Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: 9+hI6Ed+SFAkt3dzL9wUDs5AXYMhseMXjl4baEcSXIk=
Subject key identifier: C3:0B:AB:2E:AE:90:87:C8:7E:CB:E8:B2:9E:F6:47:35:74:2F:3B:AF
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 0197B6A140A95DDD9A5C62E2BC765ECE80F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 0718
Signing time: Sat 28 Jun 2025 13:01:50 +0000
Manifest this update: Sat 28 Jun 2025 13:01:50 +0000
Manifest next update: Sun 29 Jun 2025 13:01:50 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: XdrRxinK7qh40Qyk2lGKRiaYY9UIb1itg73UYZ/64MU=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:40:a9:5d:dd:9a:5c:62:e2:bc:76:5e:ce:80:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Jun 28 13:01:50 2025 GMT
Not After : Jun 29 13:01:50 2025 GMT
Subject: CN=c30bab2eae9087c87ecbe8b29ef64735742f3baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:81:29:53:85:49:0e:21:c0:49:f6:56:04:ab:
1f:47:3f:5f:26:1a:72:b0:6a:d5:c9:01:76:64:a2:
f7:89:10:c9:91:9d:33:03:a1:88:50:c3:ea:f6:35:
e1:d8:05:ae:02:ca:f8:8d:36:cd:d4:32:28:5f:55:
81:03:d9:0e:ee:1a:4b:9c:97:9f:43:00:ee:e4:b3:
ce:a7:42:04:88:58:88:b9:0a:7a:70:f7:c0:2d:72:
07:74:b0:bb:72:12:c7:ca:3b:a5:ef:24:f0:ca:67:
df:60:e7:8a:f3:1f:94:de:f9:ae:f3:eb:b5:59:2c:
d4:84:92:cd:32:02:2c:7c:50:e1:74:d9:9c:a5:6a:
d2:07:85:10:9e:62:61:59:df:a3:77:b4:3c:90:61:
46:47:34:9b:01:8e:2f:40:e1:c1:e1:75:ca:3b:8a:
c4:74:f8:eb:dd:94:9a:a0:ff:88:65:46:dd:32:5a:
41:63:f2:88:a3:4e:1c:30:6c:04:d0:21:25:77:d0:
c9:c6:98:76:42:54:58:07:ab:44:5f:db:c8:5f:58:
5d:92:2d:63:42:5e:5f:73:ab:90:98:c0:6d:8c:cc:
cf:56:6a:67:6b:43:34:ee:97:7e:14:6d:46:ea:2e:
92:28:85:90:19:bd:8a:57:1c:c2:c6:94:8f:0e:a5:
2c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0B:AB:2E:AE:90:87:C8:7E:CB:E8:B2:9E:F6:47:35:74:2F:3B:AF
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:94:32:da:7b:96:7d:4a:6a:38:31:41:3e:fc:33:b0:a1:37:
db:d1:7a:39:53:22:b4:ef:42:e3:48:4b:0d:7f:dd:83:46:e1:
07:14:c6:75:bf:a2:30:aa:21:03:35:e4:03:a5:5d:a5:08:c7:
df:7a:3b:03:93:cc:38:62:ab:9d:8d:42:94:18:aa:15:e8:cb:
71:16:a6:0b:f9:6c:3c:f4:b7:74:3e:16:fe:6b:4b:12:a6:92:
92:98:c4:53:70:ba:64:91:be:d4:f3:98:4c:7c:2c:92:80:2c:
e7:58:b7:70:36:73:5b:5b:c9:d3:47:e6:28:f4:c1:44:2a:48:
fc:2b:36:8b:26:80:70:48:b6:3d:a4:fb:b0:f6:1d:75:e2:a3:
be:b6:69:34:d6:04:85:5f:46:23:14:6e:f2:ec:90:2a:d4:cd:
dc:51:07:20:b0:68:bd:4f:c5:37:5a:a4:8c:13:fa:c1:8a:b8:
40:ff:79:ce:47:b7:ea:0a:b8:18:d8:dc:40:38:85:f5:d9:91:
4c:8e:47:e2:46:b1:1b:bf:3b:ea:f6:b5:b7:00:a0:21:f0:88:
92:be:f9:db:53:81:d3:54:b7:ec:b4:d0:dc:75:da:e5:df:e4:
13:65:20:9d:79:63:c9:75:e7:80:7d:2b:eb:4a:77:4b:d6:36:
53:23:37:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:21:24 2025 by rpki-client