Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
File: pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft (raw, json)
Hash identifier: d44sd/Po5vvvMUqFOE6jKmAWIYs9I4NpkaA1ZPm/nxw=
Subject key identifier: 98:AB:61:A8:EF:36:DC:14:68:B0:66:DF:FD:45:1B:50:7A:60:48:40
Authority key identifier: A5:03:B1:DD:41:00:70:AD:62:E4:A2:FC:66:A1:3B:4E:B6:13:68:F4
Certificate issuer: /CN=a503b1dd410070ad62e4a2fc66a13b4eb61368f4
Certificate serial: 01974EC58B8886C7D46DEC65904AC59C3A0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
Manifest number: 0A32
Signing time: Sun 08 Jun 2025 09:00:58 +0000
Manifest this update: Sun 08 Jun 2025 09:00:58 +0000
Manifest next update: Mon 09 Jun 2025 09:00:58 +0000
Files and hashes: 1: 6jOAX6ZKooyhgzG3-RXUavHtejc.roa (hash: zAiUnOceYAANogRzQmsXCXZI4dk5OulIUSwMR15rFvs=)
2: pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl (hash: hxswz5J9wz4ZQlQJui34eSwpQ7ab/YmFGPYrsLMb7tE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:8b:88:86:c7:d4:6d:ec:65:90:4a:c5:9c:3a:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a503b1dd410070ad62e4a2fc66a13b4eb61368f4
Validity
Not Before: Jun 8 09:00:58 2025 GMT
Not After : Jun 9 09:00:58 2025 GMT
Subject: CN=98ab61a8ef36dc1468b066dffd451b507a604840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:42:fd:16:09:18:4c:1c:21:71:d6:bc:f0:d4:
27:d2:2e:41:88:4a:3f:24:b9:fd:3c:1b:37:23:53:
23:83:2f:a6:df:64:cc:2b:91:95:73:70:3a:c3:76:
dd:d6:4a:81:d0:00:2f:14:e7:34:a2:b2:7e:1f:31:
29:c4:61:7a:9b:40:85:e8:b7:e1:58:28:15:6a:6e:
61:5e:1e:cc:b5:ee:c1:ec:0d:75:2f:72:20:f4:b1:
12:af:25:54:0c:e7:41:03:0e:10:b1:76:0c:c5:50:
3a:8b:1e:07:5e:f2:fe:64:50:ba:fd:2b:14:84:d5:
d9:1d:8f:78:6c:84:4f:a2:89:00:a2:88:6f:b3:32:
a6:e6:f7:81:9a:19:62:f6:37:af:66:82:4c:93:d6:
33:62:b4:68:5a:f3:8e:49:3b:a6:08:cf:c9:e5:5c:
65:7f:a2:05:17:f2:48:f2:c7:63:45:7f:7c:e0:58:
a9:79:cc:22:a5:78:60:e0:6f:6c:c6:1b:a6:19:da:
a2:64:34:34:7d:c7:b0:ea:7b:fe:37:19:a4:6c:64:
c3:8e:7b:52:ed:a2:93:57:ec:02:a8:29:ea:3c:65:
29:b3:23:a8:0e:c8:9f:8f:8d:3c:9c:5a:81:93:4e:
b7:7a:af:eb:e0:05:61:1e:70:6e:eb:64:7c:42:7e:
b3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AB:61:A8:EF:36:DC:14:68:B0:66:DF:FD:45:1B:50:7A:60:48:40
X509v3 Authority Key Identifier:
keyid:A5:03:B1:DD:41:00:70:AD:62:E4:A2:FC:66:A1:3B:4E:B6:13:68:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ffef96-bac5-4126-b2b7-0135d9128e86/1/pQOx3UEAcK1i5KL8ZqE7TrYTaPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:c4:fc:6a:c3:03:45:fc:a1:28:34:18:2c:68:15:70:10:19:
f3:32:ba:64:44:2f:d4:ee:43:0c:59:7c:ba:f8:5f:86:27:63:
f0:c4:9c:44:cb:8c:22:67:18:b6:ed:62:1a:6f:9b:4e:05:b3:
cb:d0:53:41:26:ee:21:0d:e8:1f:aa:25:85:60:75:aa:a6:05:
22:1a:fa:8b:21:54:3e:ab:14:9b:be:45:4d:9c:a2:06:7f:3a:
ae:0f:c1:d8:6c:89:96:b5:7d:c4:3f:94:d8:08:26:7e:c6:2e:
ad:29:39:0b:f3:53:df:5c:46:33:23:3d:d6:38:c8:f6:f5:86:
be:35:fc:06:3a:d6:59:f2:4f:6e:7e:65:89:01:4e:aa:5f:d3:
fa:11:ba:2b:c9:0c:0a:e8:e1:a5:1c:f9:62:f2:2f:e2:1c:04:
59:81:39:ca:92:e6:2b:9b:77:94:95:c2:1b:fa:29:4f:db:d9:
7d:f5:1b:b8:0d:af:52:0f:39:4f:84:38:27:90:7f:c6:e4:a1:
e4:6a:91:fa:d6:c4:47:9b:60:f4:d5:27:bc:93:99:a5:2a:a1:
ee:53:4d:b8:fc:ba:37:ef:5f:6e:dc:a5:c8:4b:2a:ae:9c:14:
43:6a:b0:0f:40:5e:cc:d5:de:2a:c4:06:e8:46:ff:af:a9:35:
28:b7:a3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:59:49 2025 by rpki-client