Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: DHKcH0qVuVZdN+XuZcmMofS19omMcQMpfRc0RJCbY7k=
Subject key identifier: 39:04:3C:88:46:A0:EC:F2:BD:1B:1E:81:1A:5E:23:BC:7D:7A:F9:E9
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 01975121F7AF470E361FAD37BC8C721D80E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0808
Signing time: Sun 08 Jun 2025 20:01:09 +0000
Manifest this update: Sun 08 Jun 2025 20:01:09 +0000
Manifest next update: Mon 09 Jun 2025 20:01:09 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: a8pioOj5zQD/dm08NEn//GyUPiXncf2V3gIMwEacnCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:f7:af:47:0e:36:1f:ad:37:bc:8c:72:1d:80:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Jun 8 20:01:09 2025 GMT
Not After : Jun 9 20:01:09 2025 GMT
Subject: CN=39043c8846a0ecf2bd1b1e811a5e23bc7d7af9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:15:c7:0b:17:ec:12:17:2b:c7:a6:97:35:
fd:83:21:f1:1a:7f:69:63:96:03:39:f7:1f:a0:9c:
cb:6c:ef:25:d4:65:82:54:3f:42:6c:30:b7:44:f8:
a9:07:e1:1f:4d:df:95:dc:04:05:5a:0d:2a:b2:51:
c9:be:36:29:89:35:56:29:fb:2c:c0:55:a7:d1:51:
61:23:6a:d1:07:26:3a:c2:9f:e4:03:20:58:44:93:
37:0c:ec:ae:a6:fa:76:54:d7:ca:b6:9c:13:7b:49:
62:0e:5b:71:9e:01:f1:dd:d4:53:f0:d3:56:0e:4b:
68:4f:d0:8e:37:f8:0d:71:8d:ee:ad:cb:8d:3f:62:
e1:60:13:67:67:28:0e:de:5d:77:9e:9b:21:cd:b0:
3b:13:5c:ac:bc:e3:22:66:a8:0d:3e:7c:c7:13:8f:
fc:35:0f:69:bd:94:57:6b:ef:9f:08:8f:a4:6e:75:
2a:e7:b9:e0:95:2b:1b:a9:ff:84:6f:81:12:5e:83:
d5:36:7c:01:b6:01:3f:c7:82:f0:23:9f:ad:90:c2:
40:b9:5e:20:cc:82:e7:59:9a:d8:dc:8d:ce:5d:c5:
39:49:5c:d4:eb:b6:99:e5:01:35:47:2a:aa:6f:d1:
16:8d:38:f9:8e:c0:8a:7b:ad:bb:09:3f:38:1b:04:
f9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:04:3C:88:46:A0:EC:F2:BD:1B:1E:81:1A:5E:23:BC:7D:7A:F9:E9
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:fe:80:eb:c7:d3:ca:aa:4f:7f:f5:e3:c6:b3:dd:9b:d8:08:
ea:3d:0d:69:73:9e:b0:d7:2a:d5:85:5b:5e:36:b6:84:41:cf:
aa:87:47:9b:14:30:56:ea:e4:10:cc:e5:96:e4:bf:19:9f:1c:
60:b6:08:cf:d2:9d:02:c4:d0:a4:bf:56:e5:7f:65:97:ac:de:
d4:7a:64:04:8a:e7:a0:5b:ae:a7:2a:04:b6:34:b7:e7:4c:18:
32:59:63:9d:41:e6:12:5f:59:25:df:bc:b9:db:80:4b:9e:0c:
72:18:39:ea:b8:4f:2d:49:ea:48:e6:42:3c:e1:14:c0:f8:0a:
5c:f6:c5:0d:03:a6:8a:5e:91:65:39:c2:08:b1:23:96:63:34:
9e:2c:43:e8:4b:43:23:9b:26:96:88:65:82:3e:a9:08:21:15:
98:44:b7:ee:a1:ea:15:22:67:a2:1f:be:d4:96:28:91:31:78:
81:68:d9:59:8c:bd:3b:53:ae:24:de:4a:29:6a:ed:aa:f7:5f:
15:24:27:aa:71:98:e6:81:2e:22:4d:a2:97:76:4f:be:71:b3:
c2:75:66:08:86:98:7a:d5:c8:58:36:26:64:72:12:a6:42:8b:
4d:8b:fb:a4:02:5f:8e:2f:a6:5b:f0:9b:73:e8:27:1b:a3:80:
8a:d0:3e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:00:06 2025 by rpki-client