Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: FOjXLrNFP2A2qcANkQCd8wKD/7CjD9vh5c6tVvb8Tsg=
Subject key identifier: CD:E2:BB:C2:C9:DC:1D:B1:80:DF:B3:E2:39:48:5A:D4:1A:2C:FF:20
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 0197B77C5101758D195547538EFAB4748DF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 09BD
Signing time: Sat 28 Jun 2025 17:01:07 +0000
Manifest this update: Sat 28 Jun 2025 17:01:07 +0000
Manifest next update: Sun 29 Jun 2025 17:01:07 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: ZwKmYv/g7JLcmOesUfhG8D3+NYk3Kq77ZKSuKaRLpok=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:51:01:75:8d:19:55:47:53:8e:fa:b4:74:8d:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Jun 28 17:01:07 2025 GMT
Not After : Jun 29 17:01:07 2025 GMT
Subject: CN=cde2bbc2c9dc1db180dfb3e239485ad41a2cff20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0f:97:97:f9:96:e6:b9:9c:3d:23:9f:35:1b:
a5:cb:d9:63:4b:f8:27:af:b5:8d:a7:52:44:57:d8:
87:f7:61:aa:97:0c:e0:18:14:f5:88:14:e6:09:04:
ef:8f:40:86:51:c8:19:76:75:6c:ef:7a:11:81:40:
9b:27:1d:c0:2f:29:67:5f:88:1e:b9:d8:42:c1:a4:
8b:87:fe:3d:36:f5:ca:30:fa:40:6c:c8:1d:2d:1c:
76:d0:21:89:6e:7a:64:1f:14:e2:08:0d:89:3b:02:
b1:dc:99:c2:68:34:df:16:80:ba:e9:51:df:5b:84:
64:05:62:0b:4a:b5:ad:8a:2e:52:2e:85:97:cf:6c:
d6:d2:c7:ea:59:a1:b8:98:09:72:ab:62:b3:47:31:
fb:03:7e:da:d1:3c:f6:b5:8e:14:d7:00:31:e5:6a:
65:65:07:4e:64:a4:4a:80:00:bc:f4:00:35:e1:be:
ec:dc:02:95:dd:11:ba:f9:ca:2d:c8:b8:8d:d1:3c:
3a:5a:49:cc:96:01:ce:e5:96:d8:9c:ea:c7:65:ed:
dd:fe:89:c5:c9:b8:dd:db:6a:8e:ca:3a:66:5e:7f:
6e:95:1d:9c:af:01:ef:bf:a6:40:00:4d:92:98:fd:
13:b9:ff:e4:60:c6:12:13:8e:ea:ad:97:04:b2:92:
f2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E2:BB:C2:C9:DC:1D:B1:80:DF:B3:E2:39:48:5A:D4:1A:2C:FF:20
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:2d:82:49:46:e5:e8:d4:8f:df:22:be:80:a2:4f:99:2a:c4:
70:fe:65:45:6c:e5:7f:97:85:15:22:8c:36:6f:18:2e:71:80:
02:a8:92:53:cb:d2:6f:9f:f7:9b:05:64:73:4c:aa:f9:a6:47:
e3:0b:ad:03:4a:30:5c:31:3e:52:a5:19:ea:2a:aa:c9:54:ce:
d6:f0:6b:35:40:07:b6:4d:f7:7c:bc:23:8c:5e:ea:fc:a6:e4:
60:d5:c8:cc:49:db:16:95:cb:36:ac:ef:12:c6:0c:e9:bc:fb:
09:66:33:16:3c:99:16:ae:db:81:a7:df:2a:95:73:8b:9d:c3:
b4:69:28:6d:94:2d:99:2d:6b:46:19:ed:32:d6:94:8e:69:5b:
28:0c:39:47:1a:1b:41:e6:db:91:2c:52:0f:49:24:f5:19:fd:
70:94:32:f0:46:fe:5c:f7:2c:60:27:1c:e2:0b:b0:95:83:21:
4a:df:04:b1:ac:cb:e7:99:46:37:f4:f1:8a:e1:ce:d7:3c:d5:
1b:f4:8e:f4:87:66:fc:59:d9:e8:a6:12:a5:8f:19:02:51:b6:
bc:01:69:be:a1:b9:5e:85:a6:26:ec:2f:1f:b0:f0:d4:8a:cd:
6b:dd:d3:9f:91:a3:c3:ed:0e:b7:9c:9b:3b:52:6b:4d:7b:cf:
e2:e7:0d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:48:09 2025 by rpki-client