Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
File: Pls0eWfOpnu2K2nSWazeS4-elBc.mft (raw, json)
Hash identifier: 6kvAIgMASZBUPrMLACcmYRlDUsc1aV90UFhx8vFe8TE=
Subject key identifier: A9:41:33:DF:30:0C:28:68:6A:8E:A0:C6:54:28:A7:6B:B2:0C:D0:89
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 01974855265C6ED0F6DDB1C7C07D1806BAFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
Manifest number: 0A93
Signing time: Sat 07 Jun 2025 03:00:29 +0000
Manifest this update: Sat 07 Jun 2025 03:00:29 +0000
Manifest next update: Sun 08 Jun 2025 03:00:29 +0000
Files and hashes: 1: Pls0eWfOpnu2K2nSWazeS4-elBc.crl (hash: +Hk0cf3DLyjLsFXtVaSj6z8P8sTTm7SDGox6JHyaPck=)
2: yeykCTxRfXSLEqjo1MZ7zObmrks.roa (hash: 1vVWF5KJNfMy/yYL5Sp0YWKLB5R7wsPTTiR6VRMJgCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:26:5c:6e:d0:f6:dd:b1:c7:c0:7d:18:06:ba:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Jun 7 03:00:29 2025 GMT
Not After : Jun 8 03:00:29 2025 GMT
Subject: CN=a94133df300c28686a8ea0c65428a76bb20cd089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:83:9e:8e:2d:77:2d:87:f4:15:7a:48:9c:7a:
54:d8:f0:89:b0:fd:f3:09:ea:1e:68:92:f0:5f:7a:
34:47:14:9b:19:d8:73:57:05:77:7a:8e:26:df:84:
e5:0f:47:40:80:4a:f7:5b:29:dc:bf:5f:0e:75:a8:
fc:a2:0d:b1:80:ba:ba:9f:a2:4f:3f:9a:1d:6b:3d:
65:9e:d0:b8:51:64:ab:c1:fe:ad:8d:97:1d:97:ae:
f4:7b:9d:2f:99:8a:73:45:25:85:0e:fe:d1:d6:28:
f8:e2:25:2a:db:86:70:3e:72:a6:a5:e4:49:92:7d:
c3:a4:40:a2:12:41:47:f6:fe:c9:69:ac:9d:00:33:
b0:44:e7:ea:60:bd:56:e4:4e:a5:21:a8:24:2c:67:
be:06:91:93:68:07:43:94:ae:9a:b4:aa:5f:42:a8:
19:e9:b7:3d:9c:62:ad:6b:37:64:47:ff:31:97:52:
58:ba:cb:de:65:cf:c8:ef:a2:fd:04:a6:f7:82:95:
f7:a1:77:6d:47:18:20:27:a8:a8:47:c2:51:e2:c7:
02:c8:32:fa:39:f4:c5:b9:93:d0:7a:f5:1d:01:84:
32:76:57:67:97:d1:41:43:eb:71:e1:34:06:2b:20:
47:e9:ba:22:8f:69:74:40:db:1a:d6:96:e7:a2:d4:
27:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:41:33:DF:30:0C:28:68:6A:8E:A0:C6:54:28:A7:6B:B2:0C:D0:89
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:1b:91:65:75:c8:e1:93:82:22:a6:34:b2:1e:55:05:b2:7a:
e7:38:ae:7f:96:a0:1d:e1:06:8f:a4:2a:48:3a:db:46:ef:c3:
cd:22:85:e3:f9:81:a4:47:2b:da:38:eb:76:08:8e:b2:d3:ca:
f3:10:80:c4:0a:9a:0f:e2:b5:78:4b:b8:ff:3c:21:99:68:14:
67:31:c9:1d:ea:e8:c6:6b:f9:40:d3:56:a1:b9:6f:3a:a6:82:
92:6f:75:ba:66:7e:04:93:8e:60:7b:e0:aa:ad:80:d3:14:5c:
7d:b1:d5:7e:88:28:49:82:96:2d:57:46:e0:ff:d1:7f:52:64:
e4:95:12:1b:88:d3:c3:81:64:6b:93:b2:c1:43:26:98:5a:89:
04:3a:7e:63:43:02:24:f0:b7:11:26:5d:e3:2d:7d:95:a0:a2:
e2:b1:10:fb:f6:55:ea:89:3e:c4:df:f4:22:73:93:6e:de:85:
12:cf:47:75:3a:ad:d6:d9:e4:c6:12:8c:3b:61:4e:82:15:18:
c1:02:61:b8:9b:3f:94:a1:c0:78:9a:3f:24:31:94:2c:44:26:
76:c6:ec:de:41:83:aa:b6:18:61:97:f0:16:af:9f:6d:35:c0:
a5:08:3f:3e:c9:0c:4c:cd:80:b1:42:ca:42:af:6f:10:ba:68:
e9:61:45:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:30:38 2025 by rpki-client