Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: P+yqLK/m+GJFW0hTcovWzj3G7l1z1oJ7tqkK486Qsnc=
Subject key identifier: 9E:98:1D:51:EE:33:62:E8:C7:56:58:E8:07:0B:9E:AF:37:4C:4F:05
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 0199FC58CED5C0CC8941F153352C727D8D9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 157B
Signing time: Sun 19 Oct 2025 12:01:42 +0000
Manifest this update: Sun 19 Oct 2025 12:01:42 +0000
Manifest next update: Mon 20 Oct 2025 12:01:42 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: VW4wHDliKVWSxctLDCI8LFYio3RwYOXNeg+rt80dac0=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:ce:d5:c0:cc:89:41:f1:53:35:2c:72:7d:8d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: Oct 19 12:01:42 2025 GMT
Not After : Oct 20 12:01:42 2025 GMT
Subject: CN=9e981d51ee3362e8c75658e8070b9eaf374c4f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5c:38:5e:8e:65:e0:45:9b:d1:7e:6d:9d:07:
7a:cd:bc:d4:47:0e:c7:0f:ff:04:54:69:1a:cf:c1:
6c:72:d3:4f:82:68:c8:00:27:50:08:a3:4d:d5:02:
4a:4b:0c:ff:6b:eb:a1:b0:d5:c6:bc:ef:df:f6:c4:
ad:bd:b3:41:9f:d5:06:e8:fc:f7:9b:d4:47:9b:ea:
eb:e2:15:0e:97:38:c6:29:9f:99:fb:e2:4e:46:f9:
e1:00:95:43:ea:bc:e2:01:63:f7:12:df:0e:23:0a:
6a:d4:88:5c:31:3b:b6:b9:38:1e:7b:7c:4d:54:af:
d9:d1:8e:83:76:33:72:5f:f3:8a:39:09:7f:42:f8:
b6:be:e5:47:18:93:bd:17:96:eb:53:61:6c:1a:15:
f4:43:e0:4c:c6:b1:46:76:5e:27:18:e2:fb:35:3d:
16:df:62:af:cf:be:5f:3c:40:4d:d2:37:0b:39:a5:
55:fe:19:ac:c2:58:32:fe:29:1d:d9:92:60:49:f8:
c3:da:78:c8:87:62:3a:d4:33:ab:53:bc:e1:97:31:
aa:94:e3:20:ab:60:30:39:1b:ad:80:ae:20:41:0f:
85:6c:00:42:d8:ff:79:8e:07:d3:83:13:3e:ea:51:
ea:ad:2b:9f:83:c2:a3:34:3e:ae:34:a1:39:f1:85:
65:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:98:1D:51:EE:33:62:E8:C7:56:58:E8:07:0B:9E:AF:37:4C:4F:05
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:29:98:c5:8a:37:ca:22:68:5e:49:50:3e:a6:37:23:24:d6:
41:c8:9b:19:50:54:7d:8d:53:74:23:8d:07:ca:93:31:8d:72:
cc:db:0e:3f:2c:e7:0b:85:fa:0d:77:6a:ad:54:ca:00:8b:6c:
d5:67:52:02:bd:e7:ae:64:e1:fc:2f:a6:3b:77:c3:28:b0:08:
b3:6b:fc:c4:f0:64:f6:65:2b:16:a1:05:f0:c3:69:64:17:7d:
b9:46:b9:9e:9d:38:24:1d:9e:97:bf:54:22:eb:7d:9e:7b:26:
5e:c3:c1:c5:22:3c:2c:e6:cd:29:0f:1d:ed:fb:40:61:42:89:
d3:65:db:b0:3a:64:7e:48:8f:7d:2a:b9:19:a8:09:c3:5f:49:
b6:6b:6a:d1:71:ff:69:56:9b:4c:d7:b4:63:6d:90:ff:ca:aa:
ad:c3:ac:84:6e:b4:87:30:6f:a4:34:ac:dd:fc:f2:eb:53:12:
0c:28:7a:40:6a:48:58:fc:ac:48:e9:f1:1a:d8:88:ed:0d:2b:
f1:32:6b:7c:99:37:bf:25:0e:de:c2:8b:40:5e:22:e7:61:b5:
8c:22:c9:70:73:50:aa:67:4d:3e:5c:f0:e6:17:65:62:e2:32:
50:16:40:53:ca:9a:0d:9b:b8:fd:90:4c:25:46:54:32:ac:6a:
37:d2:0c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:13:32 2025 by rpki-client