Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
File: PNKqcak6qcEye3NTigR45PeC9vc.mft (raw, json)
Hash identifier: 3bf4Xtl6+PHFV/+Kmb/RvesWnRAz6pVZ69eSmvCJ7Ss=
Subject key identifier: 10:42:41:76:87:F9:67:D2:73:2F:4B:FB:54:39:D6:0B:31:38:7D:F9
Authority key identifier: 3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
Certificate issuer: /CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Certificate serial: 01975AC94DF8E9C89B9640B5B058505DF9CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
Manifest number: 0CFF
Signing time: Tue 10 Jun 2025 17:00:31 +0000
Manifest this update: Tue 10 Jun 2025 17:00:31 +0000
Manifest next update: Wed 11 Jun 2025 17:00:31 +0000
Files and hashes: 1: PNKqcak6qcEye3NTigR45PeC9vc.crl (hash: lJneK0NkfFKt/WAme0Tk4WqFkmWnextc0YBOxW7FlIQ=)
2: mkUXmgygJpYBMQ2Igm9L-tv-j1s.roa (hash: 9Fpz5SGKImESLClWOjbnaFAMtUoqIoi74+/yK2yHMuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:c9:4d:f8:e9:c8:9b:96:40:b5:b0:58:50:5d:f9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Validity
Not Before: Jun 10 17:00:31 2025 GMT
Not After : Jun 11 17:00:31 2025 GMT
Subject: CN=1042417687f967d2732f4bfb5439d60b31387df9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fd:ff:30:b3:d0:d3:ca:40:5e:fd:36:bd:33:
8d:fc:fe:0e:0b:8d:f5:5e:75:3d:0f:8f:fe:93:5b:
56:8e:c3:c3:20:ba:ed:07:70:cf:a5:fa:08:3b:17:
ce:f3:74:3d:60:85:86:54:63:2b:eb:bc:d6:fb:e3:
be:c8:0e:d5:a0:c3:c7:13:ba:ee:a9:dd:6e:cd:9e:
71:33:99:a8:19:41:72:2f:d2:5a:ee:70:3a:29:c2:
26:cf:92:df:35:69:e6:1f:c7:8f:37:69:a8:a0:62:
52:b7:6b:1d:b7:62:44:67:9e:8a:e1:0e:36:e6:5c:
56:8b:5e:ec:89:c1:0f:52:0f:14:79:43:7a:16:6b:
0c:bf:3a:90:e2:2a:cc:03:e2:ce:ec:a6:44:60:0b:
1a:75:34:89:bc:21:0c:e1:36:1e:cf:75:b8:59:77:
59:d6:2a:53:16:80:b2:d2:ac:14:5f:25:23:7b:2e:
d6:77:c3:09:9a:b0:76:76:b9:59:87:26:3e:67:87:
a9:ea:f3:57:fa:7d:fa:53:1c:4f:eb:16:55:8b:0c:
13:21:96:cf:cb:86:29:db:12:8d:36:86:f2:91:ac:
7b:26:31:98:d7:c3:5c:b4:49:37:00:db:a2:c3:c4:
02:53:56:ed:ca:bd:a4:e3:21:78:8c:a3:4f:ba:05:
f7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:42:41:76:87:F9:67:D2:73:2F:4B:FB:54:39:D6:0B:31:38:7D:F9
X509v3 Authority Key Identifier:
keyid:3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2e:7d:6a:34:50:e2:d3:f7:fd:81:fc:f2:55:45:ef:83:74:
f1:49:cb:57:98:4a:04:28:92:c7:d5:ee:77:ad:c3:7d:a3:de:
84:74:d5:00:d6:13:a5:66:4b:30:e2:ff:fe:1d:1a:5e:7c:81:
c1:10:53:d8:0f:6d:df:a5:d3:fd:0d:4f:f6:35:b9:e4:2c:79:
02:f1:90:de:3e:ce:b9:35:ed:22:02:ef:95:9a:89:ff:0e:33:
7a:20:b4:93:53:8f:61:17:6e:6e:26:32:bd:9b:09:4b:b7:40:
4a:45:e3:95:ac:23:05:77:9e:50:7c:46:80:6c:09:f4:a3:09:
12:86:dc:7e:e4:f9:cf:0d:4d:fe:9f:4b:5f:d9:fe:fb:06:12:
7d:9d:5c:77:25:9a:77:7a:b9:91:07:ae:1a:c2:00:04:a5:96:
a1:d5:5f:33:66:0b:6c:86:62:c5:94:8a:18:50:0c:99:35:91:
68:2d:75:94:44:05:65:f1:96:de:ec:c0:cd:ff:ab:83:ce:06:
37:b1:64:ff:8a:a9:73:20:a2:11:00:e5:39:8a:8e:65:c1:71:
8b:af:3a:45:bf:d7:d6:3c:72:13:fd:4a:e0:94:b9:0d:37:13:
56:ab:76:e8:cc:f7:c4:b1:0e:50:f9:11:c7:0a:d6:76:c1:6f:
ca:2e:b3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:48:05 2025 by rpki-client