Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
File: PFlVXsIygmx91tmpJrU2AoN5SfY.mft (raw, json)
Hash identifier: 6++hs5gEmmmL4MD4e/n5tkzGiLfdN28S/5RmqHvWYE0=
Subject key identifier: AC:10:73:76:1D:64:B8:D5:92:E0:50:4E:54:7D:56:DF:4D:1F:F8:1E
Authority key identifier: 3C:59:55:5E:C2:32:82:6C:7D:D6:D9:A9:26:B5:36:02:83:79:49:F6
Certificate issuer: /CN=3c59555ec232826c7dd6d9a926b53602837949f6
Certificate serial: 0199FB7CF7FF8B4A0FDA7BCB1297267AF381
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
Manifest number: 0296
Signing time: Sun 19 Oct 2025 08:01:34 +0000
Manifest this update: Sun 19 Oct 2025 08:01:34 +0000
Manifest next update: Mon 20 Oct 2025 08:01:34 +0000
Files and hashes: 1: PFlVXsIygmx91tmpJrU2AoN5SfY.crl (hash: nxETeUbzP6CjQbsKeQvE/L+OcstT/f+AvkFrf1g9p9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f7:ff:8b:4a:0f:da:7b:cb:12:97:26:7a:f3:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c59555ec232826c7dd6d9a926b53602837949f6
Validity
Not Before: Oct 19 08:01:34 2025 GMT
Not After : Oct 20 08:01:34 2025 GMT
Subject: CN=ac1073761d64b8d592e0504e547d56df4d1ff81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ca:7e:86:6d:f7:41:92:43:5a:10:95:97:61:
40:a4:c7:b6:ab:db:18:08:97:05:4c:71:a8:f3:3f:
79:20:c9:bc:7c:bf:11:2c:23:00:79:84:a0:c8:d1:
80:fe:56:38:01:ad:c1:e6:26:2a:86:f6:8e:ac:67:
39:a1:63:06:b7:6f:be:d7:95:54:5d:8a:20:6a:40:
d5:bb:5b:93:65:bc:8b:ec:87:1f:32:a5:a6:f6:f0:
7f:03:bb:70:97:af:5d:ca:c6:6e:99:53:48:9d:15:
c8:c2:7d:ad:4e:c7:fe:39:93:51:f4:29:db:23:f4:
1b:a4:cc:38:3c:3a:2c:28:e0:2f:85:e9:bf:4a:fa:
2a:09:2d:f4:19:29:63:f4:23:84:b9:60:40:f4:42:
e0:e7:7b:2c:47:c8:95:0e:51:05:70:0e:a9:c1:9e:
9b:84:a1:17:7f:67:24:ef:bd:08:51:0f:f8:8e:d7:
af:d7:23:db:c0:d9:74:68:99:d1:c6:c2:b5:a4:b4:
58:e8:c4:0c:ed:a6:ae:62:33:03:61:ce:7a:25:81:
a1:67:41:03:d0:17:6c:5a:52:49:52:dd:72:96:71:
d6:2c:77:89:4b:ec:45:d5:6b:8b:50:cf:2b:28:23:
98:1d:be:ad:ea:82:f9:eb:b2:24:20:5e:da:0c:54:
3d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:10:73:76:1D:64:B8:D5:92:E0:50:4E:54:7D:56:DF:4D:1F:F8:1E
X509v3 Authority Key Identifier:
keyid:3C:59:55:5E:C2:32:82:6C:7D:D6:D9:A9:26:B5:36:02:83:79:49:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:ce:b8:6d:58:ad:bc:8d:0a:cb:f7:d3:fb:6d:6f:64:07:b0:
d8:68:10:18:23:64:dc:aa:cb:0d:8d:76:f9:cb:06:bd:1a:72:
80:79:d0:40:49:44:47:59:7b:dd:f6:e2:ec:35:4f:45:89:56:
33:0c:b0:88:ea:6c:39:53:6a:42:70:bf:6d:fa:dd:0a:33:e7:
19:e4:a2:51:46:c9:4d:df:5e:d8:a8:60:5a:e3:3c:90:88:5c:
98:37:93:7e:ab:2d:1f:32:9b:0b:b9:00:23:fa:fa:2a:42:45:
8a:95:dc:2d:e4:3e:9c:db:20:02:0d:a1:55:17:df:41:66:3c:
1f:a5:df:37:83:40:17:30:36:3c:17:c5:0d:4e:03:ff:a9:d7:
2e:70:9a:4c:ed:41:7b:9b:d0:fa:da:60:68:7e:29:1d:cc:b3:
83:ea:39:bd:ba:03:08:5c:03:eb:25:74:5f:a1:a8:c8:69:cc:
13:a5:86:07:f1:5a:ab:04:50:54:0c:c2:08:e4:f3:02:67:ab:
67:4d:a3:29:d3:70:ed:69:02:3a:e1:4d:5c:ee:07:2c:dc:d2:
88:ff:be:99:13:e1:d1:12:2a:2f:3b:cb:e3:0a:60:e4:fd:48:
73:3f:4e:9c:78:35:97:f6:91:cc:27:e7:65:e0:ce:b9:fa:45:
9e:67:eb:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:44 2025 by rpki-client