Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: kVkjBnNfU9X8HeH1xEFgQKSTd4FLT4PTc9KNthoLj7Y=
Subject key identifier: 34:2C:2D:5D:27:9F:9C:64:4F:48:81:29:B0:82:E0:DE:F3:A8:BA:62
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 0198D6CD01154927DAC289F6444AC45FF018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 14E3
Signing time: Sat 23 Aug 2025 12:00:15 +0000
Manifest this update: Sat 23 Aug 2025 12:00:15 +0000
Manifest next update: Sun 24 Aug 2025 12:00:15 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: 2v7bFej9W2HYJl/NJrJ5XiHTd6mK3urrROYgYf6EtsI=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:01:15:49:27:da:c2:89:f6:44:4a:c4:5f:f0:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: Aug 23 12:00:15 2025 GMT
Not After : Aug 24 12:00:15 2025 GMT
Subject: CN=342c2d5d279f9c644f488129b082e0def3a8ba62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bb:e7:eb:dc:73:19:47:d9:7c:97:f1:d8:12:
d5:87:fe:e1:62:35:ee:f9:cf:ab:31:46:19:72:f3:
a3:56:a4:af:9e:a8:fb:5d:63:d7:1c:c4:3f:f3:9e:
22:66:64:bf:c3:42:25:f2:56:68:be:84:9f:28:8a:
6f:d6:54:8c:9d:b5:90:e8:e7:88:6e:cd:1a:ee:60:
bf:70:56:e9:e6:49:15:34:b5:59:2b:00:c0:40:d2:
25:67:3f:2f:62:a1:7a:18:eb:2b:49:cc:cf:88:41:
a3:e3:a3:47:fe:c8:6d:f6:53:9a:3e:ef:f8:ec:27:
8e:ef:a6:af:7a:8c:90:37:26:d2:10:af:59:7a:d0:
27:92:2d:ab:13:15:20:1b:42:51:7e:cb:6c:9a:f2:
d4:30:b0:93:87:31:b8:2f:2c:a3:99:31:db:4b:fc:
a5:f6:31:0c:93:8c:0c:bf:23:c8:cc:a0:95:0d:50:
43:f1:ca:5d:83:27:cd:1a:1f:8d:6d:94:3a:60:87:
68:a7:9d:de:86:29:22:71:cc:42:1e:04:4e:71:a6:
da:4f:6b:af:fa:80:17:1c:75:d6:db:10:e7:8a:24:
f8:2b:d7:6c:d7:33:37:23:82:e0:b9:75:99:b1:e7:
b1:1c:87:e0:ed:75:1e:b2:c3:24:a5:5b:e4:db:c5:
14:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2C:2D:5D:27:9F:9C:64:4F:48:81:29:B0:82:E0:DE:F3:A8:BA:62
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:63:78:8b:a8:94:c7:34:5f:12:6f:dc:2b:ba:0e:dd:80:40:
44:27:b1:da:3f:0a:c5:88:d1:2c:7a:7c:a4:5b:65:20:03:6b:
6c:0a:9e:23:76:fd:78:50:41:af:0b:72:65:58:83:0f:11:70:
c7:9c:f9:64:6f:de:69:ea:97:d5:3a:54:bd:ca:d5:87:b8:f1:
80:d1:59:6f:fb:64:6e:f3:1e:67:59:b9:3b:cc:8b:83:5b:97:
d5:65:3e:ae:3b:6a:f3:e7:83:75:67:8d:dd:f8:da:4a:1f:7c:
0c:42:42:34:8c:6a:e2:d6:82:c0:e5:c9:bd:48:0f:5f:11:f5:
e1:ed:9c:6b:6a:1e:38:2c:b2:f1:ca:50:41:86:23:f3:2f:8e:
17:f1:fc:09:49:b3:7d:3a:14:ae:af:7d:34:02:03:a7:db:fa:
a4:f1:94:49:2b:c1:8c:d3:12:a4:95:e7:d9:5a:0b:e8:0c:90:
05:da:85:ab:2b:0b:72:75:16:b7:96:e9:db:79:9b:f4:da:9d:
29:ec:06:9f:5a:0a:55:62:2a:0b:d3:3e:5c:54:51:0a:18:f6:
2a:7c:0c:1f:89:46:dc:a6:c3:7c:e6:18:c0:74:91:d2:a3:45:
c3:b3:2d:a1:da:3f:20:72:df:91:f7:05:35:ae:2f:9c:13:41:
7f:e8:fe:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzQEVSSfawon2RErEX/AYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NzQwMTVkNTA5YjVkNGYzOTZlYTM2MzM2OWU5ZDc0ZmZh
ZDc1OTMwHhcNMjUwODIzMTIwMDE1WhcNMjUwODI0MTIwMDE1WjAzMTEwLwYDVQQD
EygzNDJjMmQ1ZDI3OWY5YzY0NGY0ODgxMjliMDgyZTBkZWYzYThiYTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrvn69xzGUfZfJfx2BLVh/7hYjXu
+c+rMUYZcvOjVqSvnqj7XWPXHMQ/854iZmS/w0Il8lZovoSfKIpv1lSMnbWQ6OeI
bs0a7mC/cFbp5kkVNLVZKwDAQNIlZz8vYqF6GOsrSczPiEGj46NH/sht9lOaPu/4
7CeO76aveoyQNybSEK9ZetAnki2rExUgG0JRfstsmvLUMLCThzG4LyyjmTHbS/yl
9jEMk4wMvyPIzKCVDVBD8cpdgyfNGh+NbZQ6YIdop53ehikiccxCHgROcabaT2uv
+oAXHHXW2xDniiT4K9ds1zM3I4LguXWZseexHIfg7XUessMkpVvk28UUfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDQsLV0nn5xkT0iBKbCC4N7zqLpiMB8GA1UdIwQY
MBaAFKZ0AV1Qm11POW6jYzaenXT/rXWTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82ODllNzAtZTM4ZC00ZmYxLWE5NzIt
NDExM2Q2ODZkZDY2LzEvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC82ODllNzAtZTM4ZC00ZmYxLWE5NzItNDExM2Q2ODZkZDY2
LzEvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfWN4i6iU
xzRfEm/cK7oO3YBARCex2j8KxYjRLHp8pFtlIANrbAqeI3b9eFBBrwtyZViDDxFw
x5z5ZG/eaeqX1TpUvcrVh7jxgNFZb/tkbvMeZ1m5O8yLg1uX1WU+rjtq8+eDdWeN
3fjaSh98DEJCNIxq4taCwOXJvUgPXxH14e2ca2oeOCyy8cpQQYYj8y+OF/H8CUmz
fToUrq99NAIDp9v6pPGUSSvBjNMSpJXn2VoL6AyQBdqFqysLcnUWt5bp23mb9Nqd
KewGn1oKVWIqC9M+XFRRChj2KnwMH4lG3KbDfOYYwHSR0qNFw7Mtodo/IHLfkfcF
Na4vnBNBf+j+Xw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:10:54 2025 by rpki-client