Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json)
Hash identifier: pe9MLnMXrEPoLIGRbg9dwXs7evR507u3lGJSlSmnSVc=
Subject key identifier: 32:AF:29:A5:16:82:B4:8D:FD:C6:B4:E8:79:0C:5F:0C:7F:3A:40:E6
Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e
Certificate serial: 0198D697F73AAD0A73519837254C856B07E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 11:02:19 +0000
Manifest this update: Sat 23 Aug 2025 11:02:19 +0000
Manifest next update: Sun 24 Aug 2025 11:02:19 +0000
Files and hashes: 1: BFaJClF3p4qT7dCc22lWmwjl7l0.roa (hash: 8kW6E4fmgwFFVui51mNwFwgDzJW114zoN23nienu6x8=)
2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: ENUBUCy6pLMpAFIdQCexqOt3DDBw/QNcBPb2UZdodA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:f7:3a:ad:0a:73:51:98:37:25:4c:85:6b:07:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e
Validity
Not Before: Aug 23 11:02:19 2025 GMT
Not After : Aug 24 11:02:19 2025 GMT
Subject: CN=32af29a51682b48dfdc6b4e8790c5f0c7f3a40e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:84:de:53:92:ff:f6:19:77:45:ea:de:db:8f:
0b:8c:15:b7:f6:bd:ab:97:16:13:f6:4c:2b:74:a9:
ac:10:d1:32:e3:67:1a:99:a1:07:26:2c:10:13:1d:
61:e3:65:f8:26:2a:11:30:4b:b1:e5:e6:50:e4:1a:
94:09:8c:fe:d4:92:25:25:d8:e5:ee:a0:cf:c6:bf:
9c:51:92:3a:ab:04:10:b8:da:63:4f:ce:fa:4a:80:
74:e9:d3:79:70:35:c3:51:ad:e8:f3:2a:c5:2b:04:
9a:3e:85:20:a2:a6:29:1d:6d:e6:fc:ce:d7:d4:78:
72:b7:e6:bc:cb:d1:e8:ff:a6:64:40:f4:f9:1b:c4:
b2:8c:a8:f8:16:8f:6c:01:ab:41:af:f9:f7:d7:1a:
33:17:5e:42:ed:dc:3d:4b:f7:b0:ae:2b:2e:cb:fc:
0d:15:83:0b:cb:e8:fb:7d:27:f8:41:7b:10:50:42:
cd:f8:40:26:3f:82:59:b8:a4:cc:aa:2d:ea:90:46:
f4:20:69:ff:24:53:60:36:a9:88:dc:16:98:45:cf:
fa:e9:17:f8:27:3b:ad:c3:cd:53:68:c0:11:22:39:
81:42:e8:02:2d:d7:6d:05:aa:78:98:e8:97:f8:a4:
ef:a4:b0:02:42:20:89:59:94:c7:17:9a:73:ad:14:
55:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:AF:29:A5:16:82:B4:8D:FD:C6:B4:E8:79:0C:5F:0C:7F:3A:40:E6
X509v3 Authority Key Identifier:
keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:44:25:92:12:81:0b:6d:d9:9a:2f:a5:2c:db:1d:18:4c:09:
cf:4c:c1:50:0c:f9:b1:ec:7b:fa:34:79:29:e1:3b:38:fe:e7:
e3:69:80:51:83:cf:dd:ca:b7:7c:95:e4:f0:28:15:2f:4c:79:
55:df:d5:00:42:96:d4:8c:47:2c:57:4c:5d:82:7f:4f:73:43:
dc:26:bd:00:36:09:e9:fc:63:40:05:de:4c:4e:dd:a3:12:17:
11:8b:28:3e:5b:75:be:7e:30:2d:19:42:b0:80:75:1f:68:bd:
9e:22:e6:0a:f6:1c:46:a9:fb:99:2e:17:ce:7f:12:f7:c6:9d:
9e:c2:c7:3a:81:e2:4d:02:b2:cb:91:a8:05:bf:8b:9e:9f:03:
b6:07:b0:40:2d:5b:b1:25:da:14:43:f1:4c:13:34:02:8f:5d:
7b:fe:a7:53:70:f4:ef:1d:59:f9:5a:99:81:e1:5a:a5:0d:a1:
d7:cd:12:6c:ff:46:db:fc:04:7e:2a:91:6c:a7:02:c8:52:a6:
97:6d:f3:0c:ec:fd:49:95:5d:a2:be:f6:de:ef:6b:1b:a1:d8:
8d:71:72:f5:18:bd:d7:1a:fe:fe:1e:84:13:e7:af:4b:8a:bd:
e3:ac:50:c9:31:b4:df:b5:c2:43:d1:fe:19:5f:3f:0f:8a:3e:
bb:77:1f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:11:02 2025 by rpki-client