Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: sPE9T1u2zgNtkxiVBKeH+J6mA5cPtSFNMyuulwTKRZQ=
Subject key identifier: 81:4F:00:23:5F:92:55:73:D0:54:14:01:8A:9A:E2:EE:96:A7:57:63
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 0198D473FBD271E51D76EC51EF50010D51FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 104D
Signing time: Sat 23 Aug 2025 01:03:47 +0000
Manifest this update: Sat 23 Aug 2025 01:03:47 +0000
Manifest next update: Sun 24 Aug 2025 01:03:47 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: 2olyXPL1uI3ZH+yh5NJ4M+GqYwjxL2XCBP1gHluZIOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:fb:d2:71:e5:1d:76:ec:51:ef:50:01:0d:51:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Aug 23 01:03:47 2025 GMT
Not After : Aug 24 01:03:47 2025 GMT
Subject: CN=814f00235f925573d05414018a9ae2ee96a75763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0e:8e:ee:fd:e2:9c:a5:35:d0:dc:d5:ab:b2:
b9:59:78:a6:82:e2:95:71:ab:b3:a5:7b:a9:a0:d4:
3a:9d:3b:0c:72:a1:9f:16:5b:bb:09:c3:5c:dd:12:
58:6f:ef:32:84:23:3c:d8:31:ba:fe:15:69:1a:62:
16:61:9e:86:81:f2:27:ae:be:7e:d2:b5:cb:00:8d:
bf:4f:73:e2:d1:bd:45:d6:ec:7e:92:1f:21:78:7a:
ec:6e:47:cb:87:00:5d:a6:62:51:ef:63:3d:f7:5e:
d7:08:15:08:27:5c:96:22:47:66:ca:fa:6d:61:78:
3f:86:d8:db:8c:60:f9:29:53:f6:ee:10:da:e0:4f:
59:37:e0:69:05:c2:a8:1f:e9:2b:5b:1f:49:fb:50:
0f:ce:12:55:1d:a3:80:5e:8f:ec:40:94:6e:6d:96:
b7:92:67:c0:1c:68:a1:1f:b1:2b:2c:74:72:b1:e7:
56:b8:d3:91:7c:9f:20:fc:85:1b:a5:29:86:39:91:
f3:57:e9:18:36:f2:25:2c:d4:bf:31:59:5f:14:36:
d1:9a:8f:39:4d:9f:44:6c:77:33:db:7b:97:88:63:
92:f7:96:19:4c:bc:8d:20:5c:55:dd:9e:8b:6c:ad:
df:a6:79:d9:46:e8:3c:29:57:a8:c7:5d:24:16:80:
e1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4F:00:23:5F:92:55:73:D0:54:14:01:8A:9A:E2:EE:96:A7:57:63
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:38:66:04:e5:e0:1e:e9:54:1c:8c:32:68:12:5d:b8:77:8c:
db:bf:5a:ad:25:49:a0:fd:98:e0:40:72:23:5c:2a:bf:b3:b6:
a5:01:ee:c5:4e:21:db:80:8d:6d:4b:1e:4c:86:4b:02:65:02:
17:e0:19:04:21:a6:b0:03:ca:1f:f0:e8:3f:7b:ce:b2:6b:91:
12:25:ea:27:a2:3d:d3:e7:11:c9:88:5c:79:47:54:4b:a2:73:
58:e3:42:8f:b7:e0:3e:f0:aa:45:04:85:87:dc:9c:89:d3:4b:
21:e2:32:b7:68:59:5c:c7:5d:4c:ee:a4:72:eb:47:6d:95:16:
7f:ed:d8:7c:28:85:e4:0b:9b:9d:1b:cb:6d:89:02:f6:10:1f:
5f:f3:3e:73:86:17:2b:48:97:81:fe:33:00:6b:6b:1f:86:3c:
1e:99:35:e7:21:f0:22:32:f3:9c:07:62:9a:33:80:c6:48:63:
d3:7b:15:72:f7:7d:e7:52:98:63:27:67:be:76:06:e2:6c:f6:
20:2d:a0:e6:a5:11:44:68:6a:ff:b2:97:1d:85:09:99:01:71:
fe:95:f3:04:e0:7a:d8:13:59:de:cc:5f:25:9e:55:79:84:fa:
6b:45:90:15:24:e8:12:24:42:de:73:f3:2d:36:3a:ee:cf:72:
bf:80:82:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:11 2025 by rpki-client