Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: BC8aQbOw9+IDJpKUGa9IhC89kaaWk5v48MBGHaG2G6M=
Subject key identifier: 00:5A:E7:64:74:34:90:CF:67:5D:00:48:92:C5:0C:4E:34:FF:B0:79
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 0197B6D72E4D16BEA49ADC71DBCF3AC045D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:00:44 +0000
Manifest this update: Sat 28 Jun 2025 14:00:44 +0000
Manifest next update: Sun 29 Jun 2025 14:00:44 +0000
Files and hashes: 1: BFaJClF3p4qT7dCc22lWmwjl7l0.roa (hash: 8kW6E4fmgwFFVui51mNwFwgDzJW114zoN23nienu6x8=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: Nvr+zubQzsWppnHFn+Y9CXNQFU2SSuaezRf4Dc9XZCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:2e:4d:16:be:a4:9a:dc:71:db:cf:3a:c0:45:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Jun 28 14:00:44 2025 GMT
Not After : Jun 29 14:00:44 2025 GMT
Subject: CN=005ae764743490cf675d004892c50c4e34ffb079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:70:32:e2:8a:44:e5:2c:02:bd:84:56:87:a9:
78:66:ed:de:32:6d:44:39:d6:92:d1:19:4e:f3:00:
7a:99:85:2a:d8:c6:48:cc:53:23:9c:ca:af:99:84:
0f:01:72:1b:cd:23:1d:93:23:17:a9:b8:37:0b:6f:
c5:81:8e:54:6c:4e:e8:34:a1:b2:c5:14:d6:25:86:
60:d1:8f:dd:e5:5b:17:61:20:cf:78:b2:ba:aa:07:
75:a3:63:62:cc:20:f8:64:5c:c9:5d:a8:03:93:6f:
48:da:b5:b8:93:da:d4:0a:e1:31:6a:c7:29:3a:87:
3a:bd:7e:0f:e9:be:59:0e:b2:90:79:68:fd:99:75:
73:51:32:1d:15:ff:2a:09:6a:b6:f0:72:4d:5c:5f:
90:22:11:5e:b2:cc:b5:4a:22:0a:fa:55:20:a1:54:
9d:2e:3c:71:a5:99:5b:90:2b:be:95:ca:8e:c3:70:
16:fe:af:d5:d6:25:93:96:89:10:c4:de:b8:ad:36:
a5:72:aa:ea:dd:16:e6:a3:48:47:ec:b5:41:b8:38:
a9:57:de:1a:53:10:13:06:fa:eb:b8:b7:01:33:ac:
8f:cd:3d:2b:57:8b:3d:dc:68:70:81:d0:14:e3:ef:
fd:81:8f:e9:46:cf:70:8b:8e:3e:b1:1c:62:57:06:
bd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5A:E7:64:74:34:90:CF:67:5D:00:48:92:C5:0C:4E:34:FF:B0:79
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:29:8f:84:19:af:33:15:a8:4b:bc:14:83:8d:a2:db:8f:16:
17:31:a2:24:a0:97:ea:50:2a:8f:7d:e5:9a:6d:f7:10:98:97:
4e:ab:1e:93:37:26:a9:3c:ec:fa:26:26:21:30:48:e7:15:3c:
7d:b6:6b:1a:d6:df:bc:bf:e0:2f:46:46:72:3c:f6:9f:44:48:
8a:6d:da:8e:60:c8:af:40:bc:a0:48:67:bc:d6:e4:c4:df:3e:
1c:6c:24:f5:01:77:91:95:09:f5:a6:56:df:24:d8:24:10:f9:
dd:30:03:41:c2:f5:60:1a:3d:c4:db:cd:06:37:d8:b3:b3:06:
35:a0:66:6c:13:51:10:5a:38:60:3c:c0:ca:ee:d7:49:e7:da:
99:de:67:41:1b:3a:d4:25:ae:b5:a1:d7:30:a9:b7:0c:45:35:
9a:28:56:9a:5e:e2:71:67:d2:8c:eb:49:d2:3b:a3:76:64:ae:
83:ef:4c:40:04:a7:8e:e7:13:c1:e2:d0:28:1f:42:20:21:8b:
8a:3d:12:08:2f:7f:cb:05:83:f6:da:e5:c0:7e:0f:04:4e:54:
d4:e2:cb:fc:b2:c8:b1:61:df:0f:c9:6f:9b:d8:e8:5c:b9:ac:
22:ad:58:3a:11:eb:63:78:c1:28:aa:fa:bd:15:68:0d:62:8f:
2f:66:b6:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:37:20 2025 by rpki-client