Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier: us4Z6lnAhQ9ctb+s3uegSL+emvVxa1NVA0O4oMlsQjI=
Subject key identifier: 20:FF:36:64:06:0D:27:5C:87:FB:5E:99:6C:48:28:8F:60:B5:9C:81
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 01976961A92EBC9847D2F0E52D4EBA79820C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 13:01:37 +0000
Manifest this update: Fri 13 Jun 2025 13:01:37 +0000
Manifest next update: Sat 14 Jun 2025 13:01:37 +0000
Files and hashes: 1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: gbZfGy7mwLanW9LbX4HseDHh8XACVOvvQ9SCarjxcz0=)
2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:a9:2e:bc:98:47:d2:f0:e5:2d:4e:ba:79:82:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: Jun 13 13:01:37 2025 GMT
Not After : Jun 14 13:01:37 2025 GMT
Subject: CN=20ff3664060d275c87fb5e996c48288f60b59c81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a3:9f:00:71:a2:af:83:82:ee:75:6b:87:ab:
8a:90:fc:ae:eb:53:63:96:bc:af:93:9f:33:a9:b2:
07:b6:b2:a1:d0:d5:3b:e6:de:7d:27:b8:ac:d0:b4:
c5:8f:aa:1c:6e:7c:22:6e:06:34:13:79:89:54:94:
bf:32:0c:78:e0:ca:8d:08:e8:1c:f9:c1:83:07:0f:
5b:91:39:e6:e2:2b:50:27:0e:4e:7f:bd:1f:35:d2:
d8:b0:aa:d6:14:cf:3f:dc:e4:b9:63:a6:f1:32:94:
86:9e:95:90:92:2b:75:4d:a4:8a:6d:3f:8d:88:72:
47:08:2f:80:8c:ee:64:e0:ff:df:de:59:9f:e9:77:
6a:8a:9b:d5:06:e8:ee:49:2e:2b:ba:7f:12:7a:ea:
1c:63:c6:80:66:44:a5:89:9d:11:ce:26:f9:7f:af:
63:54:0a:88:af:40:8f:4c:4d:d3:14:e2:d2:a2:8b:
05:65:18:1b:4c:9c:f6:40:3e:d1:d4:c6:db:96:a4:
11:60:8b:05:f4:6d:4b:3b:42:3e:78:48:e2:d6:13:
66:53:0f:16:43:17:32:5e:1b:63:08:67:53:7c:a9:
08:c7:18:16:9b:2b:7c:99:72:96:fb:b6:f7:6d:ff:
c3:2c:c3:80:10:65:c9:bc:9c:35:87:62:a6:9a:42:
d0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FF:36:64:06:0D:27:5C:87:FB:5E:99:6C:48:28:8F:60:B5:9C:81
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:92:8e:cf:2a:0c:06:04:a4:ba:9e:95:0b:e9:db:48:bc:4b:
26:d1:34:71:d5:de:7d:86:25:e8:e6:b1:d3:a0:40:34:bd:fc:
24:86:d4:7d:9f:2a:23:6d:50:59:ab:4e:ac:82:12:66:69:5e:
cf:6c:32:f6:20:4b:61:cd:fc:aa:c8:92:72:46:43:19:87:18:
1c:b1:fc:ee:7d:f1:bc:3c:95:00:ee:70:0c:0c:56:4e:c1:a1:
79:4c:c7:0f:82:65:ef:d4:46:21:e7:58:99:10:a5:a0:e9:1e:
ec:8c:b4:8a:e3:89:32:77:a0:85:06:6d:87:95:d3:ae:87:46:
5e:37:aa:de:f0:3a:54:3b:84:c7:8f:b2:ee:87:22:5e:87:e1:
7b:1d:3b:50:e1:70:69:75:2a:e8:ab:37:e5:68:54:9d:17:3b:
8c:fd:26:e5:f1:71:8b:12:11:91:0b:3f:3a:aa:24:ca:ea:3a:
f3:95:d1:91:83:0d:f4:4d:6c:f4:9a:a7:b7:b2:ea:53:1b:7b:
48:cb:56:06:d9:72:70:48:4e:c0:b3:9a:e3:05:1c:00:e6:46:
60:3d:4f:c1:e6:4d:72:4c:57:51:c6:6b:03:52:d2:75:19:24:
f7:8a:3a:37:7b:28:38:49:b2:1d:31:8b:71:26:c1:da:80:a5:
76:c7:02:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:28:22 2025 by rpki-client