Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: tt1FQdAnT+xJjJHZWEg2DeNHUM8k8dsdO7MisOWm65k=
Subject key identifier: D7:CA:31:A6:D8:34:80:9E:AF:63:5C:A2:94:A1:8C:FB:C8:CA:A3:87
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 01974967E4B79D3ABA93403DE2D01AA563BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0984
Signing time: Sat 07 Jun 2025 08:00:34 +0000
Manifest this update: Sat 07 Jun 2025 08:00:34 +0000
Manifest next update: Sun 08 Jun 2025 08:00:34 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: gyABLI53PawF6muucXuBZlgnvyoFPURSKQ+Jsk/6ynY=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:e4:b7:9d:3a:ba:93:40:3d:e2:d0:1a:a5:63:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Jun 7 08:00:34 2025 GMT
Not After : Jun 8 08:00:34 2025 GMT
Subject: CN=d7ca31a6d834809eaf635ca294a18cfbc8caa387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:05:73:30:64:1a:4d:e5:37:47:c0:95:64:b1:
08:46:23:d3:60:20:99:6f:c9:18:a8:48:f6:a0:a1:
21:4f:e6:99:95:fb:21:12:c9:51:62:9f:86:3d:67:
f7:23:f7:5f:2a:d7:90:7d:37:70:31:34:e6:7f:e4:
aa:29:76:b3:bc:ce:23:27:a6:e5:71:4e:2c:c4:ec:
c3:24:dc:14:46:9a:41:ac:d8:61:85:a1:00:ef:a2:
f9:2e:ca:55:e7:40:83:7b:75:2a:8c:31:99:2a:c3:
bb:7f:03:e8:90:60:79:91:7f:e6:58:cf:42:98:d9:
b8:6f:b2:2c:08:e7:2b:0d:fb:4f:d3:25:56:4a:04:
fc:fe:15:b8:22:0c:3c:d9:34:c9:15:d9:c9:03:71:
cb:fa:cd:43:41:cc:09:f1:a2:43:d4:7c:a8:69:26:
0f:d0:e6:25:17:30:3c:69:9f:d8:76:53:66:a1:35:
b4:7a:63:00:44:d0:d8:29:5c:d1:2b:b8:14:d4:8e:
f6:09:3e:fb:e5:2c:b2:e3:19:c3:b5:94:bd:74:7f:
c8:45:d1:b6:85:2e:d1:49:2a:dc:5a:9f:3a:ea:35:
7c:11:28:12:5a:05:b9:07:74:dd:6c:93:8b:14:da:
46:04:47:48:14:37:b4:3e:12:37:51:b1:40:ec:69:
b5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:CA:31:A6:D8:34:80:9E:AF:63:5C:A2:94:A1:8C:FB:C8:CA:A3:87
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:3f:fd:e8:91:7c:49:22:5c:2c:78:72:20:21:03:75:4a:c0:
08:a1:75:bd:08:30:40:9b:92:3b:ff:04:6c:71:ff:6e:3e:d9:
76:99:6d:20:0f:e9:5c:82:2a:8e:d3:04:b8:bc:18:9a:21:0a:
4a:ee:11:db:c9:c7:90:3b:aa:9a:c5:25:4f:61:ae:1a:c8:ba:
db:39:d3:8d:02:34:66:57:e8:c7:76:cc:84:ce:26:13:21:3f:
45:5a:e3:c6:68:03:fd:b6:b5:fc:e7:48:10:98:a9:9d:28:78:
24:a4:28:99:2b:20:42:cc:88:d9:5b:7d:92:6f:52:95:65:39:
14:c8:cb:44:17:11:bc:95:bc:6c:d1:27:3a:ad:4a:cb:ad:5c:
7a:2c:2e:32:13:55:94:4c:74:14:b5:c7:33:8a:f7:9a:20:a3:
9c:c5:48:86:a1:f4:5f:c9:f2:d1:c1:88:34:a7:e6:62:83:c2:
e5:c1:fe:c1:e4:13:64:d1:2d:97:3a:88:45:10:08:f7:3b:01:
e0:f3:98:d7:a0:ad:7f:dc:40:db:ef:43:cd:77:0d:31:b3:91:
ff:5b:a9:cf:a5:57:81:44:87:59:b0:04:24:6a:b4:3f:40:b1:
70:4b:89:71:ae:e7:96:50:b0:10:df:08:44:f8:73:79:85:9f:
67:c7:63:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ+S3nTq6k0A94tAapWO9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm
OTZkZWMwHhcNMjUwNjA3MDgwMDM0WhcNMjUwNjA4MDgwMDM0WjAzMTEwLwYDVQQD
EyhkN2NhMzFhNmQ4MzQ4MDllYWY2MzVjYTI5NGExOGNmYmM4Y2FhMzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAVzMGQaTeU3R8CVZLEIRiPTYCCZ
b8kYqEj2oKEhT+aZlfshEslRYp+GPWf3I/dfKteQfTdwMTTmf+SqKXazvM4jJ6bl
cU4sxOzDJNwURppBrNhhhaEA76L5LspV50CDe3UqjDGZKsO7fwPokGB5kX/mWM9C
mNm4b7IsCOcrDftP0yVWSgT8/hW4Igw82TTJFdnJA3HL+s1DQcwJ8aJD1HyoaSYP
0OYlFzA8aZ/YdlNmoTW0emMARNDYKVzRK7gU1I72CT775Syy4xnDtZS9dH/IRdG2
hS7RSSrcWp866jV8ESgSWgW5B3TdbJOLFNpGBEdIFDe0PhI3UbFA7Gm18wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNfKMabYNICer2NcopShjPvIyqOHMB8GA1UdIwQY
MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt
ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4
LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaT/96JF8
SSJcLHhyICEDdUrACKF1vQgwQJuSO/8EbHH/bj7ZdpltIA/pXIIqjtMEuLwYmiEK
Su4R28nHkDuqmsUlT2GuGsi62znTjQI0Zlfox3bMhM4mEyE/RVrjxmgD/ba1/OdI
EJipnSh4JKQomSsgQsyI2Vt9km9SlWU5FMjLRBcRvJW8bNEnOq1Ky61ceiwuMhNV
lEx0FLXHM4r3miCjnMVIhqH0X8ny0cGINKfmYoPC5cH+weQTZNEtlzqIRRAI9zsB
4POY16Ctf9xA2+9DzXcNMbOR/1upz6VXgUSHWbAEJGq0P0CxcEuJca7nllCwEN8I
RPhzeYWfZ8dj/w==
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:28:09 2025 by rpki-client