Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
File: PXD-HXX32nbS49w0T7HwsLad4AE.mft (raw, json)
Hash identifier: 6nQzOw6N6AU4UROBTNrsx76lx7UWTClGfVGRrDGv7r0=
Subject key identifier: 4A:3F:A0:2D:A1:03:97:89:DC:AE:65:9C:E0:9E:99:54:24:9F:90:7A
Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Certificate serial: 01974A7A7716D22FA47945985AEB675EFE63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
Manifest number: 14EB
Signing time: Sat 07 Jun 2025 13:00:29 +0000
Manifest this update: Sat 07 Jun 2025 13:00:29 +0000
Manifest next update: Sun 08 Jun 2025 13:00:29 +0000
Files and hashes: 1: PXD-HXX32nbS49w0T7HwsLad4AE.crl (hash: 9MVR1iRaucZHkMu8YR9IWXo5lTwd1doJhQ0FofTn/qY=)
2: qcINREJGIFWN3YXOgtNuqjCBfnY.roa (hash: 1gG5XU0DGFtKFXRvNOA96XCA/EPC9XB/rEykj9F+ocs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:77:16:d2:2f:a4:79:45:98:5a:eb:67:5e:fe:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Validity
Not Before: Jun 7 13:00:29 2025 GMT
Not After : Jun 8 13:00:29 2025 GMT
Subject: CN=4a3fa02da1039789dcae659ce09e9954249f907a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:39:c4:3c:c2:e3:41:f9:71:ff:22:6b:bf:
ff:2d:5f:f0:ce:6a:c7:b2:7d:23:4e:82:90:16:34:
56:15:35:d0:b6:c3:3c:c6:a1:3d:14:02:52:c8:76:
98:9c:d6:2d:61:7e:b2:64:05:c9:56:56:d4:96:dd:
53:2c:52:41:c3:c5:9a:75:f8:76:45:08:92:9a:1a:
e7:56:e1:3b:1d:16:2d:c6:c3:18:dc:42:e9:45:bc:
a2:73:13:da:56:e4:64:c7:b7:8e:c8:e3:ad:9d:c2:
2c:de:3c:9b:53:f8:74:21:b9:cd:37:82:1b:aa:13:
fe:fc:83:bb:5f:82:5a:48:9e:d2:15:2a:74:78:62:
10:a8:86:49:23:3d:5c:8a:49:7d:90:d0:7c:b7:89:
59:ca:46:5a:5d:51:f2:2b:56:6d:ef:cb:4e:38:be:
d1:86:0d:22:5e:0b:f3:4b:03:bc:d2:54:99:bf:7c:
10:a1:c8:38:f1:4f:e1:f9:13:62:dc:bf:8f:e2:47:
b2:2d:94:6e:9b:b6:70:87:23:7a:6e:52:1c:9c:0e:
de:a7:91:8d:f4:9d:35:d8:31:ff:2e:c6:7b:d2:9b:
60:c8:1e:aa:5c:fc:c0:91:ca:f9:3f:c4:b4:7c:53:
bf:ac:59:83:ba:4f:8b:cb:b5:0a:aa:be:0e:d0:92:
60:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3F:A0:2D:A1:03:97:89:DC:AE:65:9C:E0:9E:99:54:24:9F:90:7A
X509v3 Authority Key Identifier:
keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:cb:33:7e:6c:14:22:59:6e:1b:24:b4:5c:dd:89:9e:35:a7:
69:74:a3:de:ec:11:0d:6e:29:5f:57:c0:77:00:81:35:75:fb:
82:5d:ad:f1:29:27:90:e9:ef:1d:04:c9:2d:60:69:13:9d:80:
f8:8f:15:f8:ee:64:7d:1c:49:7a:a2:2f:c8:6e:f4:fa:a1:60:
cd:29:81:9e:5e:1a:08:44:2b:46:c4:aa:d1:78:b1:97:1b:78:
24:98:10:ad:06:af:c0:08:f7:1e:32:f4:15:2e:d9:54:2f:60:
f9:b6:a9:b3:77:30:9a:db:0a:c7:04:33:39:28:3c:fe:a0:86:
9c:cb:b6:46:45:61:85:f6:61:89:af:f3:3c:29:b5:f3:1d:9f:
b3:b0:2f:d3:66:e1:d7:c0:9e:20:0c:72:02:4a:26:fd:15:8e:
fd:49:60:99:75:a6:65:cf:c7:31:d8:2c:47:9a:84:19:53:18:
34:ad:57:3c:00:3c:38:e1:b1:76:93:b9:12:f3:dc:7a:2a:e3:
da:a9:4d:95:b7:97:c1:b3:01:e0:af:31:fd:ae:ce:f1:d0:55:
3e:99:d2:b7:5e:28:7b:6b:ee:6b:78:d9:3e:52:c3:17:e5:7a:
15:a9:4c:36:0e:2f:b4:43:fc:b4:f6:f8:71:15:ff:af:7a:86:
9b:80:3b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:19:39 2025 by rpki-client