Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: OWj6acIHOpCIOSp0OF93Gaeo4D/L6Yc3fBiaMDZH7Hk=
Subject key identifier: 0A:50:E7:1F:77:68:0E:A4:1D:A4:47:CC:5C:2B:BB:24:90:91:C4:91
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 019749311FA5E86353B956622FD2C9C343A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 129F
Signing time: Sat 07 Jun 2025 07:00:45 +0000
Manifest this update: Sat 07 Jun 2025 07:00:45 +0000
Manifest next update: Sun 08 Jun 2025 07:00:45 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: J/q0vMz5S5SrYrjiDJvLh6u9UllSYh2LDrNgNK1Ufug=)
2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:1f:a5:e8:63:53:b9:56:62:2f:d2:c9:c3:43:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Jun 7 07:00:45 2025 GMT
Not After : Jun 8 07:00:45 2025 GMT
Subject: CN=0a50e71f77680ea41da447cc5c2bbb249091c491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:d1:4d:86:39:56:e9:a2:de:1c:d3:ce:47:
c9:ed:6e:44:74:b4:9e:27:b9:3e:d2:55:af:11:c2:
5c:3a:34:02:fd:ad:8d:3b:fe:1c:8a:80:2b:17:cd:
66:86:20:7f:e7:6c:a3:5f:18:09:84:47:d4:44:f5:
e3:13:ae:fb:4c:b2:45:60:fe:04:87:f1:0f:2e:96:
c8:c1:02:5a:97:1b:30:63:e9:93:4a:c6:50:61:a8:
6b:41:cd:09:79:39:16:dc:5f:0d:6e:28:10:3d:ec:
67:d0:77:04:c0:8a:21:5d:25:cd:cd:3e:3d:f5:c2:
93:a2:55:13:e4:35:34:20:c5:74:12:8c:a1:1c:ca:
54:49:55:0a:b6:67:84:98:be:6a:9a:9e:d7:91:9f:
03:86:db:6c:80:3c:72:ba:27:e5:58:61:9f:7a:64:
de:23:32:e0:01:ed:95:a3:65:d5:39:de:6e:3b:09:
d5:8a:52:3f:95:28:0f:19:0d:ab:cc:e2:67:47:13:
2c:bb:9e:74:9f:c7:84:cf:58:f5:e6:d1:6e:c7:b3:
9c:35:e9:6a:82:10:f1:e8:eb:80:9a:0e:2e:59:a6:
73:24:60:05:1b:63:04:30:12:ee:8b:19:a4:bd:cf:
33:e9:ee:76:74:9b:86:48:11:88:b5:60:fa:ce:56:
4e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:50:E7:1F:77:68:0E:A4:1D:A4:47:CC:5C:2B:BB:24:90:91:C4:91
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:48:37:36:11:0e:4a:d3:dc:e7:d0:59:d0:c9:df:fd:2a:27:
dd:0b:d2:49:17:c3:ff:eb:b3:b7:ab:99:03:0b:2c:81:e3:39:
54:ee:a7:46:ae:45:df:39:5b:b7:8d:62:13:43:97:d8:09:fd:
cd:44:e0:b9:a8:50:09:a1:e7:1d:3c:3d:31:02:7c:a4:73:1a:
b1:da:5c:3d:e5:63:c4:68:98:b1:4c:c8:44:8b:3c:a5:1a:e8:
1b:47:48:7e:ee:1d:34:31:8a:9b:32:14:9e:c6:5d:f9:70:6e:
3a:5f:84:1c:eb:aa:d7:c3:41:e5:53:c7:f4:4e:7c:39:a8:8f:
33:f8:b8:9c:46:83:22:51:af:17:86:8b:e9:6b:29:6e:85:f9:
6c:64:a4:60:b9:92:d7:3e:8b:6f:7c:4b:89:66:e3:01:5e:68:
f8:1f:e8:b8:ab:94:a0:00:aa:8f:5f:db:e3:5b:43:21:19:06:
d6:2a:b5:dd:f4:59:96:e7:b9:2f:79:f3:c3:10:d1:10:25:31:
b8:45:64:19:35:58:dc:6c:82:b0:ff:8b:93:3a:17:af:b0:6a:
9f:86:f3:1a:a2:c0:31:1f:81:ab:bf:f4:68:9e:02:c5:e7:1a:
40:be:8f:34:78:a1:dc:be:dc:07:8c:f2:c7:c5:d2:7e:39:35:
40:eb:de:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:51:09 2025 by rpki-client