Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: aHJ4Fno0q8kQQT+kDmWCZ1sm0Ro6buervyiWhPyA7z4=
Subject key identifier: 8D:9E:D1:C9:83:B4:76:F6:E5:61:C9:14:BF:60:20:A9:D0:C5:44:9F
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 019A006C13AA475A776484BCD4D982FB2EFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 037F
Signing time: Mon 20 Oct 2025 07:01:14 +0000
Manifest this update: Mon 20 Oct 2025 07:01:14 +0000
Manifest next update: Tue 21 Oct 2025 07:01:14 +0000
Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: MPflDtpbszjC/y+UzCtCEBAG5unccEGYCPftfz8ycIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:13:aa:47:5a:77:64:84:bc:d4:d9:82:fb:2e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Oct 20 07:01:14 2025 GMT
Not After : Oct 21 07:01:14 2025 GMT
Subject: CN=8d9ed1c983b476f6e561c914bf6020a9d0c5449f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ed:69:d0:59:07:8f:bf:32:bd:be:30:3d:35:
60:df:60:ef:e6:b8:76:cc:5b:1c:a2:05:49:3e:b9:
22:52:74:cc:a5:fe:a9:5a:e2:50:b8:eb:fc:e8:93:
f2:79:f6:8a:aa:b8:b5:dd:cc:4f:f3:0a:3a:02:6b:
34:64:ae:df:f6:50:70:92:96:ab:46:0d:d5:94:c0:
94:ea:7f:98:72:83:9d:df:80:bc:27:7b:8d:c3:76:
67:af:f8:fa:25:b3:db:83:81:3f:b0:1c:cc:9e:a7:
ed:12:6b:94:d8:d4:8c:19:60:59:df:6d:2c:33:0f:
dd:aa:29:c8:8a:93:91:48:4b:31:b4:7d:9a:de:c9:
77:67:53:c5:9a:31:9b:ec:1a:e0:02:fe:cb:e6:09:
d1:be:46:ca:f6:6e:36:ac:db:d7:d6:e5:2b:66:53:
f6:cc:ea:c3:c5:ff:76:9a:ed:20:fc:64:db:a9:de:
30:e0:2b:b3:ec:66:55:ae:73:5a:fb:45:78:0c:a4:
c7:4d:3f:c1:25:06:dc:0d:03:84:3f:66:7e:da:a2:
93:db:f2:11:8d:36:24:60:67:25:83:e8:81:5f:72:
92:22:5d:d9:2d:d4:28:29:af:e1:84:8e:70:20:8c:
18:a5:aa:f9:d1:65:e2:57:b8:f7:95:7a:34:1c:aa:
70:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:9E:D1:C9:83:B4:76:F6:E5:61:C9:14:BF:60:20:A9:D0:C5:44:9F
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:d7:39:ef:8f:40:26:45:ce:8c:73:50:b5:48:ba:af:86:21:
f7:22:70:e3:53:4a:8c:9a:66:9a:12:d3:35:83:3c:22:d1:29:
6a:ab:ad:d4:05:f4:04:a3:0f:0b:d5:2b:07:4c:7c:d2:2f:c2:
6c:e6:9e:79:d4:36:6c:7b:00:b6:ed:06:a8:47:54:3e:73:43:
3c:ce:08:19:49:f8:df:7a:aa:dd:f2:09:af:4e:d1:c4:88:2e:
af:27:33:a0:71:e5:f7:a9:61:1e:6a:a5:fd:60:e6:73:86:d5:
6c:fb:63:22:23:99:0c:da:ef:ca:08:85:b9:c9:ce:d9:65:49:
b3:2e:49:2b:a6:3f:06:fa:37:44:12:89:d6:c1:dd:b1:69:19:
44:c0:04:bf:a3:93:54:cc:60:8b:bb:a6:2e:5f:56:a4:7a:8e:
9e:8a:d6:ce:2f:dd:76:d6:54:0b:93:02:1c:51:92:37:4f:90:
91:4f:ab:db:98:53:47:35:1f:5e:c0:3e:5a:f2:c6:63:a6:e9:
73:c2:26:62:4a:89:93:d5:7a:18:a0:da:ab:db:cf:95:69:62:
a4:51:3b:bc:b4:7a:f7:b6:1a:83:61:88:84:32:f8:a7:41:58:
2a:dc:05:c6:de:7b:46:a6:69:71:b0:8d:1f:a2:58:36:4f:f6:
04:00:11:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:56:09 2025 by rpki-client