Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json)
Hash identifier: nvNgHLEm8LaxV+jj0bW5uak0vzRbAa7FjtbD2Xz8GWU=
Subject key identifier: 97:E3:AE:9F:B2:B0:E1:C4:8C:15:ED:89:7C:3B:A9:8B:1E:F3:64:8C
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 019746D4F9EB4A8070A590F01A7A32061AD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
Manifest number: 0D30
Signing time: Fri 06 Jun 2025 20:00:52 +0000
Manifest this update: Fri 06 Jun 2025 20:00:52 +0000
Manifest next update: Sat 07 Jun 2025 20:00:52 +0000
Files and hashes: 1: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: jOyjfZXrG3Y6YNfxmf/Oxylahi1jZskkiFShl4qyKd4=)
2: qkuFYPmd6yVSJeAUkr6iVxoW6uI.roa (hash: 6R5f5Psj0EmX1v5BkourUurygRB3rOnwEBUagdishKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:f9:eb:4a:80:70:a5:90:f0:1a:7a:32:06:1a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Jun 6 20:00:52 2025 GMT
Not After : Jun 7 20:00:52 2025 GMT
Subject: CN=97e3ae9fb2b0e1c48c15ed897c3ba98b1ef3648c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:15:29:4c:8e:97:02:af:bd:bd:29:33:89:77:
19:c9:74:07:83:02:c3:60:aa:ef:f2:d0:85:af:53:
11:27:11:dd:ad:05:96:eb:ae:73:bf:7a:81:f5:f7:
49:0d:6a:5a:78:38:b6:c1:70:9f:38:30:65:9e:3e:
28:e9:3e:7c:4b:0c:e5:7c:75:b3:1b:cc:f5:51:2a:
a6:ea:c5:39:a8:b5:97:54:10:8e:cb:18:f9:ae:de:
72:81:a1:95:81:44:64:5c:cf:f7:00:6e:17:8e:92:
b0:8f:d9:18:2f:c2:60:5f:33:d3:ff:aa:77:15:5a:
4d:53:7a:7f:90:2b:13:d8:51:7d:ac:30:f1:d7:84:
94:2e:99:51:13:fc:39:37:00:83:47:5c:3f:b9:a7:
25:92:8b:22:99:db:39:fd:63:e3:7d:be:59:d7:e4:
b3:c1:94:5b:b7:38:a5:5e:ba:12:cf:fd:0f:87:c6:
b6:cd:45:08:0c:7f:d6:ed:cf:5a:a9:bd:6d:3a:73:
e9:fa:b6:cd:03:f9:f8:fb:dc:de:9a:c8:bb:7d:f5:
1d:08:8a:d8:04:0f:7e:65:ca:c5:2d:9a:e8:41:67:
3e:59:fc:8e:b0:a4:eb:62:9a:c6:cc:ab:d7:2b:fc:
41:34:65:0e:1c:34:b5:44:67:cb:26:aa:86:94:0a:
e2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E3:AE:9F:B2:B0:E1:C4:8C:15:ED:89:7C:3B:A9:8B:1E:F3:64:8C
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:c6:ab:1d:46:93:70:ed:cf:62:a6:2c:be:d3:95:3b:3c:77:
2c:35:12:e1:5c:71:08:2a:c1:89:cb:c0:1e:a2:b3:88:7e:86:
f9:cd:b8:87:97:38:1b:aa:ac:59:67:8b:f8:86:8a:20:f0:7a:
6e:23:03:3d:0a:9a:24:73:9e:aa:4f:65:56:da:1b:29:21:03:
1b:5c:7d:ef:f5:98:b0:7b:28:62:f1:1c:50:0b:56:0d:33:f0:
05:ac:62:98:08:19:b1:5b:98:d3:3a:84:27:d9:9b:63:0a:3a:
60:6c:fe:41:8d:21:d6:c0:f9:b2:13:92:08:6b:82:82:49:12:
a1:a5:60:99:1a:0a:37:6d:2a:79:b6:4e:23:cd:7d:e0:9f:d8:
f2:55:8b:a3:5b:20:c8:10:c8:18:e5:bd:c8:d1:9c:20:88:c5:
43:09:d0:e2:06:f4:59:5e:c5:a3:ea:c5:b2:61:75:b4:ee:c1:
a6:d9:64:19:df:b6:bb:50:e5:24:be:8e:f6:44:2c:2a:7d:97:
27:9b:d4:a0:43:90:1a:35:4d:d1:63:1d:a0:02:22:04:99:b2:
ce:b3:11:2e:79:3e:f2:40:ee:df:14:b0:be:d9:dc:e7:f5:63:
1e:72:de:ca:5b:79:6e:79:a2:9e:f1:a0:38:04:85:e9:2d:3f:
30:ff:a2:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:29:35 2025 by rpki-client