Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: wkSxkoYHOVxXgD8EA00s0yuLwLtfQydShpDP/VrJ1dY=
Subject key identifier: 76:54:A6:35:86:28:95:E7:2E:2D:04:81:8D:59:9E:03:1E:92:C0:56
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 0197B70E6B0272EFC1919BD53DD7CDA42F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 144E
Signing time: Sat 28 Jun 2025 15:01:04 +0000
Manifest this update: Sat 28 Jun 2025 15:01:04 +0000
Manifest next update: Sun 29 Jun 2025 15:01:04 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: 8vBBwS1h9u0WacN4tAvEG0OheKKpdFTfS/3NWBMrGws=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6b:02:72:ef:c1:91:9b:d5:3d:d7:cd:a4:2f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: Jun 28 15:01:04 2025 GMT
Not After : Jun 29 15:01:04 2025 GMT
Subject: CN=7654a635862895e72e2d04818d599e031e92c056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:50:59:b4:c6:89:b8:f8:a4:72:ea:ff:f6:
11:23:c7:41:12:84:d2:35:33:90:8d:89:11:72:8b:
33:ab:f0:fb:ad:fc:3e:91:e3:06:15:40:16:ec:ea:
e3:b5:1e:35:d5:88:e6:3c:b0:a6:b5:4b:a9:58:c2:
82:7c:1f:53:24:c8:83:8c:43:1c:5b:70:dd:e1:38:
38:c5:c0:eb:34:ab:51:47:43:ac:f7:c2:31:c2:59:
02:3a:9c:16:ad:12:86:f4:41:79:ac:89:62:f9:cb:
c5:31:69:c3:51:4c:85:17:51:8e:c5:dd:78:64:57:
62:94:64:31:74:75:0d:b0:99:42:0d:5d:49:38:2e:
ae:f6:9f:3c:12:9c:70:f1:3d:2d:4a:dc:19:5d:7f:
a2:6e:91:74:35:b5:c9:0a:b8:f3:c5:df:9c:46:e1:
9c:4c:ac:3a:26:52:8a:d4:0e:56:5f:10:87:18:38:
89:91:19:58:95:41:37:78:54:02:52:2d:3b:06:d1:
a5:a3:96:ad:94:53:94:7d:66:45:27:eb:2b:d1:bc:
6f:e6:1a:c2:67:31:37:00:81:1d:f2:1d:b9:ab:9b:
cd:37:f9:2c:07:45:c5:fc:e0:58:c1:e9:9a:a7:ed:
6f:0d:5f:62:de:c7:1e:52:25:14:20:3f:ad:58:72:
70:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:54:A6:35:86:28:95:E7:2E:2D:04:81:8D:59:9E:03:1E:92:C0:56
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:75:ff:f9:a3:7f:38:68:7e:63:76:94:e7:ed:a3:ef:46:cd:
81:ac:d7:f1:ae:0d:b7:87:11:b0:5d:46:3c:6b:0c:d3:14:66:
74:54:06:14:de:76:ed:90:ec:2a:58:fe:a9:02:e7:f7:1b:68:
ee:b5:fb:05:82:ae:d2:fb:41:eb:af:29:45:48:79:51:98:15:
0e:4e:b0:af:da:9a:4d:7f:0d:b7:f6:72:77:0c:2e:40:94:21:
f2:99:3f:78:fa:09:0e:28:0d:7b:c0:80:39:43:2c:b2:8e:d8:
88:00:77:40:8b:0a:97:45:8e:34:4b:69:54:68:bd:1a:80:e7:
a6:e5:08:57:b2:85:5d:b2:12:bd:81:9e:79:b3:1f:7f:63:c1:
ad:0f:00:92:03:29:b2:cf:e2:d4:a8:15:b2:dd:ee:79:dc:8f:
63:3b:6d:7d:a0:02:6a:41:d4:18:a2:a1:c2:0b:32:ba:8c:54:
fb:eb:3c:16:ca:c5:00:07:5b:77:a6:45:fb:32:5a:04:7d:35:
ef:ce:0a:14:5b:80:84:51:7f:c1:17:7b:e2:0e:b4:33:03:9c:
5e:0e:5b:34:3d:a7:e5:7c:65:b9:a0:9e:7d:78:e5:5e:cd:7c:
98:ba:6c:fb:81:cb:29:de:c4:c6:8d:4d:d8:73:7c:d3:4c:a0:
a6:42:ea:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:42 2025 by rpki-client