Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
File: PnpcKTN0JfqBOVVRcmyMK35MUIc.mft (raw, json)
Hash identifier: SMztABBnDd5quv3/gunrV6a0BHcUiQ3uyj8bpdACIaw=
Subject key identifier: 5A:E0:7B:3B:6F:A3:88:82:6C:BF:F5:74:E2:67:DA:D0:7E:85:E3:D1
Authority key identifier: 3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
Certificate issuer: /CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Certificate serial: 01974AE8BE2FF2F0798AF29BB011ECFA642E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
Manifest number: 02C5
Signing time: Sat 07 Jun 2025 15:00:56 +0000
Manifest this update: Sat 07 Jun 2025 15:00:56 +0000
Manifest next update: Sun 08 Jun 2025 15:00:56 +0000
Files and hashes: 1: PnpcKTN0JfqBOVVRcmyMK35MUIc.crl (hash: CBik3DsTAqKsaV+wCXH5LRlMyKz7SQDyaLckBWtyFA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:be:2f:f2:f0:79:8a:f2:9b:b0:11:ec:fa:64:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Validity
Not Before: Jun 7 15:00:56 2025 GMT
Not After : Jun 8 15:00:56 2025 GMT
Subject: CN=5ae07b3b6fa388826cbff574e267dad07e85e3d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d5:2b:48:10:8e:63:89:32:2c:20:f0:7b:37:
73:4f:d5:33:36:d5:ce:30:6b:21:0e:fb:39:4b:bb:
09:86:ca:fc:52:e7:42:04:d8:e4:90:0a:a5:c4:58:
ce:50:02:a0:ca:a3:f6:7f:da:c7:73:23:d1:fe:27:
6c:6a:93:53:ae:c2:6b:5c:2d:39:17:8e:6a:cd:62:
5a:ea:aa:9f:6b:92:50:af:03:4d:4e:72:46:3c:5a:
37:b2:92:aa:27:4d:b8:39:aa:50:02:b0:16:b5:81:
73:77:c5:47:f9:4e:bd:33:ac:fc:98:de:0d:8f:1c:
9f:a6:42:2f:c8:ce:62:41:83:51:6b:4a:f8:de:ac:
19:2c:db:87:0e:49:f8:14:62:a8:25:79:d0:f9:08:
a3:3b:92:55:0a:f0:0a:55:72:87:54:5a:c6:f3:34:
2a:05:52:2c:7f:82:10:90:25:4f:65:a6:4c:cd:10:
20:a9:24:ac:89:39:e5:f5:05:e0:b9:77:df:ff:17:
fe:56:7d:89:b4:c5:10:4e:3f:a5:a5:e9:8c:cc:e4:
e3:9e:f1:6c:aa:b2:d4:b3:2a:b2:b1:a2:13:ed:3c:
70:80:fc:88:da:42:d6:15:de:59:e9:58:ba:50:ca:
26:9c:1a:a1:c9:b6:0f:90:e3:45:30:2a:9c:32:d5:
16:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E0:7B:3B:6F:A3:88:82:6C:BF:F5:74:E2:67:DA:D0:7E:85:E3:D1
X509v3 Authority Key Identifier:
keyid:3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:69:7b:e5:62:16:d7:80:21:53:8f:68:7b:f4:7b:6c:b3:8c:
fc:1b:cd:d7:e1:ca:56:19:79:d4:f3:21:0d:9d:b0:59:cc:ba:
ae:2a:99:a8:f2:5d:d4:8d:90:3b:c9:d8:64:f1:0e:7e:e0:82:
41:97:71:0b:4b:ea:cb:48:b5:8d:29:1b:cd:92:88:a4:f4:39:
b1:15:10:c7:e2:23:b5:87:4f:06:36:7d:f3:88:ba:2f:74:4c:
68:9b:ff:e9:3d:08:d7:04:f7:4e:13:1e:5f:3e:98:70:ad:2f:
f3:7a:f1:21:e7:a1:93:74:7a:71:9a:e8:3a:ed:45:88:ba:80:
fe:b3:bc:bb:d3:36:5e:79:d3:46:0f:d7:c5:b0:fe:49:5e:aa:
5a:83:25:ea:e6:5b:5c:b8:be:27:45:2b:8f:8f:cc:a7:50:5a:
70:e1:70:24:28:d8:08:11:bf:b4:d2:35:c8:a6:e3:45:12:43:
36:67:87:2d:ac:ad:ec:ab:a7:28:15:f3:cc:bf:8c:eb:3e:a8:
3e:03:94:1e:05:f4:96:73:e4:22:b3:52:80:8a:bf:36:f8:25:
d5:31:25:ce:45:3f:e2:3f:6f:94:e2:46:fe:d7:42:37:9c:a9:
a8:2c:54:67:23:dc:59:f6:e2:0a:af:ae:5f:7d:1c:34:64:13:
c4:61:19:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:39:18 2025 by rpki-client