Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: cv1WIS5aJ5B/DZVwmdxPiv/J8RRXf3nW/ZNU1GS67gw=
Subject key identifier: 5C:28:F8:08:DE:6F:85:88:5C:93:49:A0:89:7B:7A:60:F1:D8:95:62
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 01974A7AF0BB8A89DBBE274D409549B6094D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 06E0
Signing time: Sat 07 Jun 2025 13:01:00 +0000
Manifest this update: Sat 07 Jun 2025 13:01:00 +0000
Manifest next update: Sun 08 Jun 2025 13:01:00 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: 38xPk4Tf2CthBigPDpFCr3UKqJAcE7COfPomcghq/bA=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:f0:bb:8a:89:db:be:27:4d:40:95:49:b6:09:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Jun 7 13:01:00 2025 GMT
Not After : Jun 8 13:01:00 2025 GMT
Subject: CN=5c28f808de6f85885c9349a0897b7a60f1d89562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2a:6f:06:4a:33:fd:22:14:15:2a:7f:9d:5a:
45:af:04:ff:b3:2f:86:d5:3f:8b:6f:57:f4:95:b5:
57:f9:b9:9c:fb:34:51:d8:25:80:74:dc:c4:b6:2f:
a0:21:53:f7:1b:12:47:8c:de:9f:93:e4:0a:12:85:
dc:27:07:bb:2f:c0:dd:20:25:4b:cc:f5:7c:a4:48:
c1:10:6c:f6:bb:7c:9a:06:bb:ee:28:6d:96:a1:ac:
71:88:39:b3:97:9d:7e:27:ca:e6:e2:a7:df:30:19:
7c:42:50:df:2e:22:e6:83:63:99:d9:b0:1a:64:ec:
0b:fa:e9:05:28:a7:cb:ad:e5:18:18:3e:73:d5:ad:
c2:99:49:25:01:2e:b9:1f:e7:64:64:86:99:29:ed:
a4:02:5f:43:24:d4:52:9b:86:42:2a:1a:11:8c:89:
25:65:d3:6b:8d:23:6a:fa:95:f6:f8:07:99:50:6d:
07:18:4b:62:c4:6f:41:3c:14:41:b4:34:ab:e9:a2:
84:3a:65:9f:69:6a:6f:31:89:d4:c2:65:92:17:06:
a9:1e:65:c9:82:54:bf:8b:0f:fb:66:ad:bd:82:e6:
29:d3:fb:c2:d7:0d:fa:d0:b9:04:d4:cd:14:b1:ce:
fe:b6:1c:c9:77:e4:e8:b6:3f:7f:17:7a:0d:fe:d1:
48:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:28:F8:08:DE:6F:85:88:5C:93:49:A0:89:7B:7A:60:F1:D8:95:62
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:d9:27:76:57:1a:9d:5f:39:41:f8:97:da:0f:cc:2c:64:27:
5b:3e:8a:7e:99:0a:07:df:28:d4:c2:90:be:da:c6:be:81:22:
4d:4a:80:7d:94:28:b8:ad:64:82:94:33:fe:f2:f8:c0:c6:2b:
69:d6:18:f4:74:27:66:a8:04:ce:06:00:c4:77:e8:38:90:13:
70:f4:e3:ba:1e:2b:41:7c:49:59:d4:de:94:cf:49:e4:47:f3:
7e:2a:8b:b6:b1:51:cf:e9:bb:e2:0c:a2:05:eb:88:f5:0f:de:
aa:62:a0:26:93:ab:e3:c3:85:d6:d3:50:a6:af:f1:93:c1:70:
ec:3a:b5:a6:aa:65:ab:3e:28:fa:8f:b5:43:e4:4b:d5:f8:6f:
19:68:74:8b:dd:49:3b:27:f5:89:ff:e1:2a:68:70:1f:a9:fe:
06:95:ef:40:20:cc:41:d6:5b:f3:cd:80:b6:48:8f:fd:81:65:
d3:47:8a:b5:71:82:d2:63:bb:0e:0c:31:c9:56:84:18:e8:1d:
d5:a6:68:5e:25:7c:c7:7a:c3:5c:80:9c:9b:66:3c:2d:69:34:
bb:a2:46:0c:b8:31:a7:76:7e:a0:af:9c:7e:d4:e0:86:54:ed:
d5:f2:33:8e:82:ac:75:c0:e3:38:22:c5:a9:57:7a:a0:41:83:
22:b5:a5:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:59:51 2025 by rpki-client