Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
File: PnFWq-5roji5BzFd-cVShlrc2ug.mft (raw, json)
Hash identifier: Fpde150y7qnlijYyLo13hdOKSZdPtrmA/ujIKlqLz/Q=
Subject key identifier: D7:B9:DB:B4:1D:9F:AA:EC:E7:B6:A5:3C:72:30:16:C1:70:E0:5E:21
Authority key identifier: 3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
Certificate issuer: /CN=3e7156abee6ba238b907315df9c552865adcdae8
Certificate serial: 0198D54E6833B9DAEF22E548DC92FABC8E3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
Manifest number: 08BB
Signing time: Sat 23 Aug 2025 05:02:21 +0000
Manifest this update: Sat 23 Aug 2025 05:02:21 +0000
Manifest next update: Sun 24 Aug 2025 05:02:21 +0000
Files and hashes: 1: DRXIRPlz989IQESya6WStEPwwfI.roa (hash: vzHP7wdlF/pn8v84Pbfgox37vxRmFYAJNGZAwD+DkvA=)
2: PnFWq-5roji5BzFd-cVShlrc2ug.crl (hash: rxlEL6ZD1kmlQ+PaKz+baXQrPZGnWL4H71zd1ctu+lI=)
3: QWM4nrBr-pa9JzWD2Zz8wHHbmCU.roa (hash: VKweVNYicugh0mCYY3yIR2LnHnKsWIZPY+G4TQfXJ6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:68:33:b9:da:ef:22:e5:48:dc:92:fa:bc:8e:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e7156abee6ba238b907315df9c552865adcdae8
Validity
Not Before: Aug 23 05:02:21 2025 GMT
Not After : Aug 24 05:02:21 2025 GMT
Subject: CN=d7b9dbb41d9faaece7b6a53c723016c170e05e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:43:3c:4a:b5:98:12:f9:8f:ce:c0:be:a0:89:
28:d0:43:6f:06:b4:15:8d:69:0d:a2:1a:04:31:27:
da:9b:cf:1f:7f:5d:20:23:43:d5:5a:58:28:ba:4d:
23:32:3c:12:a7:3a:0d:c5:59:25:54:e1:a0:8d:c6:
8c:b3:a6:cf:3c:e3:97:2d:f2:53:a3:26:fe:66:48:
28:41:25:00:c7:36:16:82:ae:b0:60:2b:6a:3c:31:
9a:3d:66:0b:b7:b9:5b:52:81:2c:2c:1e:42:f1:5e:
64:b0:f5:33:ed:60:5e:1b:38:ad:35:3d:ca:73:49:
23:e0:a3:aa:f7:7c:1e:b2:4f:64:f0:c5:02:52:eb:
14:7b:f6:fc:0e:99:fb:9c:1d:97:16:73:aa:3b:ca:
36:5a:5b:a1:1d:b4:db:cc:72:33:9a:d1:a7:18:3b:
15:b2:20:f8:ce:50:e8:57:92:60:fc:14:ae:4b:45:
e7:70:55:24:c0:98:a4:50:a7:a6:d9:5d:95:c0:d6:
5f:93:7d:50:f4:ed:a0:a7:af:b4:c7:0b:8b:0d:08:
5b:47:47:da:2f:ea:50:7b:9e:a6:1e:27:74:35:1e:
72:bc:91:b2:8c:8e:ff:dd:03:28:d7:23:55:42:47:
47:d6:cd:00:da:e1:3a:9c:f0:d2:0e:f7:0a:bb:92:
22:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B9:DB:B4:1D:9F:AA:EC:E7:B6:A5:3C:72:30:16:C1:70:E0:5E:21
X509v3 Authority Key Identifier:
keyid:3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:99:ef:9f:52:53:98:18:a4:f1:e1:81:dc:07:ec:72:78:38:
ac:eb:40:b7:36:c3:50:9a:0d:86:ea:e8:99:af:a1:27:2d:06:
e6:2f:2d:f1:e9:6a:88:b8:47:a0:b8:4a:d4:b9:5d:0e:a6:97:
4c:15:48:3a:83:42:fd:7d:23:ee:bd:38:5c:b8:08:83:41:09:
26:31:04:41:1a:80:88:67:58:df:a4:f2:32:85:5b:e1:32:c2:
bc:3f:0e:fb:c3:01:e0:57:d7:bb:dc:e1:f6:f7:c2:b2:1d:86:
45:0a:a7:f1:cd:83:41:56:40:cc:a9:b0:ab:fe:29:9d:9e:43:
14:ad:bc:5e:5c:14:82:20:42:b8:05:34:24:3e:e1:21:cb:20:
20:e9:20:e3:ab:72:a3:a4:81:cc:f2:2a:b9:86:65:8a:e9:09:
da:af:4c:2d:a4:76:9d:b9:85:12:38:bd:d6:fb:56:00:de:5b:
fe:e3:33:24:0b:35:33:49:ce:d5:41:c4:14:07:82:b3:8f:76:
2d:8c:d2:7f:06:dc:c1:80:4b:22:b6:fb:2e:4c:13:85:af:8c:
34:e8:23:2d:66:c0:27:c9:81:f4:73:e4:51:bd:4b:a4:e9:e6:
a7:7c:7b:df:5f:ce:83:82:c0:7d:86:d5:a6:7d:4b:69:dc:fb:
63:fe:62:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:56 2025 by rpki-client