Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
File: pRA1bcClIYlc5h-FSV4G2vehKzs.mft (raw, json)
Hash identifier: 4bQOu3V3koARYfGrRrSTF5TMwAR99QwRvaTfb72tcSQ=
Subject key identifier: DF:8B:9C:CA:E3:C9:9E:DC:AC:62:89:41:DE:28:86:44:15:90:98:91
Authority key identifier: A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
Certificate issuer: /CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Certificate serial: 0197499F439A3C4F5A19016D3A3D016FB4DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 09:01:03 +0000
Manifest this update: Sat 07 Jun 2025 09:01:03 +0000
Manifest next update: Sun 08 Jun 2025 09:01:03 +0000
Files and hashes: 1: PyDzr8WmYcRo05FGb5UzcWZdKls.roa (hash: IYIt11a1r2unTfjZQuVOMhykI3XsxsOfurke5JUMHZc=)
2: pRA1bcClIYlc5h-FSV4G2vehKzs.crl (hash: QCGnia7vgMEmTVDChLMfSjv7ZPw3ukLdchZT1waUkAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:43:9a:3c:4f:5a:19:01:6d:3a:3d:01:6f:b4:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a510356dc0a521895ce61f85495e06daf7a12b3b
Validity
Not Before: Jun 7 09:01:03 2025 GMT
Not After : Jun 8 09:01:03 2025 GMT
Subject: CN=df8b9ccae3c99edcac628941de28864415909891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:64:04:b6:71:42:39:db:b9:b4:b0:60:77:15:
8d:75:25:91:55:53:82:4b:a4:ff:bb:e9:c9:01:f2:
47:44:51:34:14:cb:41:9f:c3:29:ed:26:26:82:2c:
15:c9:75:1f:34:be:cc:6d:5b:7e:03:b6:23:5e:89:
41:f0:e5:e0:07:2f:5a:d9:86:e2:38:ad:7e:27:09:
11:65:5e:74:35:76:b3:5c:f2:e2:15:1a:ce:8d:f7:
dc:9e:ee:6f:1e:66:33:8f:69:73:68:db:91:73:62:
08:0a:a5:73:e5:86:53:fe:9a:68:0f:93:65:ce:0d:
ea:8f:46:d2:7b:91:84:e9:4a:c3:b9:f0:f3:44:2a:
e6:9d:56:87:7c:cc:7c:9f:81:6d:5f:15:39:16:fc:
f2:85:a1:ad:23:b7:be:c9:c9:fb:c4:eb:e7:13:d2:
12:db:cd:2c:2c:80:09:96:76:1a:d1:03:94:76:4c:
b0:6e:a9:4c:c4:19:55:4e:5a:61:76:82:f8:a5:f5:
f2:67:a8:a5:53:53:11:7b:40:94:ae:f3:42:1c:db:
90:11:f3:16:e0:5d:8e:b8:90:42:94:4f:28:36:37:
37:f7:ee:13:ed:96:a2:45:f6:e9:7d:34:ba:e3:61:
6c:31:83:a6:38:84:c5:56:16:84:7b:65:29:7f:26:
b3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8B:9C:CA:E3:C9:9E:DC:AC:62:89:41:DE:28:86:44:15:90:98:91
X509v3 Authority Key Identifier:
keyid:A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:39:27:1b:d4:87:6f:49:d5:5c:23:49:57:ca:c1:61:37:a6:
85:19:fa:c4:01:c7:69:96:e7:8c:1e:d6:03:da:e7:0f:f6:aa:
55:65:fa:19:a0:17:09:57:88:e1:ea:84:3d:03:20:ed:c3:2e:
12:c5:8a:dc:11:72:38:7b:50:5a:6a:fa:6e:a5:15:79:d6:76:
2f:a4:44:8c:62:59:31:f1:95:c7:7a:85:06:c7:de:26:72:e8:
1e:0d:5f:91:cc:2b:3a:4c:1e:06:d7:7c:ab:c2:28:64:51:86:
85:00:2b:bf:52:3f:2d:f6:db:83:6d:bc:26:e2:43:7f:24:f0:
30:b2:93:c5:67:d4:81:62:f5:19:44:61:6d:a5:10:7b:07:eb:
99:0f:0d:fb:b1:f4:cf:86:90:f2:52:9d:98:82:32:27:7a:c3:
3e:8d:47:a7:1a:ce:27:b3:6e:a1:dd:8c:8e:d2:60:b9:60:ec:
ce:2f:74:c8:ed:ee:57:62:2d:38:76:ee:55:fb:c7:e8:cf:02:
bd:7a:af:f3:39:f7:6e:af:42:1e:82:e4:31:49:fc:ef:c4:55:
79:0c:10:1f:b4:50:89:c3:af:5d:75:59:15:60:e0:6e:d7:c1:
d6:3a:3e:03:c1:b9:1d:d7:db:53:1c:97:b1:cb:75:a3:24:d3:
88:11:b3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:53:32 2025 by rpki-client