Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: zewnUK1dJ+EE4WT74oy82p4PAYO2WL3a3OT5yyls9p8=
Subject key identifier: 1E:84:51:37:32:B9:AB:4E:CB:11:85:59:6C:51:10:F9:D9:E1:77:C5
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 0197B6D742D5FF87E9604F534D9CA5DA1C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 0E7B
Signing time: Sat 28 Jun 2025 14:00:49 +0000
Manifest this update: Sat 28 Jun 2025 14:00:49 +0000
Manifest next update: Sun 29 Jun 2025 14:00:49 +0000
Files and hashes: 1: 8e7eehP1l-DLf5STdKJWnoHYbKQ.roa (hash: K8SacJP+Z6piM83BegnBqW6J1m/glPf8EgTcnUYrotM=)
2: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: MJav9QtAKA6OpeJTBzWk6qkyTZhT+JLqbFqHprnh2DM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:42:d5:ff:87:e9:60:4f:53:4d:9c:a5:da:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: Jun 28 14:00:49 2025 GMT
Not After : Jun 29 14:00:49 2025 GMT
Subject: CN=1e84513732b9ab4ecb1185596c5110f9d9e177c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3c:ff:82:b4:39:0c:ca:ff:3d:a8:16:a5:f2:
0c:06:cf:05:b5:0a:a1:64:73:0f:91:1e:2a:bb:75:
5e:8e:08:97:72:92:04:24:fd:6a:3a:a3:8a:31:67:
35:11:69:e0:09:a0:d7:ee:4a:c8:8f:98:f5:b8:b6:
fe:ec:61:c0:8b:0a:a0:58:aa:3d:56:80:aa:c3:06:
14:6b:c0:b3:b9:42:d6:63:e4:bc:ff:3b:04:d7:04:
89:0f:dc:ec:15:9f:a7:9c:b1:ab:cd:3b:ec:67:3f:
7e:b2:18:40:33:f9:40:2b:ff:f5:92:4c:26:76:ec:
39:70:57:67:53:99:2d:c1:16:8d:3f:a5:7d:63:9f:
aa:b5:d3:48:b6:54:f7:17:38:cc:d5:0b:2c:f0:60:
ca:50:b6:80:2d:60:89:bc:73:24:67:1c:b5:ca:27:
5d:93:f6:9e:28:ff:36:43:34:6b:4a:d7:a1:b9:fc:
7f:05:0c:56:f9:c3:37:67:01:79:4c:d1:bb:7a:cf:
fd:cb:6f:28:6b:67:e3:12:25:47:05:11:36:90:fb:
24:62:fe:fe:63:ac:75:be:70:cc:23:5f:25:31:5a:
ce:17:8c:0f:f1:8b:a3:43:f3:17:de:34:04:26:06:
a9:85:97:70:a1:20:79:66:6b:a3:f5:ac:65:9c:90:
aa:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:84:51:37:32:B9:AB:4E:CB:11:85:59:6C:51:10:F9:D9:E1:77:C5
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:e5:a6:77:08:aa:e1:63:de:52:37:fe:64:45:96:78:cf:d7:
46:42:ce:ee:3e:6d:1d:fb:ec:8e:ba:ad:35:eb:8b:aa:13:e8:
84:d8:20:c1:5d:01:9a:20:aa:10:02:19:29:13:95:d1:46:9b:
a8:88:76:33:b2:94:c8:d6:6b:42:d3:be:0b:80:60:94:3a:34:
8e:1d:08:bc:3f:47:c3:57:7e:00:4b:99:63:ea:33:e0:1a:04:
4e:86:53:8c:27:44:0e:4a:f8:2f:6c:4a:0d:56:30:e8:7d:e4:
29:5f:eb:38:4c:12:30:f5:48:b0:78:3a:99:e9:7e:5c:20:64:
ae:b7:e2:47:79:a8:41:1a:e9:71:bb:32:50:92:7f:bc:63:7d:
4f:29:a0:6a:4c:3b:81:bd:4e:23:f2:53:c0:8c:fa:76:1e:0d:
b0:92:ff:04:12:72:7b:02:06:eb:f3:54:17:c5:0e:5d:fb:9d:
b4:44:dd:01:c8:ae:14:09:97:60:c3:d1:ac:82:fd:35:91:e4:
c5:7f:8f:27:60:38:9f:a9:0a:21:1c:97:6d:5b:0b:66:2e:66:
17:3d:df:ec:2a:05:52:60:ca:ce:a3:d5:8a:f2:8f:1a:3d:8f:
87:a2:28:81:32:08:e5:78:85:5d:0c:b3:9e:de:a1:6d:f6:6b:
b0:23:21:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:04:42 2025 by rpki-client