Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
File: pxErNcd6Sxb761YSHJdNWdVmeEs.mft (raw, json)
Hash identifier: Vwc27V856h3UlxxLySsiKgkIish4yYCLjlebROcYwa4=
Subject key identifier: 79:30:6F:62:5A:BF:FD:34:64:50:0D:68:3A:D1:5D:E6:42:3A:3E:2F
Authority key identifier: A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B
Certificate issuer: /CN=a7112b35c77a4b16fbeb56121c974d59d566784b
Certificate serial: 019747E73BE6CEF5C35C88B7C3DEC9A5396A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 01:00:25 +0000
Manifest this update: Sat 07 Jun 2025 01:00:25 +0000
Manifest next update: Sun 08 Jun 2025 01:00:25 +0000
Files and hashes: 1: BwH9GKC4b7MR-_mPUkvo5kX6MbM.roa (hash: RyMXzPGYxLYPm9LtvHil8vaRU4zoAb2AHBWbWaC8/jg=)
2: pxErNcd6Sxb761YSHJdNWdVmeEs.crl (hash: ehjCJNgqGqgcTMGG+ROlVu8JPj51bZ5tqiD4pT2GWmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:3b:e6:ce:f5:c3:5c:88:b7:c3:de:c9:a5:39:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7112b35c77a4b16fbeb56121c974d59d566784b
Validity
Not Before: Jun 7 01:00:25 2025 GMT
Not After : Jun 8 01:00:25 2025 GMT
Subject: CN=79306f625abffd3464500d683ad15de6423a3e2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:62:8a:05:16:20:d7:21:96:59:5f:96:f0:
54:bf:1f:c6:98:6c:4e:6b:2b:ca:aa:5d:93:5e:17:
a2:e7:ad:87:d8:0d:1a:16:1b:ab:d0:aa:92:53:24:
f8:bc:05:b4:a3:83:51:b8:1b:a1:34:d5:a9:4a:c4:
aa:6d:84:01:b3:8a:67:5e:53:ea:88:2f:ed:eb:f0:
0f:aa:29:a0:3d:9f:e8:29:59:3b:46:08:af:f5:ed:
30:4a:ea:97:fb:5b:5f:55:e0:67:1b:8d:2f:49:86:
8a:9b:ff:51:66:6f:28:ac:8b:ac:0c:53:da:07:f7:
af:e3:44:49:ee:2a:fd:9f:3e:1a:49:6c:c6:68:af:
27:ae:86:23:b3:98:6e:9b:0b:7b:1d:88:55:c0:bd:
d6:39:3d:c1:69:0c:9d:07:da:68:5c:f7:02:4c:e2:
f2:07:c1:8f:c6:a6:02:59:58:39:dd:33:9a:23:ac:
da:e8:1e:dd:15:03:0e:f4:2f:70:82:31:3a:7f:06:
58:9d:b2:97:88:12:6d:c2:67:f2:b1:ff:ab:c8:18:
6f:bc:1f:a9:36:7c:88:a9:77:84:8f:de:a5:56:c9:
4e:11:13:98:40:08:c8:82:81:c5:73:37:06:2c:dc:
3d:0c:bd:24:37:85:62:b6:66:0a:e8:58:23:13:6a:
7b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:30:6F:62:5A:BF:FD:34:64:50:0D:68:3A:D1:5D:E6:42:3A:3E:2F
X509v3 Authority Key Identifier:
keyid:A7:11:2B:35:C7:7A:4B:16:FB:EB:56:12:1C:97:4D:59:D5:66:78:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxErNcd6Sxb761YSHJdNWdVmeEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/71cbe5-4a29-4567-a1fa-7888428225b4/1/pxErNcd6Sxb761YSHJdNWdVmeEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:4d:2a:80:5e:df:47:72:8e:28:7e:72:1e:d4:ac:88:17:1b:
50:ee:98:6d:96:c9:7e:d7:2f:14:c6:37:94:f7:d4:19:83:5e:
71:de:10:7d:60:d7:85:a1:e3:45:30:ee:ef:f9:cf:5d:61:4d:
16:bf:78:a2:27:db:61:26:22:ae:0a:e0:f6:5e:eb:20:fb:b7:
e6:86:47:70:f1:de:b5:43:09:10:e6:87:7d:2e:93:c5:34:19:
06:28:df:b6:94:a6:48:98:52:31:80:75:9d:f7:c4:ec:08:5b:
59:b0:23:8e:dd:30:a0:5a:ab:96:e8:7c:64:bd:3b:0e:38:0c:
ea:9c:72:b9:27:1b:6f:37:74:da:aa:41:a1:04:a0:38:5d:07:
2d:16:08:75:02:9b:c7:bb:78:d6:cc:8e:00:68:2c:ec:09:b0:
88:80:23:24:38:ea:40:9b:39:36:2f:0b:e3:d2:bb:55:46:a5:
5c:62:9c:fc:e6:78:37:4d:63:b8:78:c4:ec:bc:f6:b1:0e:ea:
e2:93:f0:f8:5a:bc:22:c1:5f:5b:57:34:23:1b:85:07:e3:b1:
00:94:41:5c:f4:f7:73:b0:12:1f:10:35:53:a3:41:e6:0c:0e:
35:38:a5:51:1b:c2:9c:94:4f:21:5a:ae:2d:b7:1c:36:d0:bb:
cb:5f:ff:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:16:39 2025 by rpki-client