Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
File: PnpcKTN0JfqBOVVRcmyMK35MUIc.mft (raw, json)
Hash identifier: lXftlrBsIO3xdhUdJnV+THxOs4dN3rjd/FKh8qQ97Dg=
Subject key identifier: 40:5B:C2:4A:1E:EC:57:5D:4C:36:F4:0A:2F:B2:72:18:20:8F:81:31
Authority key identifier: 3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
Certificate issuer: /CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Certificate serial: 0198D4DFDAD3756D83910A81193582C3D13A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
Manifest number: 0391
Signing time: Sat 23 Aug 2025 03:01:36 +0000
Manifest this update: Sat 23 Aug 2025 03:01:36 +0000
Manifest next update: Sun 24 Aug 2025 03:01:36 +0000
Files and hashes: 1: PnpcKTN0JfqBOVVRcmyMK35MUIc.crl (hash: oU18Mi47tnXPuKIOmdMmhaqdf5jozXISs/CJqQufvfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:da:d3:75:6d:83:91:0a:81:19:35:82:c3:d1:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Validity
Not Before: Aug 23 03:01:36 2025 GMT
Not After : Aug 24 03:01:36 2025 GMT
Subject: CN=405bc24a1eec575d4c36f40a2fb27218208f8131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:18:9c:42:2e:7d:7c:64:1c:88:8a:fb:20:74:
e9:f7:e8:c0:7e:08:85:59:4c:b2:07:de:17:d8:9a:
77:52:a2:1f:ac:95:98:6c:34:e3:72:5f:9c:da:47:
4c:de:b3:53:6c:88:23:0b:b8:fa:cb:d2:be:c5:89:
cb:f4:e1:dc:f6:22:5d:56:5b:53:6d:ea:51:aa:6e:
1b:d8:6b:1f:58:b0:c7:dc:d7:b7:e1:c9:1d:07:35:
af:78:a4:0c:fa:1f:da:79:48:85:79:d5:2f:34:57:
3e:b4:22:a2:62:ec:01:95:ee:f3:49:b8:94:22:c4:
26:e7:e1:57:a9:d4:65:3d:35:8b:fe:a4:39:46:8e:
1a:84:59:5f:3d:f0:26:a6:7e:60:03:ef:31:d7:83:
1b:d5:8f:3a:f2:92:83:5d:ec:28:a4:c1:79:98:46:
c6:49:cd:ec:36:68:cd:10:fe:f4:4f:67:e4:f0:ee:
7a:e2:a6:a9:37:67:6c:9b:44:cc:c7:2c:27:3a:5a:
85:50:d2:fd:f8:02:44:cc:47:fb:54:be:09:fd:e0:
b4:8f:32:0c:e2:7e:52:12:62:8b:9b:87:83:9f:00:
5d:e4:58:3c:0d:55:5d:80:4c:6d:36:4c:ff:f2:c4:
54:69:c7:e7:46:2d:8b:59:c5:c8:a9:51:7c:9f:45:
01:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5B:C2:4A:1E:EC:57:5D:4C:36:F4:0A:2F:B2:72:18:20:8F:81:31
X509v3 Authority Key Identifier:
keyid:3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:3d:35:5d:5d:2d:6d:ba:da:a7:f6:78:8b:00:06:c8:d2:bb:
ef:53:e3:8c:50:b5:5e:3d:8d:f7:01:93:15:86:52:89:26:de:
4f:21:e1:14:29:9f:63:64:6c:9c:c6:59:30:36:37:10:97:f6:
90:cb:f1:f3:34:d0:cb:5b:a5:23:14:de:f2:e6:3f:ab:17:6d:
e2:fa:fd:1e:40:62:e1:11:b3:14:67:27:a7:24:56:bd:46:a1:
2c:6d:b2:76:f0:c4:13:01:85:75:4d:3a:46:ed:91:24:fb:60:
2f:aa:45:33:22:08:28:4b:95:33:30:4f:93:f1:3b:64:67:7e:
0e:0f:1a:ff:7a:b1:f6:50:d5:02:8d:16:8e:08:e1:74:95:d7:
6f:46:32:4d:a0:f9:ac:b7:07:aa:cd:e6:d0:52:31:54:21:f8:
14:99:80:4b:dc:b2:63:51:26:68:2d:7c:ac:ac:06:20:f1:cc:
e6:20:ab:9f:be:fa:82:16:0d:90:41:88:12:6a:af:0d:8d:ce:
53:03:34:3f:36:59:8e:14:2e:cd:cd:2c:a3:2e:e3:7d:64:e1:
7c:41:f8:c7:64:e6:04:f3:66:d5:82:bf:28:59:85:3d:49:c4:
70:9e:d4:16:16:66:82:b8:72:ab:d2:b5:f9:49:fd:15:f6:84:
d3:6e:cf:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:01:19 2025 by rpki-client