Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
File: pHwKyKnV9ixJHUsXyyErUsDnVgc.mft (raw, json)
Hash identifier: 6nwnt42hxgjMwhRbK6yEr0pHYNA6rQ30PpIe6TjlnVs=
Subject key identifier: 47:35:3B:BC:37:B9:98:3C:D7:4E:9E:8C:16:0C:A6:72:46:EA:9B:3A
Authority key identifier: A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
Certificate issuer: /CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Certificate serial: 01974E58405FAF6FBBC793B3CD0ACFE5C2AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
Manifest number: 11C2
Signing time: Sun 08 Jun 2025 07:01:35 +0000
Manifest this update: Sun 08 Jun 2025 07:01:35 +0000
Manifest next update: Mon 09 Jun 2025 07:01:35 +0000
Files and hashes: 1: fFbdm0OeWE1GYVnCMSWrkaX1IWg.roa (hash: H5NNOHLLRS0hsZTLRHxW4ce45JGvEraIddrEMS924Cg=)
2: pHwKyKnV9ixJHUsXyyErUsDnVgc.crl (hash: 3WdlpSQAsVmzB+Q9hLQvcxyduLT+Wyy/uoH9BHBX6NQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:40:5f:af:6f:bb:c7:93:b3:cd:0a:cf:e5:c2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Validity
Not Before: Jun 8 07:01:35 2025 GMT
Not After : Jun 9 07:01:35 2025 GMT
Subject: CN=47353bbc37b9983cd74e9e8c160ca67246ea9b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2f:ea:f5:0d:75:a5:02:aa:64:32:bc:26:57:
3b:52:21:c4:dd:e9:21:2f:e2:09:e3:ac:22:17:a2:
ab:ab:5e:69:bb:e3:65:39:06:84:f5:d5:ef:01:3f:
cd:9c:2e:77:b0:a7:14:33:d3:26:e2:0e:89:f3:6e:
f7:63:f5:18:e2:db:8b:5c:bc:42:3c:7e:17:5a:b1:
7a:0c:3e:8f:dc:65:89:d3:14:ae:1f:74:f1:a1:29:
2d:a1:41:7a:15:d7:84:cb:d5:ce:29:3c:6a:8e:9b:
74:e8:86:8c:13:9c:83:9e:5b:42:44:49:28:1a:31:
57:a3:c1:67:4e:e0:18:d3:19:62:1a:f4:77:98:37:
fc:81:87:e5:94:e3:82:c0:9e:e7:93:f6:4f:6d:c7:
5a:49:4d:ae:25:92:3b:f1:37:d5:a3:76:71:b0:52:
4f:6f:6a:14:40:79:34:e9:53:9e:5b:be:13:b1:ba:
2a:d6:12:cd:a1:af:2a:88:e0:47:8b:86:15:42:c6:
4f:1e:2a:0d:60:40:57:ae:a5:cd:8d:c7:6f:59:8c:
6e:e3:27:54:bb:97:a0:5a:6b:b4:ce:16:a5:29:92:
e5:ef:a2:d7:91:ec:1f:26:2d:b4:cb:85:2c:82:73:
5f:48:5c:f2:28:d2:5c:7b:21:45:b4:f6:5b:9b:44:
99:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:35:3B:BC:37:B9:98:3C:D7:4E:9E:8C:16:0C:A6:72:46:EA:9B:3A
X509v3 Authority Key Identifier:
keyid:A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ba:50:e5:ed:98:f8:93:74:00:17:82:a6:62:c5:0d:f3:bf:
bf:06:45:c9:ff:4b:58:0c:29:b5:0c:48:e2:b2:33:9f:45:b7:
09:37:e7:e1:16:a0:b2:d1:15:f3:f6:14:6e:dd:4b:fd:04:25:
d9:fc:c5:94:cf:06:84:52:26:9a:4a:14:50:dd:ea:fe:76:a4:
69:ce:51:9f:b5:cc:00:a0:75:b7:ce:b8:c9:3b:67:5a:b1:a0:
53:42:e0:f7:77:3e:d9:16:d7:f8:7f:ed:28:54:87:69:69:e8:
73:52:97:49:c1:69:49:5e:e2:ba:5a:66:50:67:37:b5:81:d3:
e0:88:d2:22:29:b1:fb:b3:45:76:80:92:f7:d1:3e:ba:d8:a9:
66:cd:85:ff:1c:08:63:c4:b1:67:1c:b1:b8:67:47:cb:57:d7:
45:64:09:d3:25:0b:86:9b:1c:93:b7:99:f7:73:6f:53:7e:f3:
0a:31:16:bc:a3:49:a1:97:22:bd:38:da:40:49:85:25:fb:cd:
cb:ab:88:4d:8e:4f:4f:fb:0a:7b:a2:ec:8d:eb:30:57:59:05:
a7:c7:1e:7c:52:23:19:69:44:c1:62:27:4c:38:31:62:f9:77:
81:80:ce:d9:49:43:cb:ec:fb:d0:a6:dc:aa:39:ef:69:93:63:
3b:c3:79:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:21:43 2025 by rpki-client