Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
File: PxyTi7IGo4ltBkwIUvqYhf8s69k.mft (raw, json)
Hash identifier: JniF6mWFsNJZRO7Gacy7W+gZRFkF6BonEl6mIGkaXyI=
Subject key identifier: 12:A3:D9:20:7A:E1:E6:30:94:32:2C:33:DC:69:8B:FE:0A:96:92:DF
Authority key identifier: 3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9
Certificate issuer: /CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9
Certificate serial: 019748557E784C368DA26AB384F17259FFC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
Manifest number: 02AB
Signing time: Sat 07 Jun 2025 03:00:51 +0000
Manifest this update: Sat 07 Jun 2025 03:00:51 +0000
Manifest next update: Sun 08 Jun 2025 03:00:51 +0000
Files and hashes: 1: PxyTi7IGo4ltBkwIUvqYhf8s69k.crl (hash: 6I9OikjMkLTmPFQ7SHag3DDsoMJT5nMvbBr9dh5JZuM=)
2: Qtry2kaoKZp9d0kAKEVlWC9a8yA.roa (hash: 4P/5LEPA+7GLBNpRQSC8l1dlaoBUTtizVxJtdSJCc5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:7e:78:4c:36:8d:a2:6a:b3:84:f1:72:59:ff:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f1c938bb206a3896d064c0852fa9885ff2cebd9
Validity
Not Before: Jun 7 03:00:51 2025 GMT
Not After : Jun 8 03:00:51 2025 GMT
Subject: CN=12a3d9207ae1e63094322c33dc698bfe0a9692df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:f7:23:da:15:8f:97:87:58:a5:98:8a:9b:
31:ab:45:8e:cd:21:c7:6a:34:17:a4:5b:3b:c6:a3:
42:9a:8c:3e:b6:06:0b:89:76:1f:3a:87:a6:9b:fd:
75:ff:77:bc:dc:c8:2e:d0:41:84:15:7d:d9:2a:29:
b2:9a:2e:94:a5:ee:36:ff:ec:0c:7d:43:ee:24:b8:
d1:81:88:f0:79:59:bf:f0:24:e2:83:df:fb:2a:b9:
9d:5c:1a:97:03:cc:a6:aa:0f:5a:b5:e4:91:fa:14:
de:0a:a6:a5:29:5f:43:b4:9e:16:9c:ed:b9:53:cf:
2b:c9:e5:47:86:2f:d5:30:fa:2f:7b:7b:81:57:80:
dc:f7:75:b9:5e:31:24:cd:88:b8:4b:a0:9f:fc:e0:
1f:45:ea:74:aa:4d:a4:09:4c:38:74:5a:94:7d:dd:
99:9a:eb:32:d3:c0:a4:9a:92:1e:19:34:00:e2:a8:
71:d0:2c:8a:20:d7:b3:4a:fa:d6:b6:ad:63:d2:41:
51:80:4c:88:42:e5:68:04:57:00:37:d4:c0:7b:de:
0e:99:4c:84:68:b7:25:32:18:86:cb:6b:ed:50:87:
dd:1e:bb:49:77:f5:f7:ae:40:58:25:c0:c9:19:22:
f0:9e:eb:16:3d:b1:42:72:ec:df:b6:ef:14:50:a7:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A3:D9:20:7A:E1:E6:30:94:32:2C:33:DC:69:8B:FE:0A:96:92:DF
X509v3 Authority Key Identifier:
keyid:3F:1C:93:8B:B2:06:A3:89:6D:06:4C:08:52:FA:98:85:FF:2C:EB:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxyTi7IGo4ltBkwIUvqYhf8s69k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b249c-b40e-4fb9-8ff4-e0526033a484/1/PxyTi7IGo4ltBkwIUvqYhf8s69k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:c6:75:d0:30:eb:f2:e1:d4:d3:6d:9e:a2:b8:ef:74:58:a5:
ae:d4:4d:92:15:73:75:7f:56:af:f9:01:1b:f2:42:ce:01:bd:
b8:fe:20:00:69:64:42:32:89:57:db:91:f9:bc:9e:b8:e7:2f:
4a:f7:84:36:b5:83:bf:3e:e7:ad:e9:d8:4b:93:4e:41:87:34:
2b:cb:47:ba:2c:01:29:d3:66:b0:8c:32:72:f2:29:8c:d0:a3:
1d:31:2e:b8:62:27:49:76:cd:fe:4b:9f:8e:4b:46:83:0b:e6:
1f:b0:74:68:ac:08:34:9b:22:9a:f5:6f:ff:2d:c1:d1:31:99:
3d:ad:17:d9:04:a3:8d:51:6b:2d:26:62:51:6f:d0:80:59:02:
11:de:20:97:51:0f:ca:16:1e:84:c5:14:bf:5d:35:86:33:d7:
40:a8:c3:73:b6:31:bd:f2:ad:71:ef:39:87:10:3c:ce:bf:e3:
d9:b5:99:80:71:9d:86:0e:6f:a3:c5:1c:b7:e8:c1:40:b7:e1:
82:e9:84:01:5c:f1:07:b0:1a:e9:cd:19:86:e2:f0:85:91:b1:
66:7a:cd:9a:2c:5e:6d:04:4b:d2:fc:78:ca:60:ac:5c:9e:27:
db:b4:77:8e:82:75:00:ad:c3:94:f4:92:e3:ab:8e:b9:69:99:
80:48:22:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:12:01 2025 by rpki-client