Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
File: PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft (raw, json)
Hash identifier: nBNB6gVt6FYRVjB+2YKbtyj13YqnxNaUoFs6q1KyWEA=
Subject key identifier: 57:CE:CA:17:F4:4D:28:A6:C4:30:72:3F:CA:1C:36:70:E5:4D:4D:88
Authority key identifier: 3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
Certificate issuer: /CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Certificate serial: 0197488C2AAAEACC4DA38477B0A88F162DBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 04:00:34 +0000
Manifest this update: Sat 07 Jun 2025 04:00:34 +0000
Manifest next update: Sun 08 Jun 2025 04:00:34 +0000
Files and hashes: 1: PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl (hash: 042Xf/CTj6sIJWCjWdqjlggudrpXVkpFI5kwR184I4s=)
2: baHbcRR9kf1ghjeGFAS82cVbM5E.roa (hash: ryV49aEsL3mdbzWN2VnZ4BiiOTM51N9BlYGHQV8L9fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:2a:aa:ea:cc:4d:a3:84:77:b0:a8:8f:16:2d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Validity
Not Before: Jun 7 04:00:34 2025 GMT
Not After : Jun 8 04:00:34 2025 GMT
Subject: CN=57ceca17f44d28a6c430723fca1c3670e54d4d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:44:a8:c7:e1:57:30:62:19:4a:d7:4f:b5:
ff:d4:dc:2e:88:f7:6a:98:be:f2:c9:2b:96:42:0c:
e3:27:4a:73:87:9d:53:e5:14:80:a5:df:3d:39:25:
2e:8d:ae:c4:27:66:62:41:f1:86:8b:bf:9a:94:d7:
1d:da:b5:41:47:b7:06:73:b6:f2:20:ba:dc:22:76:
a3:5b:25:cd:44:63:54:a0:6b:f8:a5:99:8d:4d:7e:
24:20:18:46:2b:57:4c:03:20:2f:45:78:70:26:c4:
15:49:e7:83:b9:d5:61:d2:ed:a5:56:2d:aa:f2:82:
ae:a1:2c:5d:0b:4e:1b:8e:f8:2c:93:93:b2:5b:4e:
72:c9:b6:6b:1c:0b:f2:96:1b:cb:44:38:11:47:3c:
f7:45:ab:3a:24:71:0c:b7:28:68:c7:c9:55:31:22:
7e:6b:20:2b:7a:af:c7:5b:9a:98:db:27:c2:40:e5:
28:14:e1:61:0b:fe:dd:a8:54:be:c5:7b:6f:06:ce:
9e:bb:77:54:fc:94:19:be:68:18:e8:e0:0c:f5:90:
b7:30:72:ed:d6:47:95:88:47:d1:f2:70:7a:fa:6a:
02:af:5b:a7:e1:24:d5:76:9c:cb:3b:6b:c3:fe:11:
b6:2e:1e:70:02:70:71:72:8f:87:d0:c5:71:d8:12:
3f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CE:CA:17:F4:4D:28:A6:C4:30:72:3F:CA:1C:36:70:E5:4D:4D:88
X509v3 Authority Key Identifier:
keyid:3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:b1:3d:3d:61:db:0f:06:98:a5:8d:1b:44:a3:74:22:8c:b3:
31:0f:ad:ba:fc:bb:d5:af:5a:a1:75:57:23:9e:f2:c6:d9:1e:
99:a4:8d:03:4f:23:3d:3c:76:24:e0:c9:99:08:d4:ca:0e:35:
b5:50:92:fd:42:45:09:b3:ed:1d:6f:93:a9:32:64:1a:54:42:
a3:02:78:40:f3:54:18:f6:9a:78:2e:8a:4f:96:de:7f:8b:5c:
b0:b8:c8:6f:14:e8:51:b9:16:49:77:f5:6c:e8:4c:a9:e9:64:
4e:ca:6e:f0:8e:e2:bb:50:19:e5:96:e0:f5:f0:86:fb:28:d9:
f8:76:66:b4:8a:df:c1:a5:cd:d0:31:be:4c:9a:d4:75:a4:b1:
ab:2f:12:28:e9:96:26:87:92:06:55:e8:14:6a:05:9d:00:96:
4d:b2:0f:08:54:74:fe:e0:6e:5b:f5:cd:fa:47:b1:4b:6d:68:
bd:aa:5e:73:ee:fb:54:84:2b:7a:55:72:79:65:74:45:a6:fe:
9c:5d:23:88:13:2e:b2:32:5c:79:79:9d:0e:e4:a9:c8:bf:36:
b9:41:96:b6:15:dd:0d:53:52:d2:bb:3d:23:b9:f1:0b:b5:3a:
c4:a3:16:dc:5a:f7:8b:7e:75:51:67:11:4f:1a:47:d6:e4:05:
b8:55:16:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:36:01 2025 by rpki-client