:57:6d:75:d0:1f:91:b9:9b:2d:
2f:18:39:63:fe:8f:6c:64:ec:9a:8a:34:b8:fc:45:65:46:56:
05:46:36:ba:da:94:52:07:7c:c7:e7:4c:88:e3:52:82:58:b1:
8a:57:9c:06:11:75:f2:0b:ad:48:96:90:11:af:10:21:15:8c:
0b:13:3b:8a:39:1d:41:b6:b4:8f:5f:f7:1c:2f:d0:8e:f1:80:
8b:a0:b1:07:13:84:83:53:a9:ea:32:b7:c8:89:ca:30:f7:7a:
1e:b6:db:ff:1e:f6:4a:48:07:42:51:80:0a:59:25:5a:89:df:
34:1d:03:15:9b:52:13:af:00:69:76:0e:ed:59:ac:bc:6e:4a:
02:35:6b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:57:30 2025 by rpki-client