Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
File: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft (raw, json)
Hash identifier: +Q5oxg5ukXzs0oVZmOodSfn+RmnhNNeUec17EnPs6uk=
Subject key identifier: 0B:0C:24:42:C7:2F:03:D9:E4:20:5A:49:AE:D8:75:20:6E:B4:65:1A
Authority key identifier: A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
Certificate issuer: /CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Certificate serial: 0199FDDA01249D76CABD2A4EE2FE00883960
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 19:02:26 +0000
Manifest this update: Sun 19 Oct 2025 19:02:26 +0000
Manifest next update: Mon 20 Oct 2025 19:02:26 +0000
Files and hashes: 1: pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl (hash: rblpN7VEt8zZ08dwg3iGNGQbRjmo3UXxv/xJ9BQYrHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:01:24:9d:76:ca:bd:2a:4e:e2:fe:00:88:39:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6ad5e70013f4df8455fa06c93e60012c29973d5
Validity
Not Before: Oct 19 19:02:26 2025 GMT
Not After : Oct 20 19:02:26 2025 GMT
Subject: CN=0b0c2442c72f03d9e4205a49aed875206eb4651a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5a:e2:cf:e3:76:4c:04:5e:16:c2:36:76:ab:
cb:04:c3:1f:c3:c3:1f:ef:27:08:18:cd:57:cb:fd:
7e:2c:cc:a9:06:3c:d0:36:a1:0b:b6:96:b4:83:1b:
21:d3:21:c1:ab:0a:5a:fc:bd:36:9d:90:7c:14:d9:
12:ae:ad:b8:db:ed:70:1b:08:06:d0:71:06:a7:be:
ee:5a:bf:fe:2c:da:ad:92:37:03:d6:38:10:32:10:
7a:a0:49:c3:5d:a3:15:d9:82:f0:5d:54:84:21:a5:
c2:81:6e:c5:7a:88:a4:a7:5b:62:1a:1a:0d:e7:21:
a5:65:a3:97:11:e6:6f:10:a2:ef:41:d4:d9:c0:5d:
53:40:86:66:f0:de:6f:33:3f:f9:a2:bb:0a:e4:f3:
6c:69:61:ed:b1:61:22:06:03:14:a5:56:e8:cd:94:
53:5d:c6:ea:98:56:2d:24:94:f8:41:ce:03:d3:b2:
51:a8:af:ac:90:86:64:36:0d:a9:04:35:f7:c1:a2:
4a:89:03:73:b3:7d:a6:b8:37:57:b0:b0:77:f7:2a:
1b:6b:c4:b0:29:3a:42:9e:f7:3d:52:72:10:ea:f3:
7d:a4:55:f5:12:17:56:eb:75:cd:6d:72:bd:8c:7f:
06:52:95:e1:30:3e:a1:ce:ff:41:71:76:54:38:d6:
fe:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0C:24:42:C7:2F:03:D9:E4:20:5A:49:AE:D8:75:20:6E:B4:65:1A
X509v3 Authority Key Identifier:
keyid:A6:AD:5E:70:01:3F:4D:F8:45:5F:A0:6C:93:E6:00:12:C2:99:73:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/546b9b-df0f-4970-a68e-36870337077e/1/pq1ecAE_TfhFX6Bsk-YAEsKZc9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:6b:ca:dd:b8:6d:5e:e3:36:90:18:ca:bb:98:b7:92:c8:a0:
f4:52:84:4a:da:f3:7d:d4:3f:ad:55:b7:cd:89:42:23:5c:3c:
f4:f9:f1:ff:94:53:af:99:cf:79:d7:54:aa:3b:ee:b5:73:10:
2b:cb:78:c7:23:ca:a5:ec:d8:c5:cd:f0:69:45:06:3f:37:65:
42:98:34:ce:5e:75:c0:71:48:53:13:e2:f4:c8:55:37:b3:49:
af:00:b2:c1:49:5a:d5:fa:54:ee:74:1c:1b:01:c6:f2:bf:94:
39:72:e9:a8:c1:90:a9:f0:ee:b2:86:40:02:47:e3:28:8e:e6:
85:93:13:df:ae:83:36:a8:b2:15:66:1a:a0:86:a2:29:f6:fb:
87:c7:87:50:a0:4c:ad:54:07:87:d1:f9:e2:0a:28:c4:31:ce:
5c:c6:5e:6b:8b:0b:69:f7:68:a8:0d:b3:e7:23:18:48:a7:a3:
eb:e4:62:8a:c6:31:81:e4:9b:23:b9:e4:6d:2a:88:8f:56:67:
da:75:33:4f:2c:9d:52:34:16:52:1a:af:38:74:52:d8:7e:1e:
94:4a:4c:04:51:1b:f7:bd:d4:2b:64:ff:8c:9d:fb:7c:74:b3:
7b:c0:d6:a9:cd:11:21:b1:19:da:1d:3a:af:01:91:03:d1:ce:
e6:ea:7a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:50 2025 by rpki-client