Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: axjaMrzXOC44hu/IAbwMLS08DgLwP/94LAG1FyQlHkM=
Subject key identifier: 9F:22:10:43:5D:77:D9:9E:6D:89:1F:0C:7E:04:74:42:C5:6B:C6:93
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 0197B77CCB230568954FF1779D149E397998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 083D
Signing time: Sat 28 Jun 2025 17:01:38 +0000
Manifest this update: Sat 28 Jun 2025 17:01:38 +0000
Manifest next update: Sun 29 Jun 2025 17:01:38 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: yPja2QU3/aBzriHFPWpO2Pi78Mb5vp90A3BS4rsEEEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:cb:23:05:68:95:4f:f1:77:9d:14:9e:39:79:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Jun 28 17:01:38 2025 GMT
Not After : Jun 29 17:01:38 2025 GMT
Subject: CN=9f2210435d77d99e6d891f0c7e047442c56bc693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a2:2a:cb:b4:dc:ed:b8:57:49:61:7d:21:01:
52:72:1a:a7:77:25:f9:79:c2:f0:59:0b:85:07:c0:
30:90:c8:88:ee:65:18:9d:0f:18:5f:bb:3c:9a:e0:
0e:a3:e2:dc:e6:18:24:b3:49:97:a0:32:0a:f6:36:
5e:cf:52:39:9d:05:0d:31:0b:b3:a5:5c:66:a1:84:
8b:1d:66:3d:41:7c:39:85:4d:5c:3e:62:59:0c:bb:
12:f2:2e:30:f4:9b:a2:bd:8e:fb:0d:77:43:04:da:
2d:c9:91:84:df:92:cd:7a:3a:da:ad:22:03:e8:80:
27:6a:c6:b6:a1:3b:39:b8:2d:4d:36:a6:98:07:6a:
81:ef:e9:57:5c:9b:1a:62:3d:4b:e9:48:46:ec:b9:
97:89:18:85:d9:1a:a3:24:4e:71:ac:8c:f5:5f:03:
ac:3b:4d:16:fa:39:d9:d3:ac:fe:98:3b:5b:7f:1f:
73:bc:a5:0b:da:ab:5d:97:64:be:79:36:45:fa:dc:
53:d7:f1:ad:3f:d7:59:d1:0c:5c:28:75:df:e4:70:
a6:1e:9e:f3:f8:7d:ab:51:0f:a7:92:73:54:80:db:
ab:8f:22:b8:58:11:0f:5a:a7:1c:c1:c6:2e:1e:9f:
4f:96:d3:f8:8b:c2:24:02:6e:d1:3c:e0:c7:28:f4:
7f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:22:10:43:5D:77:D9:9E:6D:89:1F:0C:7E:04:74:42:C5:6B:C6:93
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:6f:4e:f1:4b:0f:da:75:4a:d9:2a:66:79:b7:3b:74:66:92:
4c:eb:3c:3f:f0:72:4d:8f:9e:92:de:41:46:8b:44:cd:a2:87:
bb:9d:c8:2d:59:5f:60:1f:27:6c:89:f7:76:27:df:a7:3d:32:
cb:e8:e7:5c:c9:08:94:fb:34:0d:85:d2:e1:63:ac:fe:7d:0f:
40:4a:91:d7:ac:d4:0a:62:a2:3a:67:ae:e5:6a:42:db:f6:e9:
72:19:bf:dd:d9:cd:2c:d9:ef:b8:9e:a9:55:f6:38:05:5f:2d:
4c:8c:d3:82:12:3f:97:d6:e9:87:e0:20:42:bd:c6:b6:c3:bf:
44:fc:11:ff:be:dd:85:4a:21:ed:a3:a1:2f:90:25:3e:bb:5a:
be:9e:7e:38:c4:5d:04:60:1a:dc:49:d0:7d:cd:b8:7a:92:be:
23:45:4b:20:d8:6a:60:bb:c3:75:ab:53:70:e5:a0:7f:14:e1:
42:81:b5:33:40:e3:87:db:d1:9e:5d:a7:cf:27:e4:38:1d:bf:
ad:66:dd:54:bc:85:e9:f8:78:29:b2:42:7c:5d:89:ca:ee:38:
37:49:84:ed:d6:fc:4d:70:15:84:6e:b9:70:e4:10:19:4d:a6:
4f:99:23:df:16:f7:c0:6f:63:3a:36:3c:a1:64:4c:4f:cc:dd:
41:96:69:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:27:35 2025 by rpki-client