Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json)
Hash identifier: 2zpYJ9YZu6TwF+KZdZgIVVD+LF4GNss6dEsmsT0C7hI=
Subject key identifier: 8C:86:70:04:A1:5D:6D:77:98:93:A3:F8:81:DD:98:65:A6:A6:42:1F
Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Certificate serial: 0197499EE776BB0AE9AAE7F41AE8CA56BB50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
Manifest number: 026F
Signing time: Sat 07 Jun 2025 09:00:40 +0000
Manifest this update: Sat 07 Jun 2025 09:00:40 +0000
Manifest next update: Sun 08 Jun 2025 09:00:40 +0000
Files and hashes: 1: HpXNaI-YZ__bNVvsLhzCVmON0vA.roa (hash: 4ppKjsjUaSdmkdjg9+HGXDZITHcsYFbzqeckmlgFcTA=)
2: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: QcYWHjyZMtYDhiDEBEDcMh7JuPEjD1fMJUQr9XN7ZJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:e7:76:bb:0a:e9:aa:e7:f4:1a:e8:ca:56:bb:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Validity
Not Before: Jun 7 09:00:40 2025 GMT
Not After : Jun 8 09:00:40 2025 GMT
Subject: CN=8c867004a15d6d779893a3f881dd9865a6a6421f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4f:8c:42:f6:62:bf:4c:b1:e9:23:75:b0:6d:
40:1b:ff:0e:10:ac:3a:8b:3d:36:14:ab:a4:7a:62:
1c:69:a6:93:11:76:5d:03:ab:ae:39:0a:c8:98:11:
fa:51:ec:b9:12:39:73:54:b4:ea:c9:00:3e:63:c3:
c6:6d:19:03:2a:6a:4b:80:87:d8:ee:4f:3e:b9:0f:
73:e1:b4:25:a1:ea:a4:f4:1e:3c:97:27:43:9c:d0:
1f:5e:a3:34:88:c3:d3:a1:46:e4:e6:f5:5a:96:cb:
93:0c:85:4c:9d:7d:da:83:0d:8e:34:ea:ed:a3:fe:
57:a9:6a:97:09:e3:10:8a:77:63:75:b2:71:22:78:
06:88:f8:22:62:c8:c6:37:0e:66:ac:15:77:05:4b:
ba:dd:6d:a2:20:11:d2:58:5e:11:57:18:62:ee:d3:
d9:b1:33:ce:e8:b7:ff:fa:4f:9c:1b:fa:b6:50:f9:
da:4d:31:0b:35:a6:f1:16:8d:01:25:6e:6b:69:8d:
61:43:a9:39:58:fb:82:b9:f4:7d:9b:68:7f:d4:ac:
4f:81:e4:2b:55:aa:81:28:a3:b7:57:20:03:6a:9d:
27:dd:52:9c:fe:75:4a:4f:9e:7b:c7:1c:5a:28:af:
87:ce:4d:9e:f6:9b:ea:c4:b4:1e:67:e3:a6:f7:63:
6e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:86:70:04:A1:5D:6D:77:98:93:A3:F8:81:DD:98:65:A6:A6:42:1F
X509v3 Authority Key Identifier:
keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:d7:c2:c9:2f:ce:98:08:55:82:b1:03:74:1b:fb:30:a1:4b:
2f:52:1d:d4:73:04:00:e2:62:a4:02:18:32:dd:68:7c:bb:5c:
95:b4:c7:86:a7:06:51:e8:a7:7e:92:a2:ee:55:b8:8e:84:a2:
5e:6f:42:1f:79:b3:a5:d0:90:17:4d:56:f8:1f:1e:76:99:af:
c8:07:94:ad:fe:b3:1d:84:57:06:0e:37:5c:8d:22:09:4a:3c:
37:3c:c0:be:d5:fa:5a:78:50:c9:60:ad:15:10:1d:33:fe:c5:
a8:3b:ea:64:7d:73:e8:5f:d0:4c:c3:5f:3c:4c:8e:00:46:2f:
3c:39:3e:c2:06:80:cc:8c:a7:20:a8:38:09:1d:10:48:f8:65:
61:fc:17:52:d2:41:39:38:54:4a:8b:90:69:e2:3c:14:7f:01:
9b:13:f1:3b:f9:8a:34:ab:22:34:99:69:aa:5a:e7:5f:89:b2:
43:43:02:fc:a1:44:81:0d:97:3b:03:49:4e:18:b6:df:e5:5d:
69:8d:68:41:e8:f3:d9:83:19:a3:04:7b:5d:5b:f4:e6:c8:7f:
d7:e9:06:52:36:9b:ca:5e:c2:c6:0f:25:c9:27:9b:06:6e:86:
d6:83:b2:86:9b:38:f9:4a:dd:74:96:75:2e:d4:07:40:13:a7:
85:9a:f5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:47:54 2025 by rpki-client