Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier: r3s+Fm4yBYkqg5OwRPtwtHK0e/XEZxjHPDBPs/iO9/U=
Subject key identifier: F0:8D:84:BD:84:2D:CF:62:F6:87:E7:97:D7:13:19:BF:BE:CC:45:80
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial: 019769CF0B6DEF47E419DE5F50EBB1EC2EE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number: 0392
Signing time: Fri 13 Jun 2025 15:01:05 +0000
Manifest this update: Fri 13 Jun 2025 15:01:05 +0000
Manifest next update: Sat 14 Jun 2025 15:01:05 +0000
Files and hashes: 1: 0-NbRqc8zQ3-jTIYZOwXbybz260.roa (hash: F4aAH1P/CqccbM0rJQ6/jB1mC+tQi8oCbtTD8Uif+I8=)
2: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: 3fiU7WiNg30XiRvsIlqV+Up0tOm2RJQ+nrJKm8ouCfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:cf:0b:6d:ef:47:e4:19:de:5f:50:eb:b1:ec:2e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Validity
Not Before: Jun 13 15:01:05 2025 GMT
Not After : Jun 14 15:01:05 2025 GMT
Subject: CN=f08d84bd842dcf62f687e797d71319bfbecc4580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fa:1f:1d:e1:3a:03:fc:ff:7f:b9:d8:25:e5:
2c:c5:cd:4f:2c:82:50:a6:24:27:5c:8c:20:36:ab:
83:e4:35:e7:f0:85:5a:61:b0:8a:19:36:17:29:2a:
98:6e:2a:47:32:26:eb:96:62:76:b5:c7:f5:29:f6:
5a:dd:36:00:98:82:dd:a1:eb:53:bd:ef:43:2e:e8:
86:c5:59:b1:81:b3:22:03:2b:9a:53:0d:19:82:3e:
5d:ac:0a:58:49:94:41:5e:09:13:e0:6f:7e:81:bf:
9e:1c:65:bc:3e:b9:16:0f:77:bd:67:16:d3:cb:94:
77:5c:d4:fe:57:8e:40:3d:05:67:bf:2a:a1:17:f6:
9e:73:ec:1a:b3:1e:b1:4c:01:93:c9:e4:e4:72:88:
ed:10:ee:a9:ce:16:10:c7:d4:ee:d2:33:1c:d5:d7:
70:1e:be:a2:5b:80:17:88:5d:14:7a:f6:f7:c4:4f:
e3:fc:4b:5c:a4:7d:50:72:52:c0:dc:44:ba:34:0e:
b5:c0:48:f5:b9:c8:77:35:0d:9b:fb:02:8c:9f:8b:
d6:a5:1d:ad:82:0b:a8:b4:4b:aa:5f:ba:ab:a9:39:
ca:53:73:89:6a:68:f6:a4:6a:4c:10:f4:7e:0e:49:
87:23:1f:a6:44:d1:26:2d:82:37:e4:fd:19:61:dc:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8D:84:BD:84:2D:CF:62:F6:87:E7:97:D7:13:19:BF:BE:CC:45:80
X509v3 Authority Key Identifier:
keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:fb:f2:f9:42:b4:67:07:50:76:4a:f4:3c:e9:47:50:0a:bc:
4b:10:1e:3d:e7:28:4a:eb:50:07:5a:37:de:66:4e:d2:fa:d8:
44:42:5d:78:14:6e:75:a2:d6:e5:a8:4f:0e:3d:b8:05:14:a3:
eb:34:c8:82:3a:e3:b0:3e:69:67:d3:54:33:5f:e2:fb:1d:16:
bf:81:37:8f:f1:69:72:00:fa:67:91:37:f0:97:a5:7f:89:f2:
0b:97:02:c7:91:bc:83:54:e8:c0:c2:06:1d:24:7e:59:05:d2:
80:01:43:c6:28:95:db:31:dc:cc:d7:25:e6:10:73:09:da:90:
cd:f6:8f:29:27:0d:c0:88:ef:65:68:90:8b:ea:ec:01:81:d2:
5a:75:fd:3f:31:ba:86:11:14:be:cc:f6:f4:41:13:66:42:00:
1f:a5:71:5a:2a:62:8f:68:88:03:4e:c5:4c:40:84:11:c4:31:
8b:82:35:fe:15:ed:b5:ba:ec:d5:5d:3b:07:ea:a1:ac:0a:f2:
93:f5:22:11:e2:15:e3:f7:fd:00:0d:07:a9:af:5c:f4:5f:5b:
ef:d2:46:ce:4b:ae:fd:68:1e:51:77:12:06:c8:1c:b7:8b:09:
89:4b:a0:ee:b3:f9:4b:fb:a2:4c:db:4b:7d:f8:a4:d1:09:3d:
ab:20:ee:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:55:09 2025 by rpki-client