Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: ZBpusSHpmDYMK5P6FT9DSZQZwubCQGPTLQ10TYrZFdY=
Subject key identifier: 45:EA:7E:CB:21:C5:CF:70:C6:B0:EA:DE:11:BE:56:6D:7A:01:4A:F0
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 0198D54DCF9614E39FF0E1CF76A6FFC95C6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0A51
Signing time: Sat 23 Aug 2025 05:01:43 +0000
Manifest this update: Sat 23 Aug 2025 05:01:43 +0000
Manifest next update: Sun 24 Aug 2025 05:01:43 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: i48kVmXGpGIoHbPDkQS/YXhM2uFcaSyr3C9M7QFPj4Q=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:cf:96:14:e3:9f:f0:e1:cf:76:a6:ff:c9:5c:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Aug 23 05:01:43 2025 GMT
Not After : Aug 24 05:01:43 2025 GMT
Subject: CN=45ea7ecb21c5cf70c6b0eade11be566d7a014af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5f:3c:ab:a0:28:11:71:d9:0d:54:aa:8a:92:
fa:7a:d9:eb:f4:12:a4:b7:c5:11:1e:6b:89:54:7e:
70:25:1b:e3:46:b5:43:48:ad:3d:e9:f5:47:28:eb:
fe:0d:a0:af:02:f1:02:b0:e9:e5:a7:9a:bc:d3:56:
a9:4d:d2:eb:23:d6:c4:ea:95:19:2d:98:48:8b:a2:
b9:34:99:78:bf:24:73:4c:bb:f2:4f:9f:5b:b6:ff:
d3:54:58:b0:0c:b4:5c:a2:68:c1:1a:17:b5:27:b5:
ef:67:f6:3b:b6:88:49:9b:f7:22:54:a8:cd:1d:b3:
cb:07:d2:07:64:d4:d2:2c:4b:0f:28:95:ba:c2:62:
ba:cc:b8:4b:39:c3:cc:17:2f:14:a4:fd:7b:4c:6b:
65:3e:20:43:6e:10:f8:df:59:c8:de:26:be:0b:e0:
5d:24:8e:16:6e:fa:aa:a0:8f:a8:fe:01:18:69:6d:
74:ed:3c:22:28:d8:2d:9d:bd:65:e9:34:65:8c:ab:
c3:66:a7:e9:17:ed:76:d6:d3:d4:94:15:f0:07:79:
8f:17:68:0b:c5:00:b0:5d:72:09:41:32:af:59:3f:
7d:5b:97:c0:1b:30:14:6b:aa:ac:26:16:fc:11:39:
65:35:b5:b2:5b:d5:8b:47:a8:50:c6:c7:12:92:0d:
35:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EA:7E:CB:21:C5:CF:70:C6:B0:EA:DE:11:BE:56:6D:7A:01:4A:F0
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a6:1b:d3:0b:b8:4a:c8:66:0a:e3:b8:25:d3:e1:b9:1f:f8:
a4:44:a6:06:e4:c8:06:94:2b:c9:45:4f:14:a1:20:b1:70:93:
a6:10:f0:a5:2f:5e:f0:e9:d3:5d:f9:ff:75:70:37:1a:f8:d9:
53:a4:7c:2f:33:33:e9:87:a1:a5:0b:8c:9d:86:1e:d3:6c:1c:
ce:2a:b3:6f:fb:9c:24:b3:48:d6:40:91:ff:14:aa:40:fd:f4:
88:83:c6:75:a6:6e:62:96:8b:a3:fb:9e:ef:0d:3c:22:92:e1:
26:b0:91:0c:b7:64:7a:92:f4:3b:a8:6e:a9:a0:41:8c:20:f1:
c9:bf:88:42:2f:97:c3:1c:04:13:16:bb:17:08:a7:72:a5:78:
b6:25:d2:3d:da:ba:7e:e4:43:f1:fa:24:5f:95:6c:fe:9f:36:
a7:8c:4f:72:bf:08:41:0d:52:2c:aa:75:e7:ac:10:cf:22:80:
82:b4:dc:a2:d9:74:47:b4:93:89:b7:4f:be:56:ff:d8:32:bf:
56:db:e1:2c:52:01:d4:83:e1:a2:0c:ba:bc:3a:a5:41:5a:a3:
fb:1f:e1:47:26:ff:3d:d8:df:bf:04:2c:e2:d3:82:bd:c2:0c:
30:37:90:92:89:5d:d7:7a:bc:70:16:a6:9a:22:65:1c:78:3a:
bf:fb:c3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:47 2025 by rpki-client