Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
File: PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft (raw, json)
Hash identifier: H8E8SFfOHsW4n2v9APy6iEctgWy6CWNqeStZ9ElqMho=
Subject key identifier: C9:EF:56:29:AB:3B:7E:6C:FF:8F:1D:3F:62:26:DD:DF:1D:37:93:8B
Authority key identifier: 3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
Certificate issuer: /CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Certificate serial: 01974AB196F3D9CE4D48BC7373871B89AAAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
Manifest number: 0710
Signing time: Sat 07 Jun 2025 14:00:41 +0000
Manifest this update: Sat 07 Jun 2025 14:00:41 +0000
Manifest next update: Sun 08 Jun 2025 14:00:41 +0000
Files and hashes: 1: FNcoFmyMsrmKFW3pVuTLoiKb9Y0.roa (hash: L2M1ZIYqNE7da9VzHmMG0LiaV1K9e8NQgXmk4Xn6knE=)
2: PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl (hash: 0vRUEm4Dx75WRxFOpZovtqHYfqc57KWARYA4kk2dKyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:96:f3:d9:ce:4d:48:bc:73:73:87:1b:89:aa:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Validity
Not Before: Jun 7 14:00:41 2025 GMT
Not After : Jun 8 14:00:41 2025 GMT
Subject: CN=c9ef5629ab3b7e6cff8f1d3f6226dddf1d37938b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:29:c2:7d:3c:a6:85:37:0c:e8:1e:9d:0a:a2:
08:3e:7d:95:d8:ff:78:22:d9:37:11:56:51:3a:9a:
05:d9:e4:7d:ce:1b:6a:80:3a:3f:c2:b3:ac:76:7c:
d8:59:86:16:a4:36:a8:16:e3:82:65:c6:af:96:c2:
c4:88:d7:c1:a9:02:92:b7:f0:93:68:2c:da:b9:c7:
d5:39:09:82:60:f2:7c:5d:64:df:bf:5d:65:a3:0b:
c9:0b:3f:05:3e:b2:30:84:6b:60:21:ea:1d:c7:75:
b7:4c:15:1d:0e:44:fd:2a:15:6c:92:4f:56:36:c3:
cf:36:40:0a:7a:7b:e1:2e:17:c4:c9:60:88:97:30:
3d:b6:71:62:bf:a4:9d:e2:ad:17:28:f8:d0:93:41:
26:6f:37:05:c0:fd:6c:d4:3c:37:94:30:14:03:c7:
09:f3:d0:ab:c9:7b:ee:93:27:7a:71:09:fc:ec:3a:
57:e7:77:2a:91:65:ae:0b:31:1a:b9:52:bb:62:52:
1e:41:27:bb:f3:42:00:8f:0f:76:af:0a:75:e2:65:
c5:e0:45:36:9f:0d:b1:36:56:79:de:08:68:df:3e:
1b:18:dc:50:5b:97:67:e2:60:8a:bd:7f:44:1b:10:
99:5e:c5:87:95:c7:15:4c:44:57:11:64:9d:b7:39:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EF:56:29:AB:3B:7E:6C:FF:8F:1D:3F:62:26:DD:DF:1D:37:93:8B
X509v3 Authority Key Identifier:
keyid:3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6a:cf:1d:f8:d1:c2:9e:2a:11:80:62:de:36:7f:f8:76:b9:
40:4c:e7:60:3d:5c:20:f2:45:6c:df:28:81:4a:00:e6:6d:f4:
d2:2f:a0:db:4d:95:bc:e3:ab:ed:13:31:45:a6:d3:ae:2d:14:
2d:2d:bd:00:80:e5:3b:c2:44:34:1c:54:9a:6f:b5:72:e1:c2:
67:cb:68:2c:55:b2:4b:91:76:96:6f:10:44:c4:86:ee:21:b3:
50:44:69:d3:0e:84:8f:b2:45:db:67:9b:ba:29:e4:eb:92:52:
a2:35:93:ea:1b:e4:d2:4d:76:a7:54:d1:9c:1d:c5:94:5a:8f:
b2:16:24:48:de:31:f9:7e:20:80:a5:dd:a0:f4:e9:2c:a7:6e:
1f:ff:ba:f8:a0:cc:45:11:4b:cb:42:7c:99:7e:00:f7:55:f0:
22:6d:f9:b8:cd:12:b6:a0:33:85:d6:3a:f4:52:d0:cf:49:23:
9b:2b:52:f8:00:cd:15:da:fa:73:48:e1:83:e6:cc:8d:f0:ec:
83:7c:f9:63:4d:11:9c:38:8e:cb:6b:05:7d:07:43:c7:98:5c:
01:9d:6a:ee:7f:17:06:08:b5:e0:af:da:74:37:3f:41:4b:c5:
fa:a6:11:ca:79:53:f6:40:61:4c:a0:c2:a4:cf:15:11:10:dc:
d6:59:31:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:05:28 2025 by rpki-client