Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
File: 1PvHTNH4egvxbEgvYgHJueskTqI.mft (raw, json)
Hash identifier: ysMlxfgnzWr11Efku1EdghNsEamgs+MMpa2utsTKEfw=
Subject key identifier: 31:45:CC:CF:28:46:CD:23:17:EF:A5:E0:EE:E1:C4:52:C4:7E:96:DF
Authority key identifier: D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2
Certificate issuer: /CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2
Certificate serial: 0197B70ED101E44F78A6AFAE203844486194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 15:01:30 +0000
Manifest this update: Sat 28 Jun 2025 15:01:30 +0000
Manifest next update: Sun 29 Jun 2025 15:01:30 +0000
Files and hashes: 1: 1PvHTNH4egvxbEgvYgHJueskTqI.crl (hash: kXi7j5AYbMAXroYEyBAHlMEc0iTmcm+mD6atvzDojiw=)
2: Lf04Gu4CGxYLcQBclc4AN9VDJLA.roa (hash: dSOlHoyFZA5kqNN/4PjLQn10doJUzZFyYe2NTurY+0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:d1:01:e4:4f:78:a6:af:ae:20:38:44:48:61:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2
Validity
Not Before: Jun 28 15:01:30 2025 GMT
Not After : Jun 29 15:01:30 2025 GMT
Subject: CN=3145cccf2846cd2317efa5e0eee1c452c47e96df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ed:4e:ac:99:77:77:86:5e:45:89:11:39:e0:
a9:9f:5c:08:bc:6c:7f:d0:63:96:03:f8:e1:a7:7a:
38:96:c5:cc:4f:d2:75:29:ff:68:f3:3a:b1:81:d3:
5e:de:95:01:87:f3:1a:99:5e:91:fc:49:8a:7b:61:
a8:5b:c7:72:d0:93:db:05:b9:4a:14:19:da:2d:b7:
f5:28:2d:8e:22:65:96:60:ff:cd:4c:2f:93:c0:2c:
f7:bc:24:c4:9a:26:fb:2b:09:df:a7:47:ca:59:d8:
05:69:f1:27:af:b0:db:ff:3a:6f:ed:a4:dd:92:66:
a4:f0:6e:4c:2e:9d:f5:f8:68:a1:b7:a1:ce:72:95:
69:02:0e:24:bb:a1:bf:c2:9e:b3:93:43:af:55:a6:
26:6e:54:1c:54:c8:65:d4:97:9d:b1:86:8f:81:46:
ea:69:58:75:0f:90:7a:97:f7:51:63:b3:f4:75:e0:
c3:3e:f9:b4:1a:ef:c0:39:3e:64:b7:02:01:a4:5e:
81:ac:ef:af:61:ba:63:b7:cf:7c:2d:a0:83:90:fb:
fd:2a:93:8e:81:0a:ff:19:14:b6:a3:8e:17:6a:bf:
51:04:3d:fa:28:ef:7c:a8:89:36:eb:d7:26:82:c9:
64:9f:e2:c3:b2:5c:af:4f:64:ed:e4:d9:a7:e5:00:
b4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:45:CC:CF:28:46:CD:23:17:EF:A5:E0:EE:E1:C4:52:C4:7E:96:DF
X509v3 Authority Key Identifier:
keyid:D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:bd:24:51:98:e5:ce:6e:59:7d:96:04:55:8e:99:d0:74:d5:
d4:85:c5:61:25:1a:54:9c:4d:21:e4:22:2b:6e:8b:41:16:b0:
13:68:a9:55:a0:a0:af:7c:e7:23:13:ba:ab:85:30:c0:aa:4a:
ed:ee:02:86:d6:e5:19:f5:f5:a5:59:94:35:7d:a3:39:0c:8a:
dc:e4:07:bd:ed:63:a6:25:d0:cb:51:3e:1a:16:94:c8:19:d5:
9d:90:ff:05:a4:08:aa:5e:c6:e4:59:d2:4a:af:6d:86:dc:93:
17:46:20:cc:87:2c:72:e1:7e:c5:91:4c:ee:a0:9a:90:0c:28:
6a:f3:d9:1c:36:09:1f:e6:0c:33:3a:d8:c3:34:fa:e0:99:51:
7e:5f:9a:cc:46:f0:be:91:56:8e:ec:ae:e7:c5:82:b9:dc:a1:
d6:d0:a4:c2:5e:73:54:4a:fe:bd:20:c2:1a:46:b9:a9:3a:f5:
3f:a4:4c:30:0e:b4:80:59:ee:d7:b1:89:f0:8d:00:55:87:30:
37:90:4f:98:98:83:ab:cf:93:02:74:c9:a8:80:cf:1c:6b:2a:
88:a3:29:a6:4e:c1:36:46:9a:5a:ce:fc:36:75:c7:ae:56:3e:
25:aa:00:ea:39:6d:a9:69:25:17:b0:6f:33:e4:02:d1:c9:d6:
c4:32:d8:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:57:30 2025 by rpki-client