Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: k0+kK40rUqNaqOoLdK5HbtHB2DwoQDxQ9pRHCGh2610=
Subject key identifier: C0:F4:6F:A1:A2:F3:FC:B5:48:CE:26:1B:9F:51:BA:08:3F:BB:C5:62
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 0199FBEC0E1DDCE5B05BCBA7D59C9EEC3982
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 10E6
Signing time: Sun 19 Oct 2025 10:02:55 +0000
Manifest this update: Sun 19 Oct 2025 10:02:55 +0000
Manifest next update: Mon 20 Oct 2025 10:02:55 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: LHXVArUf8yL5V1rEJ5Fi12R6yEpsqbPi5kP+8K0Ym6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:0e:1d:dc:e5:b0:5b:cb:a7:d5:9c:9e:ec:39:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Oct 19 10:02:55 2025 GMT
Not After : Oct 20 10:02:55 2025 GMT
Subject: CN=c0f46fa1a2f3fcb548ce261b9f51ba083fbbc562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cc:4c:ba:0b:61:f3:ce:f5:6c:66:84:34:56:
30:df:fe:ba:95:8b:e1:47:fe:39:2e:af:e2:0d:0a:
c4:54:4c:dd:50:b9:85:46:31:bb:1d:a0:a7:8b:11:
7c:c5:5d:dd:93:c5:9f:63:8e:46:aa:dd:a3:40:ea:
fe:c4:20:1c:97:07:e9:38:81:b7:8b:2f:48:dd:d9:
c4:c1:cc:cb:a9:44:83:4f:5a:63:58:52:a8:82:40:
6e:59:1e:de:21:21:c7:77:26:14:5d:64:33:12:33:
bc:ef:24:00:37:6c:97:3c:26:5d:c8:eb:b5:5e:5b:
c0:a7:8e:ca:49:5b:c9:0e:b7:f8:ab:f0:d5:63:3f:
6a:d2:7a:60:43:5b:cc:f9:fc:74:e0:5c:90:bc:42:
83:04:5c:3b:52:4f:92:1e:0b:db:2d:bb:4a:e0:0b:
a4:d6:fb:69:19:33:63:05:84:a3:8f:69:74:8c:44:
a1:1f:84:61:21:8d:fa:14:87:9f:50:fa:8f:12:dd:
9e:59:47:ae:c0:6a:1d:5e:9c:4a:1e:18:30:1a:1d:
72:68:e3:ec:27:f7:d5:9c:5e:33:4d:89:18:53:f8:
0c:6a:d9:db:22:3a:48:fc:4b:57:0a:68:42:b2:12:
4b:57:e6:14:03:81:57:2f:12:8e:18:f0:c0:dc:ed:
e2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F4:6F:A1:A2:F3:FC:B5:48:CE:26:1B:9F:51:BA:08:3F:BB:C5:62
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:42:c8:de:cc:24:c8:8a:9b:1e:23:e5:85:13:f5:54:fc:42:
84:9f:b0:a3:cb:68:d5:e7:41:db:85:9c:6e:f3:12:69:27:99:
3e:c2:ce:a1:df:dc:e7:0f:8a:b1:73:f6:80:29:8c:2f:6d:5b:
94:50:88:35:3c:14:94:d2:8d:a3:02:21:9a:9c:6c:c4:ad:84:
d3:19:5e:c7:d7:bd:84:cd:13:3a:1f:21:ff:87:c8:da:9d:0c:
c8:ca:b8:61:d6:39:f6:c5:c9:7d:d8:5e:2e:89:e0:f2:c5:fa:
f6:88:6f:44:e7:27:63:65:4c:1c:fe:12:db:cf:80:3b:d6:09:
b8:08:57:59:00:4b:2c:d5:7c:b2:4e:c0:7b:dc:82:cf:55:ee:
14:61:28:9c:a5:26:93:e7:a3:4b:3e:89:25:7b:88:6b:47:7a:
40:b6:94:d9:ab:38:88:59:ba:66:f1:1a:6b:52:9b:8d:0a:46:
a2:44:fb:9a:db:ec:9a:21:0f:1c:bb:b3:da:c5:34:54:8f:ff:
89:8f:16:80:8a:1a:65:be:b1:e4:50:2f:71:ad:41:bd:b3:b2:
18:f2:d2:86:eb:b9:4f:f8:bf:c1:da:65:65:0f:57:68:8e:a4:
9a:db:be:70:3d:cc:1a:a1:31:af:72:75:d1:29:34:88:a2:6c:
da:e1:2c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:40 2025 by rpki-client