Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: +nbHdFoNS5exkHIFTtfNSopxQ9dP8zCbLwHSLe97RF4=
Subject key identifier: DB:3D:5C:FB:04:84:22:36:FA:87:A1:37:54:7C:71:87:AA:99:53:FE
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 0197470BB87A0D587509356E1DA7E08AC6FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 21:00:39 +0000
Manifest this update: Fri 06 Jun 2025 21:00:39 +0000
Manifest next update: Sat 07 Jun 2025 21:00:39 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: RLjJnABb4WfoqH9+AIKvDCKEaIqYZn4IhyCAMIgoXQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:b8:7a:0d:58:75:09:35:6e:1d:a7:e0:8a:c6:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Jun 6 21:00:39 2025 GMT
Not After : Jun 7 21:00:39 2025 GMT
Subject: CN=db3d5cfb04842236fa87a137547c7187aa9953fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:74:08:e6:30:c7:4d:82:23:e7:2c:1c:e5:
ff:8d:6f:fb:44:f7:0a:96:bb:7a:05:33:14:c3:c3:
34:b8:2c:d4:71:a2:55:f8:a6:fb:a9:f5:23:8a:be:
c0:a1:0c:25:26:08:58:4a:7f:6c:dc:cd:07:60:6c:
36:71:45:1c:20:85:68:d6:4d:4b:8a:32:68:31:5f:
39:f8:63:b2:27:d1:7d:6b:5a:dc:38:c1:97:d6:5e:
da:7e:2e:c0:c0:66:bd:10:b9:ed:25:cb:3a:50:c4:
5e:ce:d6:07:b5:ef:42:28:a9:8d:4b:65:5c:33:fc:
36:04:e3:5a:5c:5c:99:64:55:fc:79:b7:77:31:39:
f8:3d:b0:db:c9:7a:ed:77:be:c7:2e:98:89:b5:32:
a3:c1:2f:ee:67:59:80:f0:c3:2a:11:28:96:a4:16:
0a:94:95:5e:ee:5c:13:8e:12:bd:4c:68:d6:e4:5c:
36:ef:17:9a:e9:8a:c7:cb:87:23:5d:02:14:20:1f:
f4:43:90:9c:4f:77:e9:54:02:53:7b:c5:ba:40:79:
5e:e3:c6:cb:3c:62:cb:98:8d:18:a8:ac:78:37:68:
8d:25:7b:be:29:1b:c4:3f:a7:28:24:7a:63:3c:4b:
98:0d:7a:1b:fb:9f:5e:82:29:ad:7f:c5:df:36:89:
1a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3D:5C:FB:04:84:22:36:FA:87:A1:37:54:7C:71:87:AA:99:53:FE
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:7b:cd:6f:ce:da:4f:ed:16:08:38:bd:41:8c:52:4f:35:f9:
21:82:be:36:e1:28:0e:20:b2:3b:07:bd:e2:55:0d:3e:42:7f:
f9:ee:2a:84:7b:10:c4:86:e9:85:a0:1e:54:af:f8:eb:7c:88:
51:ba:5a:c9:02:60:02:87:51:01:df:4d:82:cc:93:a3:67:7d:
b6:43:16:59:32:3d:f5:ed:21:e8:fb:35:8c:40:37:49:ad:90:
ef:05:5c:68:87:78:9f:28:ee:5d:28:5f:0d:90:db:45:0b:fd:
7c:f9:76:51:7e:cd:b1:c3:30:75:17:04:8a:ba:91:fc:fd:48:
f8:5e:07:1e:a5:06:61:13:e4:06:ed:a3:a4:ed:b8:2c:e6:fb:
fc:cf:49:27:fe:44:85:d7:73:d9:3f:50:0d:16:b7:a5:d6:f8:
4d:1e:a9:7d:33:b4:56:54:71:30:1a:8c:98:47:f0:f4:34:d7:
66:ec:9b:89:1c:3b:ee:a8:c1:24:bb:ed:89:b8:88:f8:1b:0f:
52:da:8f:21:a5:cd:db:20:9b:e6:b8:6b:a2:15:36:bd:14:94:
91:b5:39:77:7b:4a:70:84:93:ae:5e:b6:b8:c1:9c:ac:33:0d:
66:a0:6c:40:3b:62:32:f7:14:3d:84:dd:4a:ea:f2:4a:64:9d:
46:5d:6e:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:22:35 2025 by rpki-client