Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
File: PnpcKTN0JfqBOVVRcmyMK35MUIc.mft (raw, json)
Hash identifier: cnSqMgnl1GVTTyrJgDfzJtbobzSWf0jiT7HV8yQN2O0=
Subject key identifier: F3:1E:F3:0C:22:8F:1D:89:89:28:A0:79:21:9C:EC:79:F7:1F:19:65
Authority key identifier: 3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
Certificate issuer: /CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Certificate serial: 0197B8FD386D4187CDF54360A16B592C3FDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
Manifest number: 02FE
Signing time: Sun 29 Jun 2025 00:01:32 +0000
Manifest this update: Sun 29 Jun 2025 00:01:32 +0000
Manifest next update: Mon 30 Jun 2025 00:01:32 +0000
Files and hashes: 1: PnpcKTN0JfqBOVVRcmyMK35MUIc.crl (hash: pzsSogBE22mFADOMlx3HBUoZgOSWOnHPTgRJC3eYm/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:38:6d:41:87:cd:f5:43:60:a1:6b:59:2c:3f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7a5c29337425fa81395551726c8c2b7e4c5087
Validity
Not Before: Jun 29 00:01:32 2025 GMT
Not After : Jun 30 00:01:32 2025 GMT
Subject: CN=f31ef30c228f1d898928a079219cec79f71f1965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:af:73:87:ac:e6:8b:45:80:ec:a2:0a:13:8e:
cb:78:a7:d2:0f:fd:07:90:93:8e:9f:47:9a:3f:da:
ad:79:fd:82:21:ad:8e:11:77:59:49:a9:7d:b8:29:
f8:46:af:8b:96:ce:90:40:1c:a2:b2:16:f3:3e:6e:
16:3e:a2:f7:a8:bf:ed:c9:cc:6e:14:68:19:98:8f:
1a:fe:dd:cc:0b:bb:7c:5c:38:95:10:7a:d9:57:42:
a8:1d:71:e1:f5:a7:97:22:e0:93:45:3a:5e:3b:71:
49:d4:f8:e0:03:cd:a4:b2:cb:c4:f3:87:f3:09:6f:
df:5b:6c:85:be:35:c3:ad:15:f0:78:eb:5f:27:18:
9c:a5:58:de:5c:f7:0f:e8:b2:94:ba:e8:a6:8b:c2:
e6:d9:11:d6:ba:5a:b7:86:ae:dc:31:13:26:40:75:
d0:4b:4c:2f:00:7a:54:57:a9:96:e6:a0:65:50:3d:
e5:6e:74:27:c9:1e:cb:13:14:41:18:fd:01:6c:f0:
a9:58:26:11:db:cc:57:54:1c:e1:8b:e0:b9:82:e8:
0a:f6:43:d9:7d:68:0e:23:9f:a3:08:cf:ad:fd:81:
72:e1:fa:0b:a5:97:86:6b:db:a2:39:88:e1:5b:9c:
33:1b:16:19:55:77:6c:bb:9b:5d:dd:8b:ee:6c:67:
96:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:1E:F3:0C:22:8F:1D:89:89:28:A0:79:21:9C:EC:79:F7:1F:19:65
X509v3 Authority Key Identifier:
keyid:3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:72:b8:d6:e6:81:da:3b:88:c1:fe:3a:93:e0:84:32:bf:e6:
13:02:4a:04:ea:b1:cd:63:90:24:31:a4:d5:00:8f:87:0d:32:
c6:bb:73:5d:bf:5b:48:81:ae:14:aa:58:fe:f4:b6:58:24:26:
d6:4c:73:00:a3:ce:de:de:9b:ef:d9:73:f9:20:96:b1:8f:c1:
63:2e:b7:f6:fc:3e:04:f8:a7:bd:59:18:76:ee:b5:74:ff:33:
5e:18:9f:41:b5:43:cc:d7:ed:b6:66:5d:e7:e0:dd:e2:0f:fa:
59:0e:a0:67:4b:78:0f:60:f1:39:60:0b:39:69:fe:58:fd:75:
9e:bb:1c:72:0d:ee:69:7d:e8:57:b9:aa:f0:ad:8d:3b:d9:e6:
eb:87:cf:b4:e0:c3:fe:55:86:9f:c5:89:b1:0e:bd:6e:97:de:
59:83:29:38:62:d3:8c:92:3a:31:fc:b6:03:68:46:3c:de:87:
61:0c:31:89:91:44:ea:b1:b6:1a:3f:52:de:de:76:0a:b5:d0:
8c:76:3b:36:be:ad:d3:9e:1c:65:c5:07:6d:a5:d1:76:05:15:
27:2c:be:6e:89:1a:96:d0:a2:fd:64:8e:93:be:62:bb:a1:de:
3d:23:33:2f:84:d3:d7:de:80:69:ce:ad:e6:cc:10:9c:00:63:
2a:ee:8d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:24:35 2025 by rpki-client