Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json)
Hash identifier: Tq58R81d2P/nPxUFnzS4YjeaVxpvRMbSDUNUCbC0c9g=
Subject key identifier: 90:F8:16:03:0E:41:BE:22:BA:4B:8B:32:97:DD:25:DC:43:64:06:FE
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 0197681779533912A7636E2CD7CD2E396D6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
Manifest number: 1363
Signing time: Fri 13 Jun 2025 07:00:58 +0000
Manifest this update: Fri 13 Jun 2025 07:00:58 +0000
Manifest next update: Sat 14 Jun 2025 07:00:58 +0000
Files and hashes: 1: 3nrrtsZJ-IpATR6f6X0fXP8P3Ds.roa (hash: dHLYJp8vBdcpEI62KQkymjAsJXGywGpijB0UQKFJ6p4=)
2: b3rpvlrUc4F3iSwCht-ScFiNdQU.roa (hash: IxL38OMcTHb5h0kfUl/vgqGG9zstz9MS/9BQOovbMEE=)
3: o-IAHNtlfJTe0lrMjkAn3EfKWfQ.roa (hash: 4yZoP16QAdZ03Ygf8PchIKIjGuMurg8hghXjeARQmNw=)
4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: ANXrmOq3XzuzDIeGOs1006mcc5AYlCdiXsXkHEk1svI=)
5: z9pY0mNZw1275Un36HrGri4KO4o.roa (hash: YWMIyf15z9zL0EObbho/vFT6JF3XUpar4rPteqovYLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:17:79:53:39:12:a7:63:6e:2c:d7:cd:2e:39:6d:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Jun 13 07:00:58 2025 GMT
Not After : Jun 14 07:00:58 2025 GMT
Subject: CN=90f816030e41be22ba4b8b3297dd25dc436406fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:40:f6:3e:f1:8e:6b:f8:38:46:22:7d:89:69:
c6:ba:f6:54:f0:95:b1:32:0a:61:f5:65:83:23:b6:
f3:42:0c:c3:ad:c7:e8:45:9e:4c:04:d0:c1:08:e2:
14:30:23:89:09:9a:bf:d4:63:7b:12:c5:52:41:3a:
41:09:59:f7:da:54:5f:98:79:9f:0f:e4:25:58:09:
f7:bf:b2:6a:e2:c8:b5:fe:4f:cf:16:c4:c5:e7:b5:
58:f1:c0:d7:90:0f:b3:11:ed:cc:8f:33:d2:4a:63:
2b:5a:ed:99:82:bd:3d:bf:d7:ac:7e:64:9d:f8:1d:
af:cd:54:a5:7a:62:7d:f5:a2:3b:31:0c:3f:7e:21:
62:dd:14:f3:56:f0:04:92:37:11:fc:57:4c:7e:6c:
e9:1d:5a:4b:95:67:3d:fb:3b:d2:09:ed:46:16:0d:
d0:19:6d:e0:4b:d4:fb:4b:f8:11:01:f1:2e:85:71:
1a:2f:18:f4:37:ed:6c:1f:dc:86:6b:6b:a7:72:f5:
03:5a:a1:f5:85:78:bf:4e:44:5b:60:97:31:6b:79:
bd:80:8c:3c:a3:e6:61:ee:98:18:f6:d6:d9:9b:25:
82:68:57:51:e6:8b:20:72:c1:a9:fd:f0:82:11:9d:
f5:35:b6:0e:9c:45:ec:ad:23:8d:72:db:33:07:b4:
6c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F8:16:03:0E:41:BE:22:BA:4B:8B:32:97:DD:25:DC:43:64:06:FE
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:b4:e2:e0:49:e9:31:83:9c:db:77:71:8b:d9:76:fe:f4:9a:
45:e3:fe:4d:c6:ac:e4:f0:0d:33:90:b5:43:88:50:f4:bf:db:
04:fc:35:ce:be:35:80:df:0f:ca:e8:1b:8f:94:a1:05:eb:c9:
c6:9c:4b:51:b3:9e:98:4a:22:18:d7:cc:9e:38:f9:12:d2:cf:
73:92:99:a5:d9:5e:23:7c:c1:92:bd:e1:91:69:87:8d:8d:df:
62:ce:1c:3f:09:d6:cb:e2:13:68:69:8a:3f:85:93:ac:df:a3:
02:5d:92:8c:2f:be:d2:94:ab:f3:72:a9:9f:e8:f9:40:75:d6:
c8:7c:37:c4:53:46:38:d7:51:4a:d6:ed:15:ba:4d:5e:10:85:
2c:2b:cc:34:e8:f3:87:33:9d:81:13:40:75:ab:37:27:e4:aa:
da:5b:d3:7a:b1:57:97:7d:96:52:b8:a5:3e:77:08:3e:ed:3c:
17:b7:c8:41:34:80:45:6f:24:de:43:a2:1a:c7:01:e6:fc:c8:
ae:ea:27:6b:b2:d7:8e:76:8d:33:24:92:b9:cb:a9:57:40:1b:
08:48:b4:e5:0f:54:84:82:8c:4e:8e:2c:c2:fa:88:bb:95:7f:
f5:7b:00:75:48:fe:76:21:25:96:10:f0:19:75:1d:95:8b:92:
45:36:83:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:38:05 2025 by rpki-client