Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: P01FAivQjNySFYmUUplgRjR6rfSpgLOKWYgywVXkuYo=
Subject key identifier: 01:2E:C5:56:C0:38:EF:1D:19:C2:5D:79:CF:9F:1E:01:A9:88:C3:94
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 0197B7B3644851CC309C33F633EF803EDC6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 04A1
Signing time: Sat 28 Jun 2025 18:01:16 +0000
Manifest this update: Sat 28 Jun 2025 18:01:16 +0000
Manifest next update: Sun 29 Jun 2025 18:01:16 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: pv1/8XPV7P3BnvMUfQIKZ04iflJk6wN4WZuCDhTvnfo=)
2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:64:48:51:cc:30:9c:33:f6:33:ef:80:3e:dc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: Jun 28 18:01:16 2025 GMT
Not After : Jun 29 18:01:16 2025 GMT
Subject: CN=012ec556c038ef1d19c25d79cf9f1e01a988c394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0d:09:8e:87:43:b3:a3:52:53:28:1a:e5:2d:
10:06:88:b7:b9:22:ae:55:40:d5:ca:79:d1:10:bb:
27:cb:93:b9:d6:74:65:f3:55:82:a7:3e:d5:eb:b3:
20:7e:e4:8a:0b:50:be:13:4c:3e:71:55:d4:62:4a:
92:fa:95:e9:7d:07:89:44:35:d3:50:b4:6b:c7:54:
85:b0:5d:9d:8a:4b:40:7b:0e:4e:de:fc:36:95:0d:
70:b8:bd:0d:d8:29:d3:95:8b:72:97:a0:66:33:61:
3a:12:e3:0d:32:d6:8f:e5:f5:d4:0b:40:ec:e1:eb:
50:b7:db:79:6c:bb:b8:9d:03:de:7b:a2:f0:e2:97:
46:e6:67:42:7b:92:90:65:33:a9:c3:83:f7:fd:b2:
14:d3:33:82:f1:76:e6:ed:f8:a4:e6:a2:9c:7e:10:
a8:20:e8:2a:a2:bb:b9:ff:4a:71:e0:65:f8:eb:b9:
38:ee:c9:b2:fb:6a:48:ef:0d:b1:6f:ff:e4:31:d0:
e6:0b:20:92:05:83:8d:65:e1:69:dc:46:13:0f:b1:
c7:2c:8d:f5:de:84:12:69:28:8e:e5:bf:5f:19:db:
41:e2:10:bf:32:db:ae:3b:c0:3f:b1:21:2b:cb:31:
ea:2b:d6:9a:30:91:25:b7:5a:8e:1f:d7:74:45:d7:
7c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2E:C5:56:C0:38:EF:1D:19:C2:5D:79:CF:9F:1E:01:A9:88:C3:94
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:37:82:77:f4:1e:af:41:8f:e9:8e:ec:c4:00:d6:0f:a7:ba:
4a:29:3c:b2:e2:9c:b4:ba:c9:e3:f4:0d:00:a2:77:7c:29:14:
3e:f1:0d:79:a3:50:7a:38:a5:4b:6a:a7:58:9b:2c:27:a9:62:
19:a2:94:cc:ee:42:50:1a:e4:38:c6:81:00:ef:53:1c:ae:63:
a7:2a:87:79:fe:c3:fa:ac:03:04:88:12:44:a9:41:01:03:d6:
1f:fa:d4:94:eb:f6:c4:bf:6f:a7:06:a0:63:29:51:13:71:02:
3b:ed:20:57:d1:d4:d1:ea:24:30:59:b0:f2:86:7c:57:d0:a4:
4a:fc:79:2e:df:7f:36:c4:05:b8:4a:9c:9b:28:04:7f:45:3c:
0d:91:6f:be:f8:9d:5a:53:3f:ff:b2:1a:f0:02:c5:b1:eb:57:
eb:2a:68:81:35:46:f7:d9:a5:9a:06:f7:f4:57:c0:70:4d:72:
81:ca:bb:4f:10:29:56:4b:1f:2e:a9:db:f0:76:45:5f:10:fd:
5a:51:9a:1a:4d:3e:b2:4f:b0:2b:c8:94:6d:6a:d5:89:ea:a7:
ea:7c:f6:e6:01:5e:11:c8:93:b4:c7:4c:09:85:81:4b:7a:9c:
39:70:b7:32:bc:dd:ee:83:ee:e0:20:81:0e:2d:52:4e:09:99:
76:9a:9d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:15 2025 by rpki-client