Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
File: pnkWCgRJ6LUPwByF3PzlSyxim1E.mft (raw, json)
Hash identifier: 9x1qmAihfsgxKWC7c/Y0wfZvbWxNShlIgNMshjCozqk=
Subject key identifier: D7:48:19:6B:A9:85:B1:FE:30:40:94:EE:E0:69:BD:09:91:F9:35:47
Authority key identifier: A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51
Certificate issuer: /CN=a679160a0449e8b50fc01c85dcfce54b2c629b51
Certificate serial: 0197CB710761DA238D02EF88B81E7F8B8A03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
Manifest number: 0FC5
Signing time: Wed 02 Jul 2025 14:01:11 +0000
Manifest this update: Wed 02 Jul 2025 14:01:11 +0000
Manifest next update: Thu 03 Jul 2025 14:01:11 +0000
Files and hashes: 1: 6zgBCVzd-5kdX0sgGe0YDglrk04.roa (hash: mpYaeNHnIzoaHZnsNjSuZCAnd5S6WeK+VhnJsngc1QQ=)
2: pnkWCgRJ6LUPwByF3PzlSyxim1E.crl (hash: dR7gzb84mcj9plzOmw08ad9Z9rvlHy89gMM8dC3cgW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 14:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:71:07:61:da:23:8d:02:ef:88:b8:1e:7f:8b:8a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a679160a0449e8b50fc01c85dcfce54b2c629b51
Validity
Not Before: Jul 2 14:01:11 2025 GMT
Not After : Jul 3 14:01:11 2025 GMT
Subject: CN=d748196ba985b1fe304094eee069bd0991f93547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f3:67:53:4d:7a:e7:cc:a2:b0:27:52:1d:2c:
52:68:7d:0a:e4:44:20:b8:ba:e9:25:42:7d:28:62:
ad:ca:ab:2f:74:df:d3:7a:a0:b6:14:cd:03:e6:5c:
99:0b:f4:74:01:60:08:77:07:f4:a4:ad:3e:dd:ca:
3b:78:3f:31:06:02:3c:90:5a:d5:74:29:22:e4:25:
26:79:2c:52:61:77:46:92:41:49:96:40:d5:fc:9e:
45:94:d0:82:01:45:f3:b9:5c:57:f6:9f:c3:b4:23:
2d:5e:4d:39:a0:38:9c:32:de:4d:b7:f9:fb:24:11:
86:52:49:46:fa:ec:4f:2b:41:60:c5:62:9b:1c:18:
bd:e8:2b:73:3b:51:86:7a:64:30:ae:07:27:bc:ed:
aa:b8:69:93:1e:2c:f1:bb:6d:01:9e:6b:d9:3e:4e:
ad:7a:f2:8c:c0:79:54:da:4e:c1:ad:80:5c:22:5f:
b6:c9:0b:bb:f4:5c:e2:95:23:2b:c2:81:03:71:96:
a0:13:d0:6d:f0:bc:dd:0d:40:1b:ea:62:2d:b9:a8:
28:97:b7:ad:9f:7a:51:85:d6:05:fe:eb:0b:ad:03:
13:db:b1:44:2e:1a:b2:17:dd:49:4e:c9:1f:01:21:
23:c9:54:54:4a:ad:ee:78:c6:6b:c8:80:69:a1:49:
6a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:48:19:6B:A9:85:B1:FE:30:40:94:EE:E0:69:BD:09:91:F9:35:47
X509v3 Authority Key Identifier:
keyid:A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:2e:da:72:38:99:1e:44:57:19:2f:27:5b:4d:19:b1:f7:56:
53:96:96:ef:fa:7b:8a:62:ae:5f:53:64:75:cd:64:4e:2a:d0:
7a:de:98:b8:b4:be:86:2f:ff:bf:12:90:ca:6d:8a:f6:38:f2:
39:90:b3:bb:92:41:c8:82:0a:e5:f1:c0:9b:29:27:70:16:bd:
15:49:dc:6e:cf:76:74:72:51:26:d6:bb:ea:01:12:0b:23:5d:
69:c9:1a:48:f7:16:a4:ec:eb:ef:89:66:93:16:51:09:42:75:
86:e7:71:85:57:85:9e:8d:6b:95:ee:08:14:04:1f:83:7f:e9:
0b:ff:cd:09:80:87:8a:ad:d3:77:46:2b:78:a2:3f:4d:13:85:
56:5e:d2:b3:a7:2c:48:ed:4d:f4:40:a0:9e:af:df:80:ee:63:
9e:0e:0c:a1:22:24:1a:49:3e:fb:43:10:03:3f:36:ac:0f:a4:
8b:58:2d:ac:18:ac:60:bc:98:e2:bd:2a:04:bf:16:e0:bd:22:
12:a1:be:f6:6d:3d:46:05:3d:7f:db:b4:74:39:95:30:1c:b5:
ce:e4:df:a7:b9:dd:e9:fa:b9:de:9a:a0:a1:72:b2:70:5d:df:
eb:e1:45:ed:3b:b0:27:bf:8d:fb:63:5c:32:8c:ea:09:78:1d:
b0:55:e1:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 21:09:32 2025 by rpki-client