Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
File: PpeXKwFXszTha_kfKifuDi3BOag.mft (raw, json)
Hash identifier: g5Hz80bPwLLxqWWWO5wM6NsiFeIb4dTj4p99EIuMVRM=
Subject key identifier: 16:FB:E0:D9:C4:4E:92:51:C8:9C:89:1C:9C:0A:E9:4A:E6:32:3E:50
Authority key identifier: 3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8
Certificate issuer: /CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8
Certificate serial: 0199FEEBF5E7C5018AF37F0321DE9080E4B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
Manifest number: 0351
Signing time: Mon 20 Oct 2025 00:01:40 +0000
Manifest this update: Mon 20 Oct 2025 00:01:40 +0000
Manifest next update: Tue 21 Oct 2025 00:01:40 +0000
Files and hashes: 1: PpeXKwFXszTha_kfKifuDi3BOag.crl (hash: 50UXX1qNePLlMuIALKW/98mNfVmnuM6cYMj07rWcJEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:f5:e7:c5:01:8a:f3:7f:03:21:de:90:80:e4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8
Validity
Not Before: Oct 20 00:01:40 2025 GMT
Not After : Oct 21 00:01:40 2025 GMT
Subject: CN=16fbe0d9c44e9251c89c891c9c0ae94ae6323e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4c:f1:38:ff:a2:8e:b6:a0:d7:bd:ad:5a:c5:
d8:42:b1:39:a1:89:94:16:c5:88:92:e0:a3:4a:cc:
47:42:ba:d0:9f:55:c9:87:9b:7b:ea:e3:26:84:9e:
a2:cf:7b:1c:7c:26:bc:50:93:f7:f4:9c:e0:ce:4f:
39:76:bc:8a:5a:a9:10:f8:73:b2:93:f2:6d:97:a5:
a2:1c:d0:dd:91:15:5f:99:06:21:c8:58:c8:b6:f2:
44:b4:84:88:f1:61:4a:d3:3f:6d:e3:58:47:d5:e1:
de:07:02:2b:27:12:2d:42:8f:da:17:30:36:f8:25:
63:05:da:30:bb:85:18:11:4c:0f:af:df:b1:8e:61:
f1:0a:c8:57:04:78:b8:c9:fe:4b:20:9e:58:10:2f:
c0:00:3a:40:10:e1:13:17:f1:73:09:a0:02:f4:73:
4a:a7:c4:0b:13:e8:b6:31:66:36:9e:e4:89:51:7b:
6c:9f:0d:13:e8:f4:93:57:9f:28:98:a2:f9:11:26:
51:2d:c5:b4:4d:7f:21:75:92:11:d0:10:86:5b:d3:
db:3d:4d:d3:69:3b:f5:f4:58:12:9b:4e:15:ee:e9:
2c:aa:65:50:33:90:a2:68:15:fa:31:f7:4c:63:b5:
4b:0c:e3:39:f7:5f:a3:8f:c7:77:09:a0:dd:04:33:
76:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:FB:E0:D9:C4:4E:92:51:C8:9C:89:1C:9C:0A:E9:4A:E6:32:3E:50
X509v3 Authority Key Identifier:
keyid:3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f7:3f:33:2f:d7:f6:cb:65:8b:d3:1e:0b:6a:3a:56:d3:05:
f0:b1:9f:19:5c:63:6e:6f:86:2f:c3:f9:3a:01:0b:6d:44:1f:
56:cb:01:ea:5b:80:5d:cf:0f:44:74:02:da:28:68:2c:10:97:
13:b2:6d:80:29:ec:cb:61:cb:80:12:e1:14:a9:dd:13:93:9f:
e2:e1:bb:fa:9b:43:4d:96:ae:6b:f8:5b:c6:ef:4c:4d:bd:fb:
f9:31:9d:8d:d0:c1:00:8e:4a:10:ce:24:a4:eb:4f:c1:7e:96:
25:f8:87:01:df:58:72:0a:bf:3b:42:ee:4b:f9:0c:35:48:05:
92:78:ce:0e:84:94:cf:36:88:4c:41:f3:57:fd:59:79:4c:c5:
ec:68:52:87:96:bf:6f:9d:d1:20:c7:be:e7:06:3f:31:5d:05:
15:43:7a:4d:fe:d9:f0:d3:99:12:5e:b9:79:3f:8f:68:26:a4:
f7:93:33:b4:f9:4a:bd:4e:da:e8:04:e5:46:dc:2d:44:1b:68:
40:27:59:23:be:95:e2:a8:db:3e:b4:c9:e3:e1:2b:ac:17:5d:
5f:0b:66:51:52:34:8c:d5:53:01:f4:65:c0:82:87:78:1a:0f:
10:7a:0d:d8:c3:e9:7c:29:81:dc:f6:bb:5a:be:0e:9c:fe:4a:
4e:86:d4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:14:15 2025 by rpki-client