Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
File: PqFIQth34nvEBouYH-dK64vufnM.mft (raw, json)
Hash identifier: ZrkeNn2nyqD2oQan/EdOyVGRp382iEnPdkSDrA+Lppo=
Subject key identifier: F4:9F:AD:56:05:45:EC:B7:8A:73:41:DE:24:B4:66:C7:EF:12:35:06
Authority key identifier: 3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
Certificate issuer: /CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Certificate serial: 019753EB523F8CE321C19D470EE09229B8EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 09:00:20 +0000
Manifest this update: Mon 09 Jun 2025 09:00:20 +0000
Manifest next update: Tue 10 Jun 2025 09:00:20 +0000
Files and hashes: 1: PqFIQth34nvEBouYH-dK64vufnM.crl (hash: ZiwHnxOoh3VwDJe4QBQJGUxLTsAFVh3fhok4cXDBo60=)
2: h5AoEy-X54Db83-jTlFH2Y1fCVw.roa (hash: HOh3C7TWeQ0O5hO+1P91yiEiZozSeSnp7F1/q290vZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:eb:52:3f:8c:e3:21:c1:9d:47:0e:e0:92:29:b8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Validity
Not Before: Jun 9 09:00:20 2025 GMT
Not After : Jun 10 09:00:20 2025 GMT
Subject: CN=f49fad560545ecb78a7341de24b466c7ef123506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:43:1a:00:27:b7:57:d1:fd:94:2b:63:5e:55:
48:12:a9:ec:33:a6:f8:bb:9a:49:0a:39:07:66:de:
a1:f8:48:75:db:08:ba:48:d3:f2:6a:18:d6:91:8f:
a9:e7:76:f6:fd:59:3e:f8:7b:ab:ea:93:0a:29:31:
2b:d6:82:40:30:ae:9e:e6:a5:d4:b4:50:6a:5c:88:
ea:c7:8b:6e:24:c0:d3:70:01:5a:cd:69:86:89:c8:
ec:a7:2b:8f:aa:55:2a:0d:9a:13:26:7a:76:70:74:
02:ba:8d:d7:68:02:9f:a5:0c:5f:c2:3d:41:4e:c8:
97:97:29:47:f3:f5:fa:66:70:ee:7b:e9:68:09:b0:
2b:04:11:2b:6d:24:8e:a0:3c:75:4d:38:14:23:90:
32:56:1e:ef:0e:9e:a6:c5:f8:9e:bf:2d:55:b1:26:
23:10:a6:cc:52:7c:e1:9f:d1:92:ca:95:c0:4a:73:
f4:28:64:58:a1:0c:73:7d:b5:d5:b1:1a:ff:76:7e:
db:02:65:b7:d0:ff:71:03:60:a3:d2:bb:d8:40:8d:
2f:85:2c:bb:7e:1a:1b:97:ab:a7:a5:fd:d7:4b:6e:
27:23:2e:b4:d7:21:1f:6e:a6:74:95:2b:ea:4d:8d:
70:cf:64:d7:d0:e6:2d:fa:c5:f2:ce:7c:a6:49:14:
e0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9F:AD:56:05:45:EC:B7:8A:73:41:DE:24:B4:66:C7:EF:12:35:06
X509v3 Authority Key Identifier:
keyid:3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:08:9b:0e:e2:d0:91:fa:ac:ac:6f:af:76:a0:89:40:6f:60:
9c:4d:d7:8c:40:be:e8:15:98:08:a4:be:96:cd:09:35:05:45:
c7:b2:f9:67:be:1e:5e:2e:c0:54:57:05:ba:8a:97:5b:73:fd:
83:7c:c1:ba:d1:07:1a:cb:8f:7d:7f:7e:0d:f8:23:22:3d:24:
e1:b3:10:db:c9:42:f4:34:a4:91:0f:3d:60:fe:cd:7b:8f:b2:
cd:0c:1b:3b:10:02:ae:1f:31:ac:cb:aa:be:a6:f4:e4:42:73:
2c:76:a2:61:c4:53:c4:9a:07:7e:5d:da:05:8e:c0:81:1e:9b:
cf:04:7d:f6:08:c8:63:72:33:92:a4:50:77:8c:7f:83:b5:0e:
8c:35:8c:f5:de:af:e3:89:2c:b1:09:e5:11:09:0c:29:4a:87:
ef:03:c8:50:fa:80:e3:5c:4b:83:12:c1:8e:15:94:7a:da:c4:
57:23:41:07:3a:2f:c4:7f:63:90:73:5a:9a:db:cc:24:ab:19:
5a:f9:ff:0a:a5:34:94:c8:f2:d5:b2:af:b2:97:bc:00:b5:0e:
3d:ea:fb:e6:04:1e:f7:a7:0a:16:91:01:29:0f:49:9c:60:29:
4d:21:e0:03:05:ea:58:54:07:48:bc:e1:12:69:17:89:71:c3:
e1:45:d6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:37:55 2025 by rpki-client