Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
File: P5YkCZj85BJMPLTfusuw7RYYQFo.mft (raw, json)
Hash identifier: 5gd27cnnaOJ4/trr7Y5qowyVEaoJZ8IVgdymSFMW7Es=
Subject key identifier: 86:27:18:03:55:A1:FC:11:AA:94:19:62:41:F0:2E:01:C9:AB:6D:EC
Authority key identifier: 3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
Certificate issuer: /CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Certificate serial: 0197B5FC3713A05B668A686F01C69E4B829F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 10:01:34 +0000
Manifest this update: Sat 28 Jun 2025 10:01:34 +0000
Manifest next update: Sun 29 Jun 2025 10:01:34 +0000
Files and hashes: 1: P5YkCZj85BJMPLTfusuw7RYYQFo.crl (hash: 17H5VpSuhXoGNdRE8dEKr8cdvWk1G8vp2l2rfMu1zUs=)
2: UXaxt-b39pINfZ1Y1ojLfS7SwMw.roa (hash: IC6xINcQpVjUgVum+7114aRM3S8XEivwvk3gYzMafvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:37:13:a0:5b:66:8a:68:6f:01:c6:9e:4b:82:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Validity
Not Before: Jun 28 10:01:34 2025 GMT
Not After : Jun 29 10:01:34 2025 GMT
Subject: CN=8627180355a1fc11aa94196241f02e01c9ab6dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ae:13:5a:9d:99:b2:32:73:a6:21:19:a8:8e:
50:d8:a8:6e:4f:1e:a0:cb:e2:2e:b6:54:3f:70:77:
97:b1:3a:a6:11:df:fc:25:2c:59:e8:7d:80:9c:b0:
07:ad:c7:5c:2f:e0:ce:ba:88:09:c8:d7:a8:68:dd:
b7:f6:68:12:30:4b:ee:00:a2:62:09:18:a0:ca:99:
fa:b2:8a:ac:cb:c9:af:25:3c:35:bd:14:f9:0f:38:
5d:80:b4:74:a4:eb:a6:72:61:fb:69:33:f6:12:25:
58:42:07:75:69:5a:d8:03:35:78:b0:70:b4:73:81:
06:13:7c:af:f3:19:65:d9:a6:87:92:96:9f:94:48:
de:ce:fb:dd:0f:01:67:19:0e:a4:43:d9:12:67:8b:
1c:f9:e0:14:5d:58:d5:86:d0:2a:8e:d7:ea:f0:d1:
93:45:46:b5:04:5b:b6:35:ad:a8:81:88:e7:c6:ff:
8c:f4:41:a6:23:1d:c2:70:e3:cf:63:0a:8a:96:01:
30:92:69:c8:f0:b4:fb:c7:c7:ed:77:7e:59:95:e3:
e3:c8:c9:c0:20:43:60:20:bf:44:2e:c7:ec:42:b7:
0f:f9:ca:fd:41:32:af:16:d0:fc:d0:98:94:14:8f:
f6:24:13:f8:bf:84:43:2a:11:3d:f1:3b:c4:27:1e:
74:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:27:18:03:55:A1:FC:11:AA:94:19:62:41:F0:2E:01:C9:AB:6D:EC
X509v3 Authority Key Identifier:
keyid:3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:1e:df:9c:3d:d5:98:2d:cc:d3:a6:07:62:43:06:a4:78:74:
eb:4a:ed:71:3a:bd:00:13:11:40:96:39:43:85:e7:56:9a:4a:
f7:33:f9:39:2c:44:c2:7c:65:26:e9:a4:dd:bc:a5:58:a0:07:
fe:1e:69:b2:60:f4:21:a8:f3:26:c6:5b:40:bd:29:9f:f1:c8:
22:4d:a1:25:01:d9:41:be:0f:cb:e8:87:8d:36:72:e8:19:0e:
9c:67:96:db:75:ae:fa:2b:cd:bd:ea:eb:11:16:65:1d:a3:63:
8f:65:08:4e:b0:8e:a8:4c:15:fa:dd:91:f7:9e:88:e7:07:1e:
79:d9:88:a5:f0:0b:04:58:d0:b1:1b:5b:45:f6:42:0f:36:02:
d7:8a:0c:d6:5a:9d:b8:92:5e:6b:61:a0:be:51:d4:71:1f:a5:
69:bc:e0:14:11:53:3f:f4:bc:bb:dc:5c:57:33:5f:f1:ad:9f:
c3:fc:06:7d:72:a7:42:10:e6:5d:95:14:8c:51:29:1c:eb:bb:
63:08:b9:1f:bb:2e:2e:06:7c:b3:f5:a0:b7:40:f1:33:e0:bd:
bd:48:fb:0c:16:ce:e2:6c:b8:32:39:84:50:33:f4:ac:22:57:
c5:ea:19:c4:e1:ff:f0:98:1e:4d:0e:ca:19:e2:f7:44:84:cd:
cc:0d:11:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:52:56 2025 by rpki-client