Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: Jc6LtHpEn2ztezmxpcjo8rhjjJdZivkZgMPmDlF11QU=
Subject key identifier: 56:CD:42:EA:80:61:70:A5:4A:DD:85:CD:C6:23:01:79:9B:9C:08:3C
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 0199FFC8DB8EF051FC1002474F0C6A22AEA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 0847
Signing time: Mon 20 Oct 2025 04:02:57 +0000
Manifest this update: Mon 20 Oct 2025 04:02:57 +0000
Manifest next update: Tue 21 Oct 2025 04:02:57 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: 4K3LhqfYEPQpvhXWFGwTGkQQaIc4f7PqyP9r5/RpZWo=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:db:8e:f0:51:fc:10:02:47:4f:0c:6a:22:ae:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Oct 20 04:02:57 2025 GMT
Not After : Oct 21 04:02:57 2025 GMT
Subject: CN=56cd42ea806170a54add85cdc62301799b9c083c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:66:fc:7f:7f:b7:bd:90:6d:70:64:ea:55:06:
21:01:ce:a8:89:0f:91:5d:72:44:ee:ad:f5:3f:88:
d3:43:b3:9a:e8:4c:bc:84:0b:f5:34:53:79:2e:ad:
89:86:12:89:c2:31:d7:74:f6:86:3d:51:d9:2f:38:
06:f3:18:c1:bd:d3:37:10:09:82:93:82:b2:37:9d:
3f:a8:82:c7:44:68:28:7d:6b:aa:8e:70:70:25:ff:
58:cd:58:43:5b:39:97:ba:af:3b:a1:55:f4:79:e1:
61:7d:d6:e6:0d:f1:2b:86:17:f2:9f:f8:1b:27:a6:
09:56:16:dd:c0:1f:db:a1:1c:fa:02:6b:17:44:ad:
d6:e7:9f:d8:1e:40:55:9d:c9:11:03:3d:f7:57:33:
df:c0:64:8e:cd:d9:8c:8f:d0:c6:16:cc:fa:50:3e:
e1:75:d7:55:f8:be:58:64:f1:1c:21:c1:aa:45:c4:
87:24:6b:79:01:88:c6:47:d0:e7:e0:2c:2e:11:3c:
d3:14:cb:a7:b8:f7:62:de:e0:96:aa:05:cc:f3:16:
cb:5a:3b:22:2c:02:22:4e:8d:df:3b:f0:bc:2b:a8:
1e:51:07:2d:61:38:7c:19:ee:ab:3d:43:54:2b:1d:
98:87:18:18:74:eb:14:97:e4:6b:ae:ff:35:0d:4c:
a5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CD:42:EA:80:61:70:A5:4A:DD:85:CD:C6:23:01:79:9B:9C:08:3C
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:e5:ca:c6:81:8c:71:de:cc:cd:6e:38:cf:3d:6e:ed:0a:84:
04:69:0a:9f:2c:f4:39:fb:0d:92:3d:35:c0:16:91:d9:2d:d3:
be:ad:c4:a8:4a:88:c3:44:6a:d8:5b:7d:56:f8:4f:16:05:5c:
ff:75:46:38:7f:00:f6:f3:38:f1:8c:3a:16:ba:88:a4:99:c4:
47:62:b0:e6:4c:72:59:13:02:16:9c:b6:7d:6c:2e:0e:dc:5c:
ba:5b:d3:39:15:fa:0c:aa:3e:9b:56:ad:33:6d:79:22:12:aa:
a6:97:1a:52:ca:d1:b6:e8:22:cb:0c:24:d9:04:31:fb:ad:55:
4e:af:ab:99:18:35:b5:bf:ae:d0:1e:46:a5:e0:4f:b0:ea:d3:
50:36:a7:7d:54:79:49:c9:80:b7:df:15:6f:24:6c:1c:c5:b6:
5b:87:68:5d:40:6a:9c:68:ab:f4:b2:e7:41:84:b5:73:d1:8e:
1a:e3:d1:1c:23:c6:a2:91:dd:0d:98:ff:09:87:0f:ed:57:7c:
68:ba:46:82:48:4c:60:c5:43:02:0f:dd:ca:33:b3:53:bb:f7:
c0:95:ad:a3:dc:df:f2:64:da:4a:6a:67:0a:90:d9:88:77:e9:
4f:57:f5:b4:49:8a:b1:c7:0f:0a:3f:11:27:46:cb:15:47:83:
4d:90:d2:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/yNuO8FH8EAJHTwxqIq6iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2YTA1OTA0ZWM4MTc0NmEwYTY2ZDIwN2Y1ZDM2ZjhkOTc4
ODhhMGQwHhcNMjUxMDIwMDQwMjU3WhcNMjUxMDIxMDQwMjU3WjAzMTEwLwYDVQQD
Eyg1NmNkNDJlYTgwNjE3MGE1NGFkZDg1Y2RjNjIzMDE3OTliOWMwODNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWb8f3+3vZBtcGTqVQYhAc6oiQ+R
XXJE7q31P4jTQ7Oa6Ey8hAv1NFN5Lq2JhhKJwjHXdPaGPVHZLzgG8xjBvdM3EAmC
k4KyN50/qILHRGgofWuqjnBwJf9YzVhDWzmXuq87oVX0eeFhfdbmDfErhhfyn/gb
J6YJVhbdwB/boRz6AmsXRK3W55/YHkBVnckRAz33VzPfwGSOzdmMj9DGFsz6UD7h
dddV+L5YZPEcIcGqRcSHJGt5AYjGR9Dn4CwuETzTFMunuPdi3uCWqgXM8xbLWjsi
LAIiTo3fO/C8K6geUQctYTh8Ge6rPUNUKx2YhxgYdOsUl+Rrrv81DUylYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFbNQuqAYXClSt2FzcYjAXmbnAg8MB8GA1UdIwQY
MBaAFKagWQTsgXRqCmbSB/XTb42XiIoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zYjUxYzktYjM3Yi00NzY3LTg4ZDkt
NWRmNmE0NjMwMzViLzEvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8zYjUxYzktYjM3Yi00NzY3LTg4ZDktNWRmNmE0NjMwMzVi
LzEvcHFCWkJPeUJkR29LWnRJSDlkTnZqWmVJaWcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIOXKxoGM
cd7MzW44zz1u7QqEBGkKnyz0OfsNkj01wBaR2S3Tvq3EqEqIw0Rq2Ft9VvhPFgVc
/3VGOH8A9vM48Yw6FrqIpJnER2Kw5kxyWRMCFpy2fWwuDtxculvTORX6DKo+m1at
M215IhKqppcaUsrRtugiywwk2QQx+61VTq+rmRg1tb+u0B5GpeBPsOrTUDanfVR5
ScmAt98VbyRsHMW2W4doXUBqnGir9LLnQYS1c9GOGuPRHCPGopHdDZj/CYcP7Vd8
aLpGgkhMYMVDAg/dyjOzU7v3wJWto9zf8mTaSmpnCpDZiHfpT1f1tEmKsccPCj8R
J0bLFUeDTZDSdQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 12:51:36 2025 by rpki-client