Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json)
Hash identifier: 25i+8QY4aNgzj+kqLhkYaiw0JeV+S41JUEYFOqp8nEg=
Subject key identifier: 6B:DA:B6:E3:10:D7:40:7F:2C:C4:D8:71:8F:CB:49:B4:59:76:58:C9
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 0199FC215E32E38F6714BD65D34B566611CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
Manifest number: 0E97
Signing time: Sun 19 Oct 2025 11:01:09 +0000
Manifest this update: Sun 19 Oct 2025 11:01:09 +0000
Manifest next update: Mon 20 Oct 2025 11:01:09 +0000
Files and hashes: 1: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: SMGVsxg0ckNmWV1z7PNPLmn76Y60GZaoBeDi53li6z8=)
2: qkuFYPmd6yVSJeAUkr6iVxoW6uI.roa (hash: 6R5f5Psj0EmX1v5BkourUurygRB3rOnwEBUagdishKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:5e:32:e3:8f:67:14:bd:65:d3:4b:56:66:11:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Oct 19 11:01:09 2025 GMT
Not After : Oct 20 11:01:09 2025 GMT
Subject: CN=6bdab6e310d7407f2cc4d8718fcb49b4597658c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2c:d2:f0:77:a4:25:40:8c:a9:2b:cd:f5:e8:
77:2e:c3:c3:57:a4:a9:2b:83:f7:26:ee:88:07:84:
db:e5:39:64:96:d2:bd:cb:bf:a5:65:72:e8:10:8f:
fc:6f:c1:25:44:66:f1:3f:73:4e:e4:55:ef:67:16:
fb:d5:c1:c9:0e:68:53:bd:cb:94:47:3e:74:9d:3b:
cb:3d:a5:73:52:a7:0b:2a:d5:11:2a:dc:ad:b4:72:
41:1f:ac:09:ae:38:95:72:73:b6:7f:e0:74:18:ed:
66:ba:96:6c:37:90:b9:31:a4:7a:61:d1:07:74:68:
5f:5c:e8:c0:ab:ae:52:78:a4:7f:44:b5:89:3c:f7:
7e:6f:50:ff:59:d4:14:41:2c:eb:b2:68:86:4e:90:
de:80:0b:8f:e0:17:6c:50:95:60:9a:81:d6:3b:9d:
1d:22:2a:c8:ae:a5:51:17:54:3d:64:ed:89:23:b4:
89:f3:76:e6:1d:e9:7e:fd:68:bc:88:29:30:1b:90:
e5:28:56:9f:7b:de:11:98:11:59:a9:32:52:84:79:
0f:5b:22:b4:90:d2:03:12:6b:49:92:89:15:0b:4c:
33:79:9c:f0:42:29:d5:26:9d:fc:a8:e8:be:1f:a9:
02:67:cc:77:27:b0:ec:4c:17:28:63:fa:00:3b:d6:
4a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:DA:B6:E3:10:D7:40:7F:2C:C4:D8:71:8F:CB:49:B4:59:76:58:C9
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:02:d6:06:2c:f2:52:4c:d5:c1:e2:32:ba:7a:99:90:8b:84:
02:7e:77:df:45:27:49:16:ab:5b:2f:17:35:21:f5:bc:23:3a:
f8:e8:b9:85:31:dd:88:a7:2e:36:fa:64:94:43:f1:3f:9c:10:
5d:a5:89:a0:92:4a:93:e1:61:8d:24:30:82:d8:5f:55:ba:d8:
6b:28:99:b1:f4:a5:79:bf:d1:e4:e2:81:1a:1d:6a:fe:00:4e:
cb:f5:79:51:a5:bc:8c:c9:b2:37:2d:ee:12:e1:1c:34:03:97:
fd:8d:d6:1a:fe:fc:10:63:6d:73:da:92:b4:50:4e:0a:5b:b3:
31:d2:61:b6:9a:12:14:f5:08:8f:0c:10:8a:04:20:b7:95:56:
47:73:b2:7b:76:80:b0:d2:b4:22:43:ba:7e:0b:88:75:97:df:
56:3c:61:24:4b:6d:22:97:82:00:eb:61:30:3c:69:38:4c:df:
54:fb:e1:62:be:d1:b3:8e:45:1e:11:4f:82:4a:3c:d4:61:ac:
85:a1:0f:c8:96:38:3b:7e:cc:05:2b:44:9e:41:25:4a:16:2c:
06:f1:28:8d:de:ef:4d:33:4e:1c:f1:9d:ec:2c:f2:74:82:d7:
31:40:22:a6:b9:32:26:4d:a9:dc:f7:05:00:7d:90:04:28:3b:
c5:f9:9a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:29 2025 by rpki-client