Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
File: pnYhghhEiOf3hxIqcYCZfOjpDUw.mft (raw, json)
Hash identifier: eZo4uTf91vbobtLv2cDTWn7Fwc++EHX9CN8xh4ZXsKc=
Subject key identifier: 3B:8D:B3:4B:D4:52:3E:7E:19:B4:1E:83:CF:96:F2:FD:E8:C7:55:4F
Authority key identifier: A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
Certificate issuer: /CN=a6762182184488e7f787122a7180997ce8e90d4c
Certificate serial: 01974DE97DF37C9F7E1D761E651224839390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
Manifest number: 0244
Signing time: Sun 08 Jun 2025 05:00:36 +0000
Manifest this update: Sun 08 Jun 2025 05:00:36 +0000
Manifest next update: Mon 09 Jun 2025 05:00:36 +0000
Files and hashes: 1: pnYhghhEiOf3hxIqcYCZfOjpDUw.crl (hash: MBobqc8kD7UJB9vFwr3GH7G4HJEJO0gUNgGn0oFCGKQ=)
2: yNyV4cceOnlRqYhPeAllARW73Jw.roa (hash: 8x/01ij81KHBd33TvjxnJ5OVDsgBIBKqbtRkLV2shYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:7d:f3:7c:9f:7e:1d:76:1e:65:12:24:83:93:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6762182184488e7f787122a7180997ce8e90d4c
Validity
Not Before: Jun 8 05:00:36 2025 GMT
Not After : Jun 9 05:00:36 2025 GMT
Subject: CN=3b8db34bd4523e7e19b41e83cf96f2fde8c7554f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c2:9b:a0:9e:da:b8:e1:cf:d8:2e:80:96:6e:
03:34:b9:c5:20:81:55:d4:67:b5:6b:5d:b7:34:88:
f9:36:e3:76:87:78:74:5f:5a:5d:ca:39:d8:ce:9e:
77:fa:cf:12:bf:39:02:cc:38:a8:76:52:25:ba:2d:
73:ed:c1:be:a4:33:97:1c:5f:78:9c:5e:d4:1f:ae:
c3:a6:48:17:a8:dc:63:78:5c:4d:21:b9:b5:6f:bc:
be:1f:6c:6c:56:87:18:f8:db:2f:05:12:bb:76:34:
c1:7b:3f:3f:2e:93:33:97:a3:fe:82:22:fe:f9:97:
8d:30:d8:c8:ce:32:34:33:ea:af:23:c2:44:6b:d4:
36:f9:79:d7:25:2e:ef:5a:a9:6f:86:18:15:6e:f1:
1f:df:c7:9d:49:a2:20:9d:76:7b:36:99:43:04:67:
fd:34:c5:cd:75:02:4d:73:b6:6d:d5:63:ed:00:d4:
44:2c:0b:e1:26:6b:e0:f8:b8:67:99:d3:08:0a:da:
2d:ed:7d:58:a3:07:74:3c:6b:97:db:b5:6a:b6:fc:
1d:d2:56:4c:ee:22:f3:28:aa:82:4d:f7:22:5d:23:
db:f0:ff:09:75:97:c1:08:fa:a3:06:5b:a1:db:95:
e4:20:e6:5c:29:0d:fa:ae:5a:aa:a4:f2:d3:19:0a:
6a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:8D:B3:4B:D4:52:3E:7E:19:B4:1E:83:CF:96:F2:FD:E8:C7:55:4F
X509v3 Authority Key Identifier:
keyid:A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:79:97:d7:ef:67:68:0c:ec:1a:5f:2e:c4:db:42:cf:9b:ad:
6d:50:41:56:99:24:1d:21:64:8f:8c:9e:03:7e:c2:a2:32:6f:
f7:f3:36:a0:11:f7:8b:1e:1e:0e:d3:88:fb:6d:63:70:8f:2d:
1d:91:ef:88:6c:fe:3b:ac:1f:3b:51:3f:90:fc:2f:1e:71:88:
f7:85:e3:65:9e:91:9e:0f:dc:12:bc:0c:33:fc:e6:c6:50:c7:
1a:48:72:7d:da:e2:d2:d2:d1:8b:ad:77:f2:58:ae:58:6a:e5:
02:67:30:01:5b:b8:09:a9:3a:ef:1f:07:0b:dd:7f:9a:24:16:
10:6e:68:98:58:5a:64:9a:ae:5a:1d:86:52:e9:f7:17:9d:c6:
55:86:48:ea:66:6d:dc:ac:58:a7:0a:98:7f:3d:01:3f:26:c9:
0c:b7:3e:ab:33:2f:5f:77:7c:76:b5:c7:bb:f4:86:53:98:b7:
35:1d:f3:50:cd:26:1a:85:66:ea:13:a7:09:7e:78:6b:15:c4:
75:27:8d:b8:8a:63:97:84:15:5b:f6:f0:55:05:bf:12:ab:01:
da:ab:12:21:96:f4:65:de:d3:a0:56:ef:6f:32:62:c0:93:92:
e8:b6:6b:5d:7d:ac:dc:f3:87:94:cd:26:7b:c5:79:af:41:41:
68:2c:7c:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdN6X3zfJ9+HXYeZRIkg5OQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NzYyMTgyMTg0NDg4ZTdmNzg3MTIyYTcxODA5OTdjZThl
OTBkNGMwHhcNMjUwNjA4MDUwMDM2WhcNMjUwNjA5MDUwMDM2WjAzMTEwLwYDVQQD
EygzYjhkYjM0YmQ0NTIzZTdlMTliNDFlODNjZjk2ZjJmZGU4Yzc1NTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosKboJ7auOHP2C6Alm4DNLnFIIFV
1Ge1a123NIj5NuN2h3h0X1pdyjnYzp53+s8SvzkCzDiodlIlui1z7cG+pDOXHF94
nF7UH67DpkgXqNxjeFxNIbm1b7y+H2xsVocY+NsvBRK7djTBez8/LpMzl6P+giL+
+ZeNMNjIzjI0M+qvI8JEa9Q2+XnXJS7vWqlvhhgVbvEf38edSaIgnXZ7NplDBGf9
NMXNdQJNc7Zt1WPtANRELAvhJmvg+LhnmdMICtot7X1Yowd0PGuX27Vqtvwd0lZM
7iLzKKqCTfciXSPb8P8JdZfBCPqjBluh25XkIOZcKQ36rlqqpPLTGQpqOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDuNs0vUUj5+GbQeg8+W8v3ox1VPMB8GA1UdIwQY
MBaAFKZ2IYIYRIjn94cSKnGAmXzo6Q1MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG5ZaGdoaEVpT2YzaHhJcWNZQ1pmT2pwRFV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8yZjMxOWUtMjY4NS00NDI3LWFlYzAt
ZWQ2MGJhYjc1NzJmLzEvcG5ZaGdoaEVpT2YzaHhJcWNZQ1pmT2pwRFV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8yZjMxOWUtMjY4NS00NDI3LWFlYzAtZWQ2MGJhYjc1NzJm
LzEvcG5ZaGdoaEVpT2YzaHhJcWNZQ1pmT2pwRFV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdnmX1+9n
aAzsGl8uxNtCz5utbVBBVpkkHSFkj4yeA37CojJv9/M2oBH3ix4eDtOI+21jcI8t
HZHviGz+O6wfO1E/kPwvHnGI94XjZZ6Rng/cErwMM/zmxlDHGkhyfdri0tLRi613
8liuWGrlAmcwAVu4Cak67x8HC91/miQWEG5omFhaZJquWh2GUun3F53GVYZI6mZt
3KxYpwqYfz0BPybJDLc+qzMvX3d8drXHu/SGU5i3NR3zUM0mGoVm6hOnCX54axXE
dSeNuIpjl4QVW/bwVQW/EqsB2qsSIZb0Zd7ToFbvbzJiwJOS6LZrXX2s3POHlM0m
e8V5r0FBaCx8tA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:40:50 2025 by rpki-client