Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
File: pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft (raw, json)
Hash identifier: /Ur4ewXQ8Wb+o6+Ni7/QTD9OwCV03I3bnKf3rCVHZjw=
Subject key identifier: CC:28:CB:7A:22:4F:85:20:48:2B:5C:5C:F5:AB:B3:51:10:C3:1F:C8
Authority key identifier: A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
Certificate issuer: /CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Certificate serial: 0199FC8F5C49FD35E7E7DF1F2A819CB7F664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
Manifest number: 0B75
Signing time: Sun 19 Oct 2025 13:01:17 +0000
Manifest this update: Sun 19 Oct 2025 13:01:17 +0000
Manifest next update: Mon 20 Oct 2025 13:01:17 +0000
Files and hashes: 1: LPRtA19ISdoMAcOg5dTdVh6L9Jk.roa (hash: yfplS3KyTgY8se7AVlwzcVLsAsein115ckLeaHyCF6w=)
2: pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl (hash: ZC3uGIFg3hfv3LmJKlaAFFg9JF3IE3XaF9cRTCLW0w4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:5c:49:fd:35:e7:e7:df:1f:2a:81:9c:b7:f6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a50cd3b9fb6464915ad0d3760934c0182889f1fb
Validity
Not Before: Oct 19 13:01:17 2025 GMT
Not After : Oct 20 13:01:17 2025 GMT
Subject: CN=cc28cb7a224f8520482b5c5cf5abb35110c31fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:51:55:d5:4a:00:9d:20:c0:99:de:8a:13:db:
da:21:6b:25:80:51:3b:11:7e:dd:d6:a9:24:0f:68:
7e:bf:80:00:84:64:04:5c:fc:5a:af:dc:9e:96:d8:
7f:af:d0:bb:e4:e2:2c:c9:59:6e:25:a7:34:f2:ab:
1c:9e:ea:17:c3:aa:71:2c:64:27:af:b1:62:5f:2f:
6e:2c:b3:c0:0a:0e:1f:f0:ed:1e:53:72:fa:25:ad:
ee:67:07:16:00:b8:41:ed:98:0e:c1:f9:1e:71:e3:
ce:20:90:44:05:bd:d4:25:bb:fa:74:59:7a:88:b6:
14:f5:89:20:88:51:4e:c6:5c:44:1d:ac:b2:81:7e:
c5:15:23:d2:25:41:13:f2:07:80:fd:ec:9a:5e:29:
6f:53:4c:5b:f8:ab:75:53:21:30:0a:28:23:78:64:
e6:ae:51:e7:5b:a8:22:0b:f7:c8:3a:5e:10:d0:71:
f4:50:a8:45:e9:52:2e:1b:54:74:7c:eb:90:3c:03:
55:2a:de:ff:b1:d9:c8:cd:94:7c:c7:09:e4:80:ac:
e9:e6:26:66:7a:07:9c:ad:79:90:7f:53:45:09:0e:
cf:83:01:a8:75:5e:44:3c:06:69:82:64:5b:53:08:
b0:69:01:e8:d2:d6:07:c7:ae:13:ef:ef:5d:82:0a:
5a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:28:CB:7A:22:4F:85:20:48:2B:5C:5C:F5:AB:B3:51:10:C3:1F:C8
X509v3 Authority Key Identifier:
keyid:A5:0C:D3:B9:FB:64:64:91:5A:D0:D3:76:09:34:C0:18:28:89:F1:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQzTuftkZJFa0NN2CTTAGCiJ8fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3c92fa-c3d5-4a36-9e17-37e9e86a9279/1/pQzTuftkZJFa0NN2CTTAGCiJ8fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:ff:a0:72:49:51:51:8c:6d:4c:6c:ea:0d:ec:3d:51:28:75:
e2:4c:bc:1a:0b:c8:40:dc:5e:c1:3b:85:14:68:5b:66:cf:5e:
06:fd:33:6a:db:57:53:bd:9a:a2:aa:d5:f4:f1:89:8a:ce:df:
c6:67:c9:ef:7a:14:e2:35:20:ac:f5:3a:b9:be:00:32:da:46:
2d:78:e9:b3:57:0f:d8:c3:0b:4d:a2:51:ad:08:33:c6:c6:fd:
be:86:79:ec:a1:eb:f5:5e:9c:73:3f:94:cd:9d:50:21:47:a6:
0a:0b:34:fe:ac:bb:c7:ad:6d:24:1f:ba:98:8e:bb:88:4b:8d:
4c:2f:73:7b:ee:d1:34:98:b4:52:68:86:02:9c:47:d9:0e:aa:
ae:21:2d:51:0a:f2:c4:f8:a3:85:3f:75:7a:e0:ff:c7:c1:e2:
91:e8:82:b5:86:7c:02:4c:86:bd:8e:06:80:94:4f:8e:4d:81:
2c:dd:e5:31:49:52:8c:f3:49:06:9a:7c:2b:14:c2:9b:11:47:
5c:f5:f7:f9:f2:39:dd:7b:02:af:92:92:2e:a8:37:f1:4f:a6:
71:20:1c:7e:33:58:78:1a:0c:36:e5:da:1c:89:04:5e:cb:a8:
b3:c1:04:f9:8d:6a:0b:da:21:93:dd:1b:4f:28:02:17:71:5a:
7a:6c:10:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j1xJ/TXn598fKoGct/ZkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1MGNkM2I5ZmI2NDY0OTE1YWQwZDM3NjA5MzRjMDE4Mjg4
OWYxZmIwHhcNMjUxMDE5MTMwMTE3WhcNMjUxMDIwMTMwMTE3WjAzMTEwLwYDVQQD
EyhjYzI4Y2I3YTIyNGY4NTIwNDgyYjVjNWNmNWFiYjM1MTEwYzMxZmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lFV1UoAnSDAmd6KE9vaIWslgFE7
EX7d1qkkD2h+v4AAhGQEXPxar9yelth/r9C75OIsyVluJac08qscnuoXw6pxLGQn
r7FiXy9uLLPACg4f8O0eU3L6Ja3uZwcWALhB7ZgOwfkecePOIJBEBb3UJbv6dFl6
iLYU9YkgiFFOxlxEHayygX7FFSPSJUET8geA/eyaXilvU0xb+Kt1UyEwCigjeGTm
rlHnW6giC/fIOl4Q0HH0UKhF6VIuG1R0fOuQPANVKt7/sdnIzZR8xwnkgKzp5iZm
egecrXmQf1NFCQ7PgwGodV5EPAZpgmRbUwiwaQHo0tYHx64T7+9dggpaawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMwoy3oiT4UgSCtcXPWrs1EQwx/IMB8GA1UdIwQY
MBaAFKUM07n7ZGSRWtDTdgk0wBgoifH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTct
MzdlOWU4NmE5Mjc5LzEvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8zYzkyZmEtYzNkNS00YTM2LTllMTctMzdlOWU4NmE5Mjc5
LzEvcFF6VHVmdGtaSkZhME5OMkNUVEFHQ2lKOGZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq/+gcklR
UYxtTGzqDew9USh14ky8GgvIQNxewTuFFGhbZs9eBv0zattXU72aoqrV9PGJis7f
xmfJ73oU4jUgrPU6ub4AMtpGLXjps1cP2MMLTaJRrQgzxsb9voZ57KHr9V6ccz+U
zZ1QIUemCgs0/qy7x61tJB+6mI67iEuNTC9ze+7RNJi0UmiGApxH2Q6qriEtUQry
xPijhT91euD/x8HikeiCtYZ8AkyGvY4GgJRPjk2BLN3lMUlSjPNJBpp8KxTCmxFH
XPX3+fI53XsCr5KSLqg38U+mcSAcfjNYeBoMNuXaHIkEXsuos8EE+Y1qC9ohk90b
TygCF3FaemwQvQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:05:29 2025 by rpki-client