Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: FXdbTnUnG0D8OduWOovoL+PSkKqSvmgOApMlCdGaZ1s=
Subject key identifier: BE:97:22:52:BC:E9:2B:F0:EE:0F:2A:6C:F4:49:EE:8E:99:8D:DF:A1
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 0197B6A0821C36E7D89B067048F0B5DBC440
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 0FB9
Signing time: Sat 28 Jun 2025 13:01:01 +0000
Manifest this update: Sat 28 Jun 2025 13:01:01 +0000
Manifest next update: Sun 29 Jun 2025 13:01:01 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: 8obiahSMANVyG+JOBhxZvBRm30UE7zs5wnJxMCuxJYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:82:1c:36:e7:d8:9b:06:70:48:f0:b5:db:c4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Jun 28 13:01:01 2025 GMT
Not After : Jun 29 13:01:01 2025 GMT
Subject: CN=be972252bce92bf0ee0f2a6cf449ee8e998ddfa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:24:49:50:fd:16:4d:57:be:cc:9d:46:78:
6f:4c:6a:3b:46:ce:63:5b:c6:49:e9:37:f9:66:2e:
96:8d:7d:d9:33:cf:34:85:9b:a4:ba:a3:2f:24:d6:
9b:63:98:64:8c:1b:9a:de:0f:b1:52:41:eb:12:a3:
a3:78:d9:b4:68:ed:d7:06:17:f3:4e:d3:26:4f:09:
97:e9:59:6b:75:51:6f:fd:11:97:df:c3:2c:aa:92:
fd:f7:25:1b:7b:75:3f:41:64:ec:ac:db:f1:36:02:
1f:7f:42:78:d2:0e:7e:b3:e8:8b:67:7e:5c:fe:7e:
95:eb:17:d5:68:38:72:e4:e6:c0:8e:41:fc:1c:1d:
e7:67:bf:e2:b0:39:9c:9b:7d:5d:90:ab:79:ff:d0:
aa:a4:f6:94:ba:5d:ca:5a:46:5b:79:8c:ce:92:d8:
fa:51:b9:7e:7d:9c:95:81:3d:21:99:13:52:d0:3a:
4e:9e:b9:fd:32:ab:8b:66:40:c0:f3:cd:ba:af:2c:
ab:22:5c:07:35:aa:9c:f8:c4:df:1f:d6:b3:e1:66:
6f:cf:b4:b4:e0:19:bc:4b:f4:d5:21:63:4c:8d:b8:
62:9c:39:a8:25:a0:12:c3:4f:d5:50:63:78:55:83:
fe:bc:ce:c0:f4:69:db:ca:4a:25:6f:74:a9:8d:35:
69:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:97:22:52:BC:E9:2B:F0:EE:0F:2A:6C:F4:49:EE:8E:99:8D:DF:A1
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:7a:0b:83:25:31:e2:d5:a7:3b:3b:e1:24:f1:2b:a1:c6:c8:
48:ba:0c:23:f5:14:cd:48:0f:5c:4b:23:26:12:0d:1b:4b:f9:
52:61:bd:af:5c:23:95:d3:21:5a:18:1b:1a:b6:f0:28:24:f3:
ca:a0:db:36:09:fc:06:81:a0:d2:9b:34:b7:0f:c0:94:de:b3:
c5:7d:fd:87:cd:7f:c2:ac:1c:76:35:a1:5c:91:74:c4:a6:8b:
48:cb:ea:ed:52:0a:9d:84:eb:ac:ad:54:13:ae:39:37:ab:da:
33:9b:85:5c:8d:1a:b5:95:7a:ec:87:02:c8:2b:c2:8e:95:6d:
ee:97:70:87:39:57:8a:8e:58:28:7b:1f:3e:dd:c6:91:32:2b:
af:be:9b:51:28:e3:e2:8c:27:fc:74:4b:17:99:82:51:03:65:
05:02:7b:32:ce:3e:6b:79:19:cf:a0:3a:cd:59:f8:27:22:8f:
ee:b9:58:c5:20:d9:16:34:01:09:04:00:f0:dc:75:e2:c3:96:
37:f2:4b:e7:f9:9e:a6:36:6a:33:aa:d8:af:c1:39:9b:11:70:
ed:60:bb:57:42:d7:66:a4:d9:d8:69:f5:87:2c:d1:94:c5:4c:
1b:89:2e:b4:74:f6:d7:34:c0:4a:fb:87:2e:cd:5d:8a:3a:ae:
11:0c:17:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:43 2025 by rpki-client