Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json)
Hash identifier: AvCTWl670ip7xTSKuFOAkh72QgarT1q7q11yqfuvFt8=
Subject key identifier: 73:AB:AF:01:80:B9:C6:53:4C:23:9A:AB:B8:17:F1:04:91:AA:75:DC
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 0197B6D73FB58748AAB5C6AE4B8C4F04CB62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 14:00:49 +0000
Manifest this update: Sat 28 Jun 2025 14:00:49 +0000
Manifest next update: Sun 29 Jun 2025 14:00:49 +0000
Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=)
2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: 418ZXKeCJWdSF+PzTJUc68LAcSg+3BICx7SEoxpObu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:3f:b5:87:48:aa:b5:c6:ae:4b:8c:4f:04:cb:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: Jun 28 14:00:49 2025 GMT
Not After : Jun 29 14:00:49 2025 GMT
Subject: CN=73abaf0180b9c6534c239aabb817f10491aa75dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ca:20:51:c8:79:eb:26:74:63:d2:94:d0:8a:
e2:1a:a2:35:dd:bc:6b:b2:6a:67:b9:86:d4:f3:e2:
5c:b5:d0:bd:d8:39:ba:ce:23:38:30:5d:12:73:f5:
b6:62:5a:2e:33:43:9b:6b:29:97:81:bc:17:55:38:
ed:d3:77:43:42:ca:36:77:e0:5a:b9:80:46:58:4f:
59:84:58:97:d0:a5:9f:bd:15:f2:af:f6:b5:b5:27:
ac:69:b1:d6:ae:38:6f:98:5a:a1:61:52:3c:88:d2:
08:9c:2a:76:a0:15:8a:1c:17:06:64:21:59:f9:d0:
58:8c:2d:81:89:4c:26:d5:c7:18:99:2a:25:ef:d8:
0f:5d:9d:c1:4a:5f:e6:c9:10:4a:1b:2b:cd:49:47:
d1:2f:a4:5b:15:71:a2:20:72:de:1d:0a:3c:dd:1f:
c0:ba:7a:27:3b:39:fb:2c:33:93:34:38:90:3a:a9:
b6:6b:20:c0:9b:60:64:3b:34:74:f6:41:74:e0:fc:
94:2f:9d:a0:2b:16:d9:b6:a2:c6:1f:70:72:2e:4e:
ce:11:dc:3c:73:f0:21:71:9f:0b:90:e1:5a:ed:50:
fe:58:d3:48:6d:b7:f8:b8:b4:aa:af:19:54:23:1f:
45:7f:67:f0:ea:c7:a4:f8:72:92:51:94:71:67:ef:
44:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AB:AF:01:80:B9:C6:53:4C:23:9A:AB:B8:17:F1:04:91:AA:75:DC
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:bc:a0:c1:7d:49:fc:1f:5e:22:24:b3:54:54:30:bf:d5:a6:
b9:55:09:b5:12:0a:ee:48:f5:87:89:81:2a:11:a6:df:f8:de:
b9:7b:d8:f2:19:0a:8f:42:14:ad:cb:df:4e:1a:c9:05:2b:e9:
7c:24:29:1c:33:e6:5f:0d:75:01:8d:a6:8b:5d:07:39:96:de:
18:1e:3f:70:98:49:7f:f8:9a:da:59:35:59:55:b1:56:73:c3:
94:a3:38:bf:94:e0:08:b4:fe:53:df:58:d7:27:6c:54:6d:eb:
70:03:cd:0c:40:ae:53:f9:97:ee:a2:fb:91:f6:32:3b:0e:fe:
1d:19:bd:42:1c:4e:15:9f:91:bb:fb:7d:28:d2:24:b1:ba:31:
61:66:bf:fb:c9:43:3f:33:1f:e4:4c:6c:f7:ff:cf:a7:1a:79:
7c:60:5d:d4:9d:dc:b3:d5:0c:ec:09:08:bb:f7:f8:27:2a:eb:
57:8d:9f:55:1a:6a:1f:08:da:cb:b5:4c:8f:0b:3a:a2:29:44:
76:62:e1:4b:78:de:6a:8b:5f:99:bd:db:d4:61:fe:2e:62:37:
80:27:17:0b:bd:ab:b5:f2:b5:3c:1b:89:1a:fd:18:ed:f9:37:
d6:28:58:7a:0e:21:1d:a9:e7:7f:ed:8e:64:dd:c7:20:e5:12:
74:b1:8b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:08 2025 by rpki-client