Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
File: PE71UtfFcTYTTntE1pfLAs3n2H0.mft (raw, json)
Hash identifier: wI/Fym/73rkRM1p5zALOPhLOnhZo3z/nVllvud7kmwc=
Subject key identifier: D0:55:7F:73:96:B7:9B:BF:A8:5E:62:B1:22:D1:2B:0E:CA:C0:D4:E1
Authority key identifier: 3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
Certificate issuer: /CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Certificate serial: 0197B77C8E4E336E649B9815F08686CDA2AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
Manifest number: 0A1A
Signing time: Sat 28 Jun 2025 17:01:22 +0000
Manifest this update: Sat 28 Jun 2025 17:01:22 +0000
Manifest next update: Sun 29 Jun 2025 17:01:22 +0000
Files and hashes: 1: PE71UtfFcTYTTntE1pfLAs3n2H0.crl (hash: mAGmD37kiBXE8pVYQBuW+1k29yQeCHYWxsjniSrpLm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:8e:4e:33:6e:64:9b:98:15:f0:86:86:cd:a2:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Validity
Not Before: Jun 28 17:01:22 2025 GMT
Not After : Jun 29 17:01:22 2025 GMT
Subject: CN=d0557f7396b79bbfa85e62b122d12b0ecac0d4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:59:7a:5e:e8:02:d4:ba:f8:f3:28:0c:43:c4:
a5:1f:95:77:7a:4c:76:33:79:a3:4b:9d:c3:19:6e:
b1:c7:56:3b:2a:16:43:51:4f:f8:5f:ba:25:c3:a6:
41:02:11:50:0b:be:b3:14:b0:ee:c2:04:4c:c7:d3:
44:d3:83:c5:d3:de:bd:76:8d:e2:76:f4:66:de:ba:
0a:fd:ab:73:12:52:38:5f:94:90:ce:04:71:d5:d9:
1c:59:9d:3f:92:23:f4:ee:9d:16:5f:47:b7:24:3d:
fb:90:ed:76:ea:bd:a3:71:11:0f:c5:1f:93:17:6c:
7e:ff:b2:a1:4f:40:56:c6:be:2e:fc:06:17:2d:d5:
12:c3:01:3d:8d:46:2a:27:0f:86:20:02:c3:25:d9:
d5:ad:05:9f:42:3b:23:e3:97:42:72:05:60:c5:57:
4a:dc:68:75:33:32:2e:fa:76:fe:2b:1e:69:9f:7a:
e4:29:d2:ce:74:02:a6:d0:1b:e6:5a:64:e2:af:8c:
df:69:b5:eb:d4:c7:cf:11:33:98:6b:0d:77:24:50:
51:df:31:7d:84:7c:32:69:c8:06:23:e1:46:3a:03:
7b:c2:d3:08:08:ee:9e:24:c5:d7:bf:36:10:9f:f2:
49:00:49:8a:2f:b7:62:dd:08:c1:d1:8f:c4:4d:30:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:55:7F:73:96:B7:9B:BF:A8:5E:62:B1:22:D1:2B:0E:CA:C0:D4:E1
X509v3 Authority Key Identifier:
keyid:3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:89:f4:d9:a2:84:88:53:b0:99:71:75:4d:82:f1:39:3a:e2:
2e:88:43:cc:f1:d6:23:bc:28:8c:f4:97:98:c7:7c:cd:2f:e2:
fd:64:5d:5e:a0:51:7f:0f:e5:d8:d3:01:86:ac:0d:0d:77:69:
74:a2:af:bd:48:75:37:8c:92:8c:d0:6d:48:81:d8:46:45:a5:
95:2f:ce:5e:e6:36:7f:bf:1c:c2:9d:3d:5e:df:24:53:6a:61:
2d:96:9c:a6:4b:5f:ae:5c:fd:c2:52:ac:83:f5:9a:c6:59:05:
eb:a8:09:74:1f:3d:06:4f:27:39:ea:3a:6d:e5:2e:3a:40:9a:
db:3e:6d:86:ea:c0:e5:f7:46:1d:6b:bd:08:d1:5a:53:a7:89:
2e:a3:50:aa:54:5d:8f:9c:61:fa:69:4b:c3:09:5a:34:f0:4c:
34:3b:54:47:45:7f:01:bd:c2:00:3f:f5:9d:0e:92:d9:d3:26:
7e:ce:c0:da:e8:e1:1d:b4:49:75:2c:85:1a:90:30:d3:8d:4f:
94:16:b9:b5:b8:c4:f4:e5:82:fa:58:45:7c:5c:b7:c7:eb:3f:
93:43:43:ef:97:7f:9e:f4:77:4b:01:e8:68:2c:49:dc:8f:3f:
fe:03:92:7b:a8:7b:64:79:3f:ea:09:fc:20:90:cd:9b:75:e3:
1f:28:23:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:06:30 2025 by rpki-client