Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: jFPG8yCq8HiKerSGa1Fhv5gadCicxgFwjTbe6wKrmC4=
Subject key identifier: BE:61:B1:14:B7:0E:22:D6:E2:C7:B0:AF:E9:B4:A1:3C:69:AB:0C:4C
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 0198D65FE7F425DD354ACD860BDC63510153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 07AD
Signing time: Sat 23 Aug 2025 10:01:06 +0000
Manifest this update: Sat 23 Aug 2025 10:01:06 +0000
Manifest next update: Sun 24 Aug 2025 10:01:06 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: 468rz4mqqYHgFu9nuDJAC3iWWkpomkIUwuxhbjSFOzo=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:e7:f4:25:dd:35:4a:cd:86:0b:dc:63:51:01:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Aug 23 10:01:06 2025 GMT
Not After : Aug 24 10:01:06 2025 GMT
Subject: CN=be61b114b70e22d6e2c7b0afe9b4a13c69ab0c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:39:9a:6b:c7:4d:b4:63:a6:34:19:15:8c:65:
3d:a6:2e:7c:b6:7f:45:0d:34:27:65:e5:f3:6b:8b:
17:78:bf:70:a2:3a:e7:eb:0e:92:d7:b5:9c:4f:b5:
44:e6:37:70:2b:bb:95:fa:90:02:a9:ea:0d:b4:6e:
c2:9c:63:3f:c3:90:f1:fd:fa:dd:42:4f:bc:79:4d:
f0:49:8f:80:cb:4e:44:13:93:2f:29:73:5f:0d:dd:
f2:56:f6:3e:b3:33:32:f6:07:33:25:a0:af:06:5e:
45:d9:2a:db:0a:21:83:ce:4c:7d:7b:1a:06:34:14:
e2:37:01:a9:96:e2:b7:6c:79:33:45:58:0e:64:7f:
19:67:63:69:68:71:50:44:2f:91:33:b6:5c:2c:71:
6f:e8:bb:11:6d:f0:aa:67:c6:4b:9d:e7:da:ae:d3:
20:4f:b8:9f:01:98:f2:16:b0:df:c1:00:7a:e1:10:
ee:34:b8:14:10:ac:cd:95:9e:db:be:33:d4:98:00:
17:48:1f:22:dc:0f:92:43:b6:7a:f4:f7:2b:29:04:
9c:dc:cb:ba:49:d4:34:7c:2e:11:d3:02:f4:8d:e2:
6d:50:a5:7a:e2:e9:be:ba:ab:16:9d:64:30:79:1a:
6d:46:2d:62:1c:c4:52:47:e0:92:95:41:31:73:82:
d3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:61:B1:14:B7:0E:22:D6:E2:C7:B0:AF:E9:B4:A1:3C:69:AB:0C:4C
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:e4:67:7b:1c:0c:bb:54:24:fa:e5:0f:58:16:0e:27:b6:2d:
77:43:47:24:10:cc:9c:d6:73:62:ab:83:95:dc:0c:9a:b6:5d:
16:51:63:59:e1:11:f4:95:b2:27:c9:cb:c1:eb:29:da:ee:a1:
e3:0e:02:a0:34:54:f9:86:6b:2c:40:bb:f9:fd:9c:ef:22:03:
c8:fc:eb:b4:8a:98:0f:20:5f:7f:60:05:c4:0c:15:38:da:ba:
42:7a:fa:e1:98:49:40:c7:4b:f5:51:68:e9:fd:9b:ea:61:f1:
20:a2:33:da:b3:ad:27:f7:af:2a:74:3c:c4:89:7e:3a:0f:81:
7b:86:09:08:65:5c:63:98:7f:71:37:3b:7f:c0:90:d5:00:7e:
52:e7:4c:51:70:00:32:76:a6:b3:1f:ca:1f:83:f9:c5:69:2b:
3f:b3:e6:30:c3:c5:69:49:90:13:75:f2:32:d8:6e:b6:97:1a:
fa:cd:28:44:75:2f:a1:fc:6d:b0:4d:6b:8c:68:d3:a6:0f:52:
a7:43:40:ca:e1:aa:61:9e:2c:52:e2:5b:f1:43:18:b4:54:c7:
5c:e4:b6:26:4e:77:8d:58:89:6a:c0:53:34:05:9e:cc:b8:ad:
7a:0c:49:bc:77:d5:eb:c2:a6:64:c3:58:b7:b6:f2:62:68:85:
f7:d6:d9:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:28:44 2025 by rpki-client