Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.mft
File: PI0Z2SQBkcNql0ti35PCIUNtm90.mft (raw, json)
Hash identifier: vDO5ZRGM9NoSBaBMHKAURujAAD2uS3EtaswyIPjEFE0=
Subject key identifier: F1:79:00:34:06:65:C9:78:FE:6E:F1:C5:3B:58:88:13:C3:04:3E:A9
Authority key identifier: 3C:8D:19:D9:24:01:91:C3:6A:97:4B:62:DF:93:C2:21:43:6D:9B:DD
Certificate issuer: /CN=3c8d19d9240191c36a974b62df93c221436d9bdd
Certificate serial: 0199FFC7CDEA6A95059FF3E600F4B73D61AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI0Z2SQBkcNql0ti35PCIUNtm90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.mft
Manifest number: 0B1E
Signing time: Mon 20 Oct 2025 04:01:48 +0000
Manifest this update: Mon 20 Oct 2025 04:01:48 +0000
Manifest next update: Tue 21 Oct 2025 04:01:48 +0000
Files and hashes: 1: PI0Z2SQBkcNql0ti35PCIUNtm90.crl (hash: 9EO6KFtsAFAbmVu3EBhX08Xf90yrMReG8e5xmxX2mTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.mft
rsync://rpki.ripe.net/repository/DEFAULT/PI0Z2SQBkcNql0ti35PCIUNtm90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:cd:ea:6a:95:05:9f:f3:e6:00:f4:b7:3d:61:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8d19d9240191c36a974b62df93c221436d9bdd
Validity
Not Before: Oct 20 04:01:48 2025 GMT
Not After : Oct 21 04:01:48 2025 GMT
Subject: CN=f17900340665c978fe6ef1c53b588813c3043ea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ea:98:77:4f:72:e8:bb:03:5c:97:ca:1c:67:
14:00:26:6a:f8:74:b3:a9:2f:0d:1b:e7:9c:89:1e:
7d:45:78:fc:40:62:f2:88:ea:c2:d5:c4:93:0c:c0:
4f:45:f9:d7:87:10:c3:55:43:cb:1d:58:04:c0:b6:
56:ef:91:e4:df:7a:36:7c:3b:61:ea:55:77:c3:5b:
61:4b:c4:e0:3e:49:42:b4:12:be:73:c1:29:ef:42:
6c:44:03:dc:35:01:77:3f:2d:01:64:07:e1:e5:4d:
59:bc:f3:2a:c2:7b:f2:6d:8f:0e:fa:ee:2a:7a:fb:
a4:d3:f9:4c:c5:b1:de:ea:0b:51:26:4e:a5:e2:62:
48:3b:05:8c:e1:62:12:48:57:9d:91:19:15:f6:71:
8f:9c:69:ee:75:ae:c2:fe:98:b7:6a:a0:8b:71:de:
cb:24:33:ce:4a:e0:25:32:a7:31:af:26:55:56:3a:
10:47:e9:fd:72:4c:0e:ed:95:0e:4d:4e:18:ec:85:
5f:92:3b:e2:bc:24:8b:57:18:93:d1:c6:2c:09:27:
52:68:c8:bb:2a:90:3c:ce:a2:ab:5d:53:26:4e:78:
cc:e2:af:a6:b6:a9:25:7c:53:8a:44:63:cb:ec:b9:
e5:29:07:5a:cc:0c:90:14:56:d0:b6:f3:d0:0a:30:
0f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:79:00:34:06:65:C9:78:FE:6E:F1:C5:3B:58:88:13:C3:04:3E:A9
X509v3 Authority Key Identifier:
keyid:3C:8D:19:D9:24:01:91:C3:6A:97:4B:62:DF:93:C2:21:43:6D:9B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI0Z2SQBkcNql0ti35PCIUNtm90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/800e39-f9b1-4f8d-9c10-10357b87cb23/1/PI0Z2SQBkcNql0ti35PCIUNtm90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ee:d7:e0:95:9a:5e:f3:74:ea:4f:39:83:79:fd:c6:52:8f:
48:30:f7:1d:38:f5:b4:4d:e8:5a:73:11:1b:b9:2d:e3:d1:93:
60:d4:08:ef:e9:8d:69:c3:99:61:e6:7a:d5:a7:7d:4a:15:b4:
dc:d1:e6:f4:56:3e:6d:20:65:db:63:8c:7c:aa:06:f8:f4:1e:
5c:a4:dc:ee:f1:70:c5:13:dd:d6:93:87:d0:31:5f:91:04:02:
ba:32:48:40:c8:9c:b3:2d:5a:14:2d:06:93:e4:1c:68:cb:60:
97:1f:2f:d1:78:0c:9a:ea:cb:d7:5d:82:51:3b:ba:80:f6:65:
96:84:6d:d4:82:cc:1c:6d:59:06:c0:12:1e:7a:ba:91:b9:62:
15:eb:38:cc:39:43:cd:a8:f0:b4:4f:54:cf:6d:0c:8e:c7:45:
f9:28:51:7b:92:68:0c:d8:4b:25:4d:5f:cc:56:35:63:8a:40:
64:63:1f:af:d1:e7:82:14:69:1a:ba:6a:eb:f2:21:ed:a9:7e:
be:ea:10:5d:f3:3d:72:39:4a:f7:9b:cc:a8:9c:d6:cd:a5:16:
fa:4b:cd:df:e6:fc:f8:db:09:37:09:eb:1b:10:9d:67:6e:24:
26:ef:a2:c4:88:26:2d:f6:62:ff:74:e0:20:c7:ea:11:b4:3c:
d0:55:1d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:27:04 2025 by rpki-client