Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: MoeZQJuMge8FL5cmB/pn8YG8PTzjC3I6M3eSZ3KxPZY=
Subject key identifier: D5:CF:E6:B2:27:B5:B7:69:C5:B6:DE:29:27:9C:7C:C9:54:C9:F0:CC
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 0197526B437656D5D13EFD89C9A3E8A90C92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 94
Signing time: Mon 09 Jun 2025 02:00:50 +0000
Manifest this update: Mon 09 Jun 2025 02:00:50 +0000
Manifest next update: Tue 10 Jun 2025 02:00:50 +0000
Files and hashes: 1: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: NwDijGbP8GQ1b/wXMbuiFzeibSzFWuzKeZKFE7KRHO0=)
2: QmVb0SoXYnlMedY0w_3_iXHpV1g.roa (hash: a3gXOD/NjdWHnE6P9SQzEQhqDOtbuugfMMDorP0aI2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:6b:43:76:56:d5:d1:3e:fd:89:c9:a3:e8:a9:0c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Jun 9 02:00:50 2025 GMT
Not After : Jun 10 02:00:50 2025 GMT
Subject: CN=d5cfe6b227b5b769c5b6de29279c7cc954c9f0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3b:fe:41:f8:54:09:7c:23:cb:f0:cb:57:8a:
61:7e:0b:54:77:13:92:a3:97:cc:d3:93:21:cf:6a:
cd:16:bb:dd:21:ef:20:57:48:63:98:0d:1b:7d:d9:
e9:e6:6b:39:58:45:8a:f1:b8:b2:7c:db:6e:84:c3:
97:82:d5:5c:fa:cf:b9:2e:db:1e:6a:ad:88:a3:5a:
6d:ee:e3:dd:0e:94:ea:3d:8f:7a:6d:5c:43:23:5f:
36:be:c3:6c:24:5b:44:25:4e:a3:73:8f:36:0c:e7:
65:f2:df:ca:35:b9:f7:f3:23:60:1c:f2:a8:a4:a5:
59:5b:cf:cd:5f:2f:f5:bc:32:5e:06:0e:60:64:0c:
ba:45:96:1c:22:08:34:89:0c:8d:f2:40:5f:c1:12:
8e:4e:0d:3b:65:03:c0:b8:0c:7f:c3:a3:53:df:96:
31:3f:b5:27:f2:50:47:17:3c:37:64:28:ba:10:a4:
16:54:59:7b:c1:af:e9:d3:39:0b:46:e5:7d:9b:eb:
3a:f2:4f:9a:88:03:68:0e:e5:43:d3:49:00:55:12:
03:ad:f1:85:c2:bb:53:b7:bb:47:b1:74:e6:6e:13:
c2:79:62:2d:ab:6f:32:0c:d4:18:12:01:0a:6b:92:
1c:1e:4e:a2:38:46:50:3e:3f:18:da:4c:42:0c:cc:
fe:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CF:E6:B2:27:B5:B7:69:C5:B6:DE:29:27:9C:7C:C9:54:C9:F0:CC
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:1d:51:b1:5a:cf:aa:3c:3a:de:70:e6:a9:6e:36:24:96:81:
fa:8e:13:2f:1c:83:74:61:8c:7d:e4:51:4b:66:fd:b4:a4:06:
59:97:28:6c:63:8a:f8:b3:35:7f:14:b5:59:3a:ae:f6:9a:c0:
88:00:87:42:39:19:11:13:25:78:46:3b:f8:3e:f1:58:63:f1:
fa:75:2e:f0:51:bd:a2:39:98:38:4b:fd:9e:43:90:38:a2:d8:
67:89:86:30:d5:da:e9:2c:47:fc:82:84:95:f7:2e:91:05:1b:
9a:d4:c9:f3:79:27:e0:db:28:64:41:54:3c:09:af:e6:32:60:
dd:a6:9d:7b:85:5f:62:55:90:4a:49:c1:24:c0:60:10:ca:2e:
cc:9a:f9:b3:1d:40:a6:c8:71:59:fe:31:f7:2a:66:98:03:5d:
00:f2:f2:16:54:80:51:59:9c:57:3f:8f:4e:da:95:66:81:60:
14:6a:14:39:fe:34:1e:e8:a5:ca:89:f6:d4:71:25:6f:b6:84:
87:2d:a7:81:4f:d2:b1:61:bd:ce:ba:2d:1d:85:10:14:f9:f2:
b5:ef:69:f7:d4:0f:f2:5e:65:3c:47:fe:4e:03:87:d0:83:ad:
ad:35:25:6d:01:52:c6:8b:ca:37:ee:35:55:70:ca:80:fa:22:
af:bd:9a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 04:48:53 2025 by rpki-client