
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
File: PqFIQth34nvEBouYH-dK64vufnM.mft (raw, json)
Hash identifier: tKQHYG1IYqS8NKEbnUwDbsA5Kq0erdyFiqxdP1JA2hk=
Subject key identifier: A0:A3:A7:71:5F:74:07:12:46:5B:45:15:AD:C5:34:18:73:05:FA:73
Authority key identifier: 3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
Certificate issuer: /CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Certificate serial: 0197635F372E8A28C86B8541253F53B1053A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
Manifest number: 158A
Signing time: Thu 12 Jun 2025 09:01:13 +0000
Manifest this update: Thu 12 Jun 2025 09:01:13 +0000
Manifest next update: Fri 13 Jun 2025 09:01:13 +0000
Files and hashes: 1: PqFIQth34nvEBouYH-dK64vufnM.crl (hash: /k5+X/wInu1g/AQdNVnk/0/r00zhZ/opNXiP8qz0w2w=)
2: h5AoEy-X54Db83-jTlFH2Y1fCVw.roa (hash: HOh3C7TWeQ0O5hO+1P91yiEiZozSeSnp7F1/q290vZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:5f:37:2e:8a:28:c8:6b:85:41:25:3f:53:b1:05:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73
Validity
Not Before: Jun 12 09:01:13 2025 GMT
Not After : Jun 13 09:01:13 2025 GMT
Subject: CN=a0a3a7715f740712465b4515adc534187305fa73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7c:60:9a:5a:1d:cf:a1:8f:a1:24:a7:ed:53:
f3:f4:fc:32:2b:fd:cb:50:7e:f6:b5:f3:45:b5:66:
3d:8c:c6:62:5e:c4:27:26:9d:a3:a1:0c:a9:e0:4c:
e3:b1:b4:1f:01:81:6b:fb:84:f0:35:39:92:0b:c0:
27:6b:96:08:f8:f4:4f:94:f3:b0:e5:6d:ea:f4:51:
82:bb:71:18:94:10:83:b2:83:6b:ae:e4:a9:45:c3:
b2:06:3a:0a:7f:14:6d:34:68:32:a5:61:97:13:49:
35:ae:bd:cd:39:b7:cd:5d:b2:23:20:ba:5f:9a:f1:
51:77:bd:d3:15:9d:b3:f2:06:db:e2:98:d8:99:5d:
a8:21:9d:6f:d1:f6:06:e1:c7:c7:d5:59:e4:82:96:
e9:69:27:99:0d:17:06:35:bf:f5:f5:bc:66:fd:dc:
fc:8b:20:c6:ae:44:be:82:06:ea:8e:77:68:67:18:
a2:93:3e:30:66:76:cd:7b:49:b2:c4:51:1c:5e:4e:
ff:72:fc:cd:66:fa:1c:0b:d3:9e:cf:50:8f:c7:3d:
0d:17:4d:c0:00:55:b1:99:c5:da:1e:c4:b2:b4:d9:
78:3b:8b:31:1c:fe:e9:c9:07:33:1e:78:89:78:11:
5e:09:ab:40:c3:28:7e:ff:00:eb:4e:04:0e:f7:85:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A3:A7:71:5F:74:07:12:46:5B:45:15:AD:C5:34:18:73:05:FA:73
X509v3 Authority Key Identifier:
keyid:3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:99:a9:8d:db:d2:ee:3f:5e:32:e7:f9:7d:de:52:ef:4d:6d:
15:3a:aa:4b:59:3b:a6:e7:88:ea:3d:82:61:64:b5:ce:d1:60:
93:f1:46:a3:82:37:d8:e7:37:97:af:c3:bc:3d:72:0f:57:28:
68:76:f5:75:67:2c:ac:e5:e2:32:9e:a4:94:c2:c0:fc:2a:b7:
11:32:bf:4a:f0:17:5a:05:8b:b2:05:8d:3d:b0:5a:08:6d:75:
25:c5:08:5f:92:43:bc:59:f4:b8:db:92:f9:0c:b0:86:58:d5:
e7:3d:e1:64:bf:26:65:58:ab:44:23:dd:dd:6f:7f:1e:63:bf:
61:42:63:12:1b:13:60:91:2d:35:57:c0:19:c2:62:5d:98:25:
ae:86:4b:1b:f3:6e:3c:f7:43:75:a8:12:40:cb:c9:2d:4c:fa:
f5:42:e8:4b:e5:3b:71:bf:6d:0a:27:da:d4:70:4e:1d:08:24:
e2:c0:b0:9f:a3:b0:69:c1:ad:a7:ed:b3:32:12:a4:4a:f1:11:
b9:20:e2:62:30:86:2c:c7:de:b8:5a:19:f4:4f:94:f1:69:83:
7c:de:fa:d5:d0:d7:c8:53:09:76:94:aa:cd:e0:2f:70:33:c7:
78:32:19:72:68:5b:21:c7:ec:13:00:89:87:ee:07:c5:a1:0c:
45:6f:cd:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:51:19 2025 by rpki-client