Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json)
Hash identifier: 8bOMmYKjGkw21mcaI0hM8QecBkeDPN82h1Yt5P/cfbg=
Subject key identifier: 07:76:1F:CD:F6:94:3D:CC:F2:8B:9C:4F:B1:87:B0:E8:07:BF:A4:76
Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Certificate serial: 0197B6A0E2B0939522369459DC119F708F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
Manifest number: 0C62
Signing time: Sat 28 Jun 2025 13:01:26 +0000
Manifest this update: Sat 28 Jun 2025 13:01:26 +0000
Manifest next update: Sun 29 Jun 2025 13:01:26 +0000
Files and hashes: 1: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: 3DRbQIZ6ddd4oC//K/P+07l4l03apbxQUuRnluvGRN4=)
2: RPdruY8oCYU-NG_cdmDTyaYXs9w.roa (hash: i9rNw7/5XltvLVBXot4AXkRNS8YKs+TQnC29q/66MR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:e2:b0:93:95:22:36:94:59:dc:11:9f:70:8f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Validity
Not Before: Jun 28 13:01:26 2025 GMT
Not After : Jun 29 13:01:26 2025 GMT
Subject: CN=07761fcdf6943dccf28b9c4fb187b0e807bfa476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e0:aa:b8:87:9a:b3:55:2d:eb:f2:79:88:f5:
9a:7c:18:c7:65:b3:6e:26:a2:ae:cd:2c:fc:d6:7a:
3b:c9:95:de:4c:a1:87:84:99:f5:87:c1:b9:7a:c7:
49:f6:39:eb:99:62:f5:95:61:93:0e:4f:18:f5:c5:
14:9f:d3:b8:70:bd:1c:7b:8b:12:64:c0:b8:43:2f:
09:ca:cb:ce:6d:bb:7d:34:39:1c:b4:9f:09:6c:8d:
62:f6:57:f7:15:5b:8b:fa:bf:a8:fd:79:76:94:8d:
93:5f:63:c7:74:13:75:a0:5e:07:3c:27:fd:98:37:
21:12:2d:cc:97:c6:33:ec:77:ed:f2:6a:6a:1d:aa:
c2:92:5e:96:18:98:37:65:81:3b:60:57:9e:68:c9:
20:17:34:1c:21:a1:c9:23:3d:4c:82:a0:6c:4d:0a:
fe:04:97:e5:89:87:06:d7:90:75:95:b0:3b:0b:94:
b9:e7:02:5f:2e:87:e6:e3:4e:50:04:af:3f:80:c9:
4c:05:0b:62:62:2f:cf:49:de:02:0d:7e:aa:80:47:
12:b9:24:79:00:65:5b:c2:75:7d:ae:ff:73:3b:08:
99:8b:ce:4b:5a:04:4c:35:22:91:f3:9f:53:ad:c5:
c2:b1:39:c3:81:55:c9:d1:a6:d2:71:54:61:79:d7:
9c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:76:1F:CD:F6:94:3D:CC:F2:8B:9C:4F:B1:87:B0:E8:07:BF:A4:76
X509v3 Authority Key Identifier:
keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:19:b3:ee:ed:ff:64:5d:c1:87:cf:65:74:a4:46:55:02:49:
82:37:1c:3d:25:fb:0f:24:b8:ec:01:60:ee:86:07:17:8d:da:
4d:3b:8c:d0:43:29:9a:6a:fe:96:77:2e:88:a2:3a:45:9a:20:
45:53:e9:63:95:90:bf:0d:0d:99:27:40:1e:b9:78:5e:af:65:
ee:1f:fc:0c:69:a3:77:52:19:8a:eb:5f:b9:20:63:82:50:38:
51:99:38:06:04:7c:0a:8c:7f:a8:a3:66:fb:17:0c:c7:5a:69:
9f:38:8f:c0:c0:31:e0:96:90:2c:77:98:e0:3d:62:7e:9a:09:
28:89:7e:e4:8a:ac:a8:d9:72:9d:c6:d2:99:f9:05:82:e7:64:
2b:d9:4e:5a:d3:a3:1f:5c:65:b3:44:5d:ed:f4:b3:b5:88:95:
99:16:f3:4d:71:73:81:52:a3:3f:bf:11:78:e6:dd:4e:78:47:
a2:73:ac:fe:8a:c3:c1:7d:c2:22:7b:57:3e:e0:59:05:e9:a5:
a5:ff:0b:63:01:fd:50:2d:00:63:93:5d:f0:2b:1d:95:ca:63:
e3:07:00:00:c6:0e:be:5d:d5:2c:96:68:7e:a7:cd:db:5b:b0:
66:77:b8:0a:a7:17:f1:fe:b3:4d:4f:c3:f4:e1:5d:ed:90:ae:
80:2c:b5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:50:49 2025 by rpki-client