Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
File: pxrCOk0-z8vKRROJaxeuToloKng.mft (raw, json)
Hash identifier: BMh104ARmpOZ5gczJBpxhAuYFzWqDbFosYQ0hZKh0jk=
Subject key identifier: 3D:94:35:3E:82:4C:C3:88:D1:3F:E7:D0:BE:96:62:47:5C:30:77:B7
Authority key identifier: A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
Certificate issuer: /CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Certificate serial: 019A0147C26EA66C91DF4BA45AD8A831C5FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
Manifest number: B6
Signing time: Mon 20 Oct 2025 11:01:11 +0000
Manifest this update: Mon 20 Oct 2025 11:01:11 +0000
Manifest next update: Tue 21 Oct 2025 11:01:11 +0000
Files and hashes: 1: MQtI7yBtmsDk4DKqPSGfWKdKyAo.roa (hash: +iNt+U/ElAwJwno5xdY5orBbnGETU96olMUGY0otCFs=)
2: pxrCOk0-z8vKRROJaxeuToloKng.crl (hash: iCJig5UD6nLUphUL6Ta61JfKh5r/94CbR8W4bsvsMNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:47:c2:6e:a6:6c:91:df:4b:a4:5a:d8:a8:31:c5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Validity
Not Before: Oct 20 11:01:11 2025 GMT
Not After : Oct 21 11:01:11 2025 GMT
Subject: CN=3d94353e824cc388d13fe7d0be9662475c3077b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:57:27:d4:ee:07:29:ba:42:2b:bb:ca:c6:79:
a7:15:97:64:d3:33:af:4a:ae:0d:4b:00:5b:8a:4e:
56:19:1a:09:b5:a0:82:d0:66:42:aa:d4:f3:e0:c8:
b6:2e:25:c6:25:48:65:9e:37:49:af:25:6f:d5:ea:
6d:97:db:76:7f:ea:f3:eb:73:a0:fe:36:50:cf:23:
4f:d4:36:c1:ba:cb:e7:f0:ec:da:84:40:6e:d2:8c:
51:0b:03:b6:9e:be:07:20:16:b5:62:71:cd:3e:9d:
41:d8:b6:c1:ac:4a:f1:d7:32:81:ba:8b:92:45:01:
d6:2e:27:55:2c:04:52:34:19:78:5b:9d:d1:e4:cd:
ba:90:a7:c0:68:4a:26:25:3b:7c:43:d8:a6:c2:65:
24:1a:59:4b:43:e6:80:22:52:4e:cb:c4:57:0a:4b:
d9:01:e5:16:11:8c:ac:00:e7:80:3f:d5:10:5e:52:
7d:00:62:bf:e1:a0:da:b0:63:d3:df:99:57:6a:95:
b1:fe:15:f6:9d:24:01:8b:9a:bf:99:89:90:ca:2e:
61:4a:ff:be:2e:fb:55:05:59:e5:1b:3d:6e:00:08:
89:02:5d:d9:db:7c:7b:2d:48:38:8a:93:f4:a9:b0:
bd:07:5b:48:0c:a4:4e:3f:97:2a:dd:46:71:78:fc:
c3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:94:35:3E:82:4C:C3:88:D1:3F:E7:D0:BE:96:62:47:5C:30:77:B7
X509v3 Authority Key Identifier:
keyid:A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:05:88:fd:5c:18:6d:3a:a2:f6:c3:b6:81:2d:46:68:c5:c9:
e5:a8:89:29:1e:9b:11:08:00:9b:30:7b:b8:d0:79:2f:6e:b4:
a6:fd:4e:0b:bc:4c:19:30:55:0b:16:0d:15:23:53:d5:57:8e:
a8:43:3e:0f:ea:ca:ef:a6:3a:4b:b4:a2:f8:1f:43:03:db:b7:
15:ba:8e:df:ff:bd:72:2e:21:74:32:ec:1f:8a:7d:c9:54:85:
c3:24:80:cd:53:e6:3f:61:74:51:3c:a1:21:62:ec:e4:0f:8b:
c3:ff:cf:34:6c:e3:9e:64:9a:9d:c8:1e:db:1f:b0:23:49:e0:
64:15:ba:07:5c:82:9f:84:4f:32:ac:0b:dc:30:78:65:3f:24:
2c:d5:78:19:0c:a9:9d:e1:13:60:2d:00:0f:50:e3:48:63:e4:
5d:ba:ce:cc:c5:9a:33:10:fc:c9:c3:29:80:2d:c1:20:2b:6c:
89:cc:55:6c:40:66:c0:39:57:df:f1:54:0b:da:8a:fa:ad:84:
ac:cf:b8:b3:d2:55:d7:eb:f6:bb:be:80:7f:f1:8b:96:38:f9:
5e:34:27:e7:d1:98:d4:61:7c:33:ab:b5:46:20:fb:10:70:05:
e8:7d:f6:41:8a:cf:a8:f2:ed:8e:7c:c2:2b:ff:ae:af:85:5d:
e2:b8:78:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:39:56 2025 by rpki-client