Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
File: PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft (raw, json)
Hash identifier: cSiExM2k93KqJ7EcBDxNzGE5iXPA/dJp/d8o3PXuN5s=
Subject key identifier: F6:44:F5:66:63:AB:13:DA:B9:7A:BC:AF:A7:8E:5A:AD:A1:CE:C0:81
Authority key identifier: 3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
Certificate issuer: /CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Certificate serial: 019748C346B4C3761A743B045C4AE26F16A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
Manifest number: 0B8E
Signing time: Sat 07 Jun 2025 05:00:46 +0000
Manifest this update: Sat 07 Jun 2025 05:00:46 +0000
Manifest next update: Sun 08 Jun 2025 05:00:46 +0000
Files and hashes: 1: PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl (hash: uvpUhh7pw1ZNyaU2Pyzg7rN374o/kvmVqpx4GT5HSeg=)
2: dJvnPDYPLo4Sslu_Zmnf2lx_js4.roa (hash: 5Msv4aPMo6ReE0YmQsW6vQo0j0v5HFcFjEhrex1AtOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:46:b4:c3:76:1a:74:3b:04:5c:4a:e2:6f:16:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Validity
Not Before: Jun 7 05:00:46 2025 GMT
Not After : Jun 8 05:00:46 2025 GMT
Subject: CN=f644f56663ab13dab97abcafa78e5aada1cec081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:f1:06:e0:70:15:3e:fc:5a:df:1c:64:fa:
d3:91:bc:32:ee:53:63:d0:32:b0:83:11:7b:0c:ad:
41:76:b5:24:99:90:96:9a:46:2c:de:d3:c3:97:c2:
26:d8:51:e6:fb:e6:71:36:4b:91:9a:aa:fd:6f:2b:
2d:83:18:89:04:ae:1e:90:19:dc:84:a8:26:a8:3a:
80:5c:4d:25:85:ed:5c:03:37:6c:a6:d1:80:0b:bc:
aa:8d:b7:a6:eb:63:d3:16:9a:c1:3c:dc:89:8c:45:
bb:76:36:ec:05:75:15:f4:6b:ef:f6:a5:16:dc:2f:
11:23:df:8f:83:9f:3d:4a:43:bd:2b:e4:cc:9c:41:
38:d0:3e:27:ce:f0:f7:74:d6:2c:57:b6:be:ce:75:
83:2b:c3:70:66:eb:7f:d8:70:81:e3:a9:fe:b4:8e:
bf:88:bc:e7:1e:e8:b3:05:6e:a1:00:39:4f:e9:fe:
3f:09:56:ea:d9:30:4d:bd:ae:a5:5c:bc:d7:c9:16:
14:ca:05:a5:bc:a0:f0:f5:04:2b:bb:ba:9e:24:90:
a7:59:26:8b:79:95:d2:12:f8:9c:7d:ac:6c:20:71:
0f:9c:9d:59:ea:1e:b7:25:be:1a:8c:7b:cc:9a:b4:
b6:81:20:8f:4b:43:fd:43:1f:e8:4a:16:0e:b9:5c:
94:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:44:F5:66:63:AB:13:DA:B9:7A:BC:AF:A7:8E:5A:AD:A1:CE:C0:81
X509v3 Authority Key Identifier:
keyid:3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:bd:55:bd:f7:a5:db:08:fb:e0:0c:e7:34:a3:7b:ba:de:80:
f8:f8:79:a5:84:41:f7:46:76:31:5e:0c:23:62:2e:c8:29:fb:
27:a2:e6:5f:58:a3:6f:65:d6:4b:14:dd:e7:9f:a0:5f:98:fa:
be:8e:cd:2b:70:3e:3e:f9:9a:e6:8d:5b:c4:23:0a:a3:40:f5:
d3:f6:10:71:32:ee:95:61:55:42:e5:6d:b2:2e:61:33:cc:ff:
ab:0b:19:18:f5:8f:c2:68:26:03:7f:2b:cd:eb:91:dd:6e:9b:
c9:8a:a9:91:14:3f:a3:8c:ab:c6:79:bb:18:9f:b7:4c:a2:12:
bb:66:44:92:4e:94:f6:bf:d1:65:fa:3b:f2:68:ea:90:d9:fc:
90:0a:ec:5a:6e:b7:9f:5d:08:a0:ff:16:d8:f5:7e:94:a2:7a:
86:f9:c8:2e:52:29:e1:19:db:2f:d5:55:51:b3:92:47:e8:29:
3a:37:fe:57:e1:21:e0:9a:9b:f0:21:bc:79:d4:65:88:dd:48:
36:5a:04:a5:8c:72:14:e3:48:98:c5:b0:6e:26:b3:ac:00:0b:
47:a1:85:5a:be:6d:71:bf:18:f1:8d:af:2c:1a:33:17:c0:b6:
59:75:78:7a:da:20:fa:b2:0c:e4:19:70:d9:a4:38:b0:db:47:
55:a0:db:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:35:05 2025 by rpki-client