Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
File: pavEOvztcvuSd4covuVxxnj1OFM.mft (raw, json)
Hash identifier: EscHrQ5cPz8F3Ge37k3inTcV51E3IDA7m+JP12K0a48=
Subject key identifier: 6A:6B:14:8D:7E:92:4F:BF:46:DB:85:6F:BA:3C:0A:31:67:0F:67:05
Authority key identifier: A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
Certificate issuer: /CN=a5abc43afced72fb92778728bee571c678f53853
Certificate serial: 0197481E3AAFEC36A416D1B11B36070623AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 02:00:30 +0000
Manifest this update: Sat 07 Jun 2025 02:00:30 +0000
Manifest next update: Sun 08 Jun 2025 02:00:30 +0000
Files and hashes: 1: XTYDavgtknOlnwhLwE8YM7gzGNo.roa (hash: PldFwC0OKAPE16YsYJiSJ7/6hQNZV4y5TLuWK0kyNJ0=)
2: pavEOvztcvuSd4covuVxxnj1OFM.crl (hash: yXUG89ZF9wAfuLgQJJPG6b0fpHt6mJDTmhbhyBEIhCo=)
3: sSPz7KsWNIMKyyRHlSkiZwosgKw.roa (hash: wjM7pq8MRvpOQBEJDje34R/IkWbdszEvqnHRsuBbId4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 02:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:3a:af:ec:36:a4:16:d1:b1:1b:36:07:06:23:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5abc43afced72fb92778728bee571c678f53853
Validity
Not Before: Jun 7 02:00:30 2025 GMT
Not After : Jun 8 02:00:30 2025 GMT
Subject: CN=6a6b148d7e924fbf46db856fba3c0a31670f6705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bf:2c:02:0a:82:ce:3b:93:78:ce:e0:85:e4:
d5:aa:1c:a7:6d:7d:4c:86:3d:28:48:f1:16:96:a6:
db:6a:05:67:99:d9:38:44:16:29:f4:a7:8c:53:c5:
0f:52:d0:a0:53:ae:9d:39:45:e4:b7:ff:ce:9a:97:
da:66:0f:2e:bb:5e:c5:e2:d3:4d:71:ac:cd:27:f4:
1a:36:e4:66:dc:57:90:5e:f4:20:cd:38:9e:2a:ac:
a7:03:f6:f6:02:70:1c:03:aa:d1:4c:2b:61:93:d3:
8a:bc:05:f0:28:aa:62:80:b7:83:1e:a9:ff:94:8a:
51:7b:c0:67:18:9c:09:af:32:be:8f:6d:11:23:31:
f2:25:ce:c8:0a:d5:64:fa:8d:fc:41:7a:92:77:df:
a3:57:15:ce:27:99:0a:55:4e:ca:e3:39:3a:7a:80:
a0:25:40:f3:f3:61:d2:34:4f:ce:b0:d0:6e:88:21:
5b:7b:5c:2f:bd:1c:7a:8c:7b:c6:2e:5a:ea:c7:d3:
d0:6f:27:6f:22:b9:bf:db:13:7f:84:bf:51:f7:51:
aa:55:a7:75:38:9f:af:3a:d0:d2:50:b7:d8:18:d8:
b5:9b:9d:f2:38:db:f2:61:7d:72:1b:dc:89:c0:3c:
e8:a7:85:7b:1b:80:a7:a7:d3:2c:05:a4:2e:c3:ea:
90:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:6B:14:8D:7E:92:4F:BF:46:DB:85:6F:BA:3C:0A:31:67:0F:67:05
X509v3 Authority Key Identifier:
keyid:A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:33:3e:2a:e1:64:61:ca:97:df:1f:6d:4e:cc:03:2b:37:7f:
16:d8:37:72:91:f7:41:d3:7c:44:d7:23:98:10:77:d2:1b:33:
0e:03:ec:13:99:37:27:6c:5e:f3:5a:db:fb:74:a6:5b:2f:ae:
19:52:7e:75:7a:61:88:54:28:76:49:ff:43:a8:61:07:c6:11:
7e:21:37:a6:87:ff:d7:d0:40:fa:3f:cb:49:b4:65:19:42:da:
21:56:3b:6d:00:ee:7b:4c:6a:2f:e9:ee:11:70:12:c5:be:38:
dd:1d:00:44:01:0d:fa:48:3c:d4:4c:28:f4:cf:a4:4b:68:67:
84:af:b9:e0:88:55:f4:69:23:41:b1:a2:3f:f0:ad:91:05:f5:
1f:03:75:c0:9e:38:9d:7c:a2:03:43:cf:31:9e:95:d3:86:79:
fb:25:6d:f8:d0:9d:40:07:da:90:43:db:58:34:f4:7f:20:bd:
94:d9:27:10:63:56:ce:ba:05:a3:e0:d3:e0:dc:d0:1b:24:f9:
fd:76:b1:b0:59:37:e3:1d:53:44:18:b3:3c:2e:1c:35:b0:88:
b1:86:7d:cd:e7:ac:c7:00:3b:f8:af:ad:d6:8e:37:f0:ce:92:
df:cf:3f:7f:3f:df:e3:42:28:48:f5:08:67:9b:ba:2a:0a:dd:
e8:63:32:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:34:50 2025 by rpki-client