Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json)
Hash identifier: 9dVzqLnkQCSxKpM7kx5pMJT4psrrpichKsBIs9ASb/4=
Subject key identifier: 32:82:80:9F:29:CA:A8:47:14:B4:75:84:2A:04:6D:C5:94:25:20:47
Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Certificate serial: 0199FC2175364E81550467AFB2F021E0B3E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
Manifest number: 045D
Signing time: Sun 19 Oct 2025 11:01:14 +0000
Manifest this update: Sun 19 Oct 2025 11:01:14 +0000
Manifest next update: Mon 20 Oct 2025 11:01:14 +0000
Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: v4XxzWlNNL5cpae31oBHj3OaxdFAITlMSY7uTu5g63w=)
2: eBrn60Df7uG_ub_L-IV105lzs58.roa (hash: O8+G2XvuPwR1yEXnK+zmEZeJLzoyxFForxI59j5WNAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:75:36:4e:81:55:04:67:af:b2:f0:21:e0:b3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Validity
Not Before: Oct 19 11:01:14 2025 GMT
Not After : Oct 20 11:01:14 2025 GMT
Subject: CN=3282809f29caa84714b475842a046dc594252047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ac:6e:48:75:32:0d:79:74:2b:c5:19:d7:f2:
d5:08:6c:f3:15:5f:c7:74:0e:e0:ba:93:b5:e1:6a:
1e:e0:76:3e:26:59:30:0b:47:77:c8:0a:20:78:de:
4a:06:ed:ed:e8:29:0b:4e:dc:13:f2:47:a8:5e:fc:
0c:29:8f:7d:16:29:73:88:f6:92:44:32:a5:d1:63:
15:51:08:c7:39:e5:69:8e:82:6e:26:18:de:e6:50:
86:06:d0:78:0a:8c:53:19:5d:ce:79:ac:4d:91:6b:
7b:ff:de:72:45:3c:ae:a2:be:b4:12:ef:68:fb:df:
5f:43:f7:9a:5e:a4:fd:a6:5e:c5:b9:74:c1:a9:2d:
7d:1c:4c:25:34:e2:6c:f0:93:56:c8:fd:27:6e:46:
b4:a6:82:c0:ac:e4:f7:17:f7:e1:3e:3b:c9:00:ab:
21:e8:db:99:8a:6e:30:ad:6a:e5:2f:c2:9e:d6:0c:
c3:61:61:20:1a:16:ea:2a:9f:1a:27:3e:5d:29:ee:
43:05:53:e5:3a:63:7b:b5:0c:a0:4a:5d:21:d3:7c:
41:18:cf:86:cd:ca:62:67:7f:3f:4c:71:9e:c2:37:
10:b9:0f:4e:4b:1a:2a:de:b3:47:bf:a4:f4:21:0e:
5f:b0:e6:e8:a6:d7:59:81:ff:9c:29:1c:0e:0a:c1:
3a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:82:80:9F:29:CA:A8:47:14:B4:75:84:2A:04:6D:C5:94:25:20:47
X509v3 Authority Key Identifier:
keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:63:5e:4c:5c:97:63:d6:72:eb:8e:3b:30:ee:6c:b0:81:f3:
d8:2d:2b:d7:18:ed:26:81:a9:0b:92:d5:4e:1d:9c:90:6d:19:
10:2c:df:ca:ee:f3:aa:8a:1f:f0:73:96:65:6b:ec:f3:74:13:
d7:e7:5b:de:22:5c:5e:c4:45:66:f5:78:a7:69:bf:fd:d2:80:
e7:48:17:88:c2:70:96:36:af:22:c4:11:54:60:53:2d:83:8e:
15:43:40:9b:d9:21:f5:b9:40:39:9b:6c:5c:8e:b7:f0:55:4c:
bb:4c:6d:79:1f:47:28:06:d8:b3:fb:a5:cf:2d:75:29:e2:f7:
45:67:20:3e:a3:91:99:e0:aa:24:d2:d3:e1:c8:49:db:d8:64:
72:44:25:a5:13:c3:3d:5b:03:9e:59:c0:6e:82:65:27:35:e5:
6f:8c:43:97:f2:48:34:18:ee:d6:81:f5:b3:56:6a:e1:1c:4d:
f9:cc:ca:84:3f:32:68:ce:ec:2e:f7:98:4a:22:5b:a0:36:e7:
4e:e1:97:e9:f2:24:a8:47:ae:94:7b:10:a4:5e:72:b4:e6:69:
25:f1:57:69:ee:66:7e:b3:2f:8c:bf:d3:7b:85:55:a2:3c:b4:
78:52:69:c3:cb:50:9a:80:d8:b4:2a:92:dc:c4:5a:51:43:a7:
bf:0a:ef:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:39:27 2025 by rpki-client