Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json)
Hash identifier: xVKTgMSHYXdWaJVhHSRZG54us9pPv4p6T4FFwU2nz84=
Subject key identifier: 37:6A:36:1A:D8:78:E6:7F:8E:4B:33:20:3C:78:15:F3:3F:B6:8A:D0
Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64
Certificate serial: 0197499EE483EECAD4CE6EF093DB10D72ABB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
Manifest number: 07FF
Signing time: Sat 07 Jun 2025 09:00:39 +0000
Manifest this update: Sat 07 Jun 2025 09:00:39 +0000
Manifest next update: Sun 08 Jun 2025 09:00:39 +0000
Files and hashes: 1: MR6yCa9ahiYB6kt7eFUEnhRZgj0.roa (hash: Q5fLGdiN5URjuSRi8W7fkSayIUiVGY1nf+0ovyfMZAw=)
2: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: y0XlfUAJlF7PTmJVzRxAwcxym0+SXEYKpl2uOCkj6x4=)
3: sFFOUDvWTzfSymlwSYpDyp4rZVo.roa (hash: hd1EPhU6XZRPUxka9ECqkCcKF9k2GizgSrw0eDBr9g4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:e4:83:ee:ca:d4:ce:6e:f0:93:db:10:d7:2a:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64
Validity
Not Before: Jun 7 09:00:39 2025 GMT
Not After : Jun 8 09:00:39 2025 GMT
Subject: CN=376a361ad878e67f8e4b33203c7815f33fb68ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:06:11:27:24:ad:cd:a7:05:07:f4:7e:9a:86:
5d:79:4c:ee:f2:5d:5c:e4:b3:5e:19:3e:2e:fc:60:
f1:16:d7:c7:8f:3b:a9:82:de:ea:87:1b:9e:f9:26:
d7:19:5f:f4:e8:65:48:d0:e9:2d:73:3a:20:34:97:
a0:3f:df:b3:ab:db:b0:45:05:7a:a5:a0:5b:0b:31:
c6:10:f5:2f:93:cc:0d:33:0b:ff:7a:d4:d6:1d:9e:
72:df:ea:be:8a:36:2b:5e:71:0f:02:94:4a:c8:96:
74:79:de:8d:7f:4c:6c:b3:16:ea:ba:22:52:30:56:
f8:e4:e5:b5:73:00:c6:da:5f:93:ac:7f:0e:3a:a3:
7c:0c:5b:65:0e:71:b4:bc:e7:a9:02:bd:9a:61:ab:
f2:fe:20:cf:34:d3:4c:30:ca:7e:b7:42:a8:fc:19:
34:91:2f:78:c1:ea:cf:5b:19:88:77:a5:8e:14:15:
87:f6:12:39:27:4a:ba:25:e5:db:64:75:9d:05:d2:
1b:d5:50:63:2e:0c:bb:a7:2e:bd:57:52:76:d9:92:
fe:54:6c:60:db:69:9a:b0:9d:e7:7b:e6:a5:ad:54:
a1:91:b8:1e:5b:33:ab:ca:97:c7:85:73:cc:2e:39:
59:63:32:16:1f:da:87:4d:4c:d3:96:37:ca:aa:9e:
b2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6A:36:1A:D8:78:E6:7F:8E:4B:33:20:3C:78:15:F3:3F:B6:8A:D0
X509v3 Authority Key Identifier:
keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:71:49:6d:f8:9b:b6:c2:40:df:70:64:91:20:69:87:1d:e8:
92:c1:e2:b1:37:30:d6:53:1b:da:8a:24:ff:0e:12:eb:7c:9a:
52:60:e1:a3:03:df:9e:db:da:b9:72:af:c9:3a:35:be:89:a2:
45:b2:cb:cd:aa:06:be:31:54:37:e2:c0:80:b8:b2:24:a6:12:
9f:78:4d:d0:9c:e8:1c:5c:d9:9d:4a:79:9c:2e:d7:27:ba:00:
bc:7d:16:02:d6:df:62:f2:24:70:f7:73:e7:5a:2f:ce:24:b2:
16:12:0b:e8:c1:5b:a5:bd:13:97:ed:2a:cb:0f:06:6c:b1:f9:
d8:86:e2:f0:ee:95:65:78:68:ba:14:b0:91:9f:12:1f:40:cd:
e1:40:f3:a6:1d:b0:d5:16:bc:20:27:f5:8a:6a:dd:d5:b3:a0:
7c:92:25:3f:23:fe:2b:82:a5:59:86:6f:01:1f:29:0e:d7:b7:
fe:50:e1:cc:59:71:56:6d:40:2a:1d:25:aa:0e:f9:01:51:2c:
73:be:84:62:84:d1:81:ef:ad:9a:ce:23:0b:cc:5a:3c:5c:b5:
7c:e0:bb:22:ae:c4:c5:90:dd:f8:f2:3d:ac:02:42:b4:bf:8d:
04:e0:8b:a0:28:d5:2b:ba:ee:69:62:7b:a1:01:6d:b3:6c:6c:
2b:07:1a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:52:10 2025 by rpki-client