Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
File: PsY-XbBDXC0-dKayitPZww1qjO4.mft (raw, json)
Hash identifier: nDbuo03f1ARTBkR+YPSCa4TvGNjEiZqLG2aCgd5WxFE=
Subject key identifier: 44:AC:6C:EF:5B:48:84:36:B8:A1:F8:BC:46:A8:D6:0C:4E:45:DA:04
Authority key identifier: 3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
Certificate issuer: /CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Certificate serial: 0197B88F2045CF8D40D7C1BE3A5494872A1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
Manifest number: 0DC5
Signing time: Sat 28 Jun 2025 22:01:17 +0000
Manifest this update: Sat 28 Jun 2025 22:01:17 +0000
Manifest next update: Sun 29 Jun 2025 22:01:17 +0000
Files and hashes: 1: GSEh8gIZdCBsRKOnb9fKkFOFuZk.roa (hash: u2uTEL6Ts0fKYl8Es1LELd2Ambr6iVn6vwhJ7qDD50c=)
2: PsY-XbBDXC0-dKayitPZww1qjO4.crl (hash: aCLAgIcTAYea1Pr6E48+CqJ0Unkd4zm2iKtEgczDMEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:20:45:cf:8d:40:d7:c1:be:3a:54:94:87:2a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Validity
Not Before: Jun 28 22:01:17 2025 GMT
Not After : Jun 29 22:01:17 2025 GMT
Subject: CN=44ac6cef5b488436b8a1f8bc46a8d60c4e45da04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3d:24:ef:ca:4e:89:50:06:83:b6:29:76:7a:
17:e4:19:4a:3e:1b:cb:9a:4f:93:36:7a:37:f3:d5:
12:91:f4:3b:3b:a1:61:71:65:71:99:22:9c:13:f7:
b4:b3:06:c9:66:51:bd:d0:12:78:f6:c6:65:18:c2:
7d:9e:90:42:2c:15:6b:71:80:56:6b:bd:86:30:66:
2c:c1:a5:11:4a:19:9c:d9:f5:18:c2:83:ef:b9:7e:
fe:04:63:28:42:fd:0e:0f:96:5a:c9:6e:4a:71:c8:
2e:c8:08:cd:6a:15:cf:d7:ed:70:b1:eb:d0:8b:95:
ea:c5:bd:e8:15:ac:3d:70:53:79:ec:3d:c7:cb:e7:
6c:53:18:48:08:35:34:a7:2e:74:50:3e:91:81:94:
43:c1:63:8f:39:f7:3e:cf:2e:31:c5:4e:42:72:13:
b9:8f:f9:85:7f:7e:ba:73:29:ef:4a:a4:d4:3a:f7:
f1:ba:14:6e:27:59:2d:47:fa:79:13:d0:45:02:a4:
13:5d:76:81:ce:62:69:44:c3:29:8f:cc:60:6c:56:
3f:84:61:68:41:f0:e9:09:9b:9b:c4:93:18:a6:63:
ff:5a:d2:53:b0:95:97:86:89:5f:36:9a:b4:f7:9a:
44:b0:6e:86:53:ae:7f:bd:a5:49:df:0b:f9:4d:35:
e1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AC:6C:EF:5B:48:84:36:B8:A1:F8:BC:46:A8:D6:0C:4E:45:DA:04
X509v3 Authority Key Identifier:
keyid:3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:25:31:73:22:a8:18:31:40:ac:bc:51:b7:27:09:8b:6b:b6:
16:7d:29:4e:fa:43:50:28:23:a8:8e:d1:dd:37:b9:84:88:c4:
52:13:61:a0:0a:e1:1b:51:31:f2:fd:7a:35:18:cb:6e:5e:8d:
40:c0:ca:2a:97:93:e0:66:29:af:ca:97:9e:03:d0:57:f2:44:
f4:5a:9e:51:5d:4e:2d:96:c4:c5:44:16:b5:d7:c2:28:27:a1:
19:a3:39:df:45:5b:37:f3:5c:4f:67:5b:53:98:ad:b0:3a:97:
a2:be:2d:9a:c3:37:30:4e:d8:4e:8e:54:74:8a:f5:b1:47:11:
94:43:60:ff:3b:a7:12:bf:a1:81:da:ff:f8:e6:50:2b:9b:ca:
0c:e7:a2:bd:64:1f:b6:a8:d8:b4:46:2e:f0:1d:8a:74:b1:0e:
c4:e4:0d:cf:08:ce:38:5d:3c:44:93:30:a1:d5:ed:79:f0:4c:
e3:fe:eb:58:89:3d:d5:9b:bd:6a:5e:97:21:b5:aa:51:ee:e0:
47:ae:76:04:60:f0:14:65:19:ef:59:db:c5:27:6e:42:04:e1:
dc:86:56:10:67:2a:74:5e:fc:fe:fb:7d:14:f9:81:3a:62:27:
bc:71:a7:aa:95:ec:a8:c8:5b:71:fd:b5:9b:bf:27:ef:9a:ff:
ef:26:f0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:24:30 2025 by rpki-client