Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
File: pxrCOk0-z8vKRROJaxeuToloKng.mft (raw, json)
Hash identifier: 8e668iG5utk3gmtfbuUEjC+rZsGSgbVjUxiONy12dMI=
Subject key identifier: E8:9D:67:F8:48:1E:F5:56:10:7D:A5:84:55:7F:7A:BA:2A:9F:40:24
Authority key identifier: A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
Certificate issuer: /CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Certificate serial: 0198D62981C08C353CE20806E059DE31A4E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
Manifest number: 1B
Signing time: Sat 23 Aug 2025 09:01:40 +0000
Manifest this update: Sat 23 Aug 2025 09:01:40 +0000
Manifest next update: Sun 24 Aug 2025 09:01:40 +0000
Files and hashes: 1: MQtI7yBtmsDk4DKqPSGfWKdKyAo.roa (hash: +iNt+U/ElAwJwno5xdY5orBbnGETU96olMUGY0otCFs=)
2: pxrCOk0-z8vKRROJaxeuToloKng.crl (hash: jSgD3fTzLZV8LH4lAsgI3aLo3rYzkMKxFJP8jGgo2x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:81:c0:8c:35:3c:e2:08:06:e0:59:de:31:a4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Validity
Not Before: Aug 23 09:01:40 2025 GMT
Not After : Aug 24 09:01:40 2025 GMT
Subject: CN=e89d67f8481ef556107da584557f7aba2a9f4024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c7:1e:e3:44:64:aa:37:ea:91:d9:0f:1a:fc:
0b:3e:c3:6c:1d:03:0f:c3:fe:25:c3:5e:92:ca:f4:
a1:38:cb:e6:b3:f7:9a:e1:49:55:4c:94:52:0a:3b:
a7:b5:40:de:52:78:e5:be:c0:05:68:4b:96:d9:0e:
01:1b:0f:d3:48:6e:2e:70:c0:c5:1a:c8:a8:f4:c5:
81:76:7e:20:31:0c:92:6d:f9:07:85:20:d1:c0:66:
3b:52:b4:d5:78:26:1c:53:d2:6f:32:2f:c3:4f:9a:
b5:28:cc:44:0c:75:f8:bf:ab:d9:e5:76:fc:77:8a:
2b:f0:e2:d8:91:f3:26:f2:19:2c:0d:4f:18:17:fa:
8d:ad:4f:27:5d:ad:84:a0:b7:63:29:36:cd:2e:ed:
8a:a4:6a:1e:e4:cb:00:7d:d6:57:65:10:fc:85:06:
06:0d:52:88:54:b2:58:bb:22:a0:64:58:a7:ad:bf:
72:8a:aa:e4:3a:71:44:98:4a:ae:b6:f9:f5:0d:04:
3b:d4:00:ca:a7:ab:47:2d:87:c6:62:84:ef:7d:46:
6f:f2:b4:e9:24:ef:ca:df:a8:f7:7e:55:fd:ca:28:
2a:3c:bc:81:fe:d9:db:5a:b1:40:58:5b:b1:57:af:
ce:cf:ce:6b:fb:10:40:45:b3:11:66:74:79:87:3c:
11:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9D:67:F8:48:1E:F5:56:10:7D:A5:84:55:7F:7A:BA:2A:9F:40:24
X509v3 Authority Key Identifier:
keyid:A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:dc:84:f9:7b:44:21:76:3b:2b:7e:26:a2:56:de:a0:0f:f2:
c3:41:c8:4c:1b:fa:0c:6f:06:b0:07:62:54:b4:ef:3e:be:7f:
85:32:96:83:bc:28:1a:c7:3d:e7:c0:ca:1f:e3:b8:0d:05:c8:
45:49:8c:14:cd:59:24:43:71:49:75:ef:5f:ef:03:dc:46:a9:
a7:61:c2:33:12:1f:3f:3f:83:36:b9:8d:57:1d:e5:2a:3f:95:
57:84:ed:e0:5b:16:96:a2:7d:99:4f:d7:bf:5e:4c:92:15:bd:
2f:ff:91:90:b7:62:0d:f4:9c:c4:c9:c0:e7:d2:8f:b9:14:c1:
74:bc:58:7f:87:10:8d:3d:37:2e:67:0d:96:df:9e:e4:d7:5c:
65:0c:36:9b:a0:72:42:c8:1e:90:2a:6e:0c:e2:62:3d:2a:d8:
38:19:8f:aa:53:94:98:b7:79:24:be:6f:47:e7:aa:fd:60:66:
08:80:7a:0d:f6:65:59:cf:1f:cd:19:4a:8a:d5:fd:fd:28:9d:
82:fe:1d:c8:37:e4:17:91:55:ee:0d:a0:50:0d:d6:fe:30:e2:
90:34:da:c6:e6:08:c0:13:ca:74:3f:21:12:40:6a:2f:41:50:
9a:cb:26:89:d7:85:8f:54:8e:07:e6:c4:32:cd:19:bd:90:f5:
3e:85:79:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:52:59 2025 by rpki-client