Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: IPuFqEox1eOUM7x4FU29sU/Y6ui352U7t+W8Rkm3B6k=
Subject key identifier: 39:82:01:00:BF:D8:87:B6:35:FC:44:A5:74:1C:B2:A0:64:9A:6A:9B
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 0198D4E014CC95E2E3C474305EBF8301BE0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 03:01:51 +0000
Manifest this update: Sat 23 Aug 2025 03:01:51 +0000
Manifest next update: Sun 24 Aug 2025 03:01:51 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: nt4mOdYiJGc2ggvHQk4cSgMv5R12K2c3OUkODiHcQb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:14:cc:95:e2:e3:c4:74:30:5e:bf:83:01:be:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Aug 23 03:01:51 2025 GMT
Not After : Aug 24 03:01:51 2025 GMT
Subject: CN=39820100bfd887b635fc44a5741cb2a0649a6a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7e:d5:9e:f8:c1:de:36:20:3f:69:ac:0c:2b:
aa:9f:3b:01:0d:af:9b:9f:14:86:88:3b:0d:dd:07:
14:57:7e:7a:9b:26:8f:2c:90:60:56:5f:12:97:aa:
83:b6:43:90:ba:34:4d:c0:87:e7:af:9a:70:88:3f:
6a:c5:32:45:93:9a:b1:82:88:8f:38:75:cc:04:ed:
ce:d4:d4:e6:9b:7c:cc:ee:a4:f7:1e:db:2b:3f:8c:
f9:45:cc:ee:80:96:ae:77:c7:eb:bc:df:30:1f:b8:
98:4a:fb:62:d0:31:29:4a:8b:15:9a:7f:66:13:60:
d0:40:bf:53:42:56:49:81:5e:60:8f:84:b2:8d:1d:
81:2d:ba:60:ea:04:ae:1f:63:cf:f0:ed:e9:1d:8c:
ce:56:e2:8a:c6:b9:b4:01:f9:b7:bc:21:60:22:2f:
5a:7c:19:80:8d:3b:f2:a0:16:8d:d7:8e:66:84:9d:
5f:06:57:de:45:d2:93:da:a7:cc:65:11:12:6f:f0:
e1:85:d6:34:4c:3e:dd:95:82:29:57:57:02:21:90:
6f:15:0a:3a:44:0a:ec:55:83:f6:25:64:5b:d4:78:
1f:cd:6b:22:fa:7d:cf:ce:3e:cf:76:f8:a3:4c:a7:
82:d0:bc:00:f6:1f:9a:64:8b:f1:da:25:42:b2:ca:
31:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:82:01:00:BF:D8:87:B6:35:FC:44:A5:74:1C:B2:A0:64:9A:6A:9B
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:d4:d7:6d:ec:d6:7e:81:60:3b:86:be:c9:7a:fc:1c:61:1a:
b7:4e:55:80:53:7d:e6:72:47:3a:14:aa:c6:8a:da:49:a3:11:
a4:56:11:b8:8d:4d:c6:fe:6b:23:a6:69:d2:98:a9:e0:b9:d0:
a6:71:15:17:7c:8c:2c:5e:3e:2e:e1:3e:a5:08:a7:74:d6:23:
2e:e0:e8:45:de:6a:19:e5:bc:b6:07:3e:0a:6c:69:31:bc:73:
49:91:26:a5:06:c8:45:c9:c2:16:46:7c:40:56:17:c1:53:be:
a3:2d:72:55:a5:08:99:6e:65:76:8f:97:02:c2:c6:1e:2c:47:
91:1b:05:47:d0:00:56:7f:08:41:c6:64:c4:b4:a7:a1:db:a3:
5e:6a:66:88:ba:d7:10:68:85:44:e4:e8:ed:b7:21:c9:b4:b2:
44:c0:e8:c5:a1:58:f6:3d:ca:40:3d:e1:0f:3a:45:10:46:b5:
1a:a3:e6:e4:4f:7d:fb:c9:05:75:a5:04:b4:31:a8:01:26:77:
cc:49:66:23:2d:85:80:d0:79:b2:49:16:53:df:72:51:9c:55:
e0:0c:3e:64:c4:4e:b6:d4:67:58:e9:a2:c1:da:8c:79:85:93:
55:e2:9b:de:57:fd:c3:a1:d7:ae:f4:92:fb:10:d0:e6:33:ca:
45:e4:ec:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4BTMleLjxHQwXr+DAb4LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNzBmMWY2NTYzZGU0M2ExMWQzNjQ0OTc1NjY3YzFjMjhl
Nzk1OWUwHhcNMjUwODIzMDMwMTUxWhcNMjUwODI0MDMwMTUxWjAzMTEwLwYDVQQD
EygzOTgyMDEwMGJmZDg4N2I2MzVmYzQ0YTU3NDFjYjJhMDY0OWE2YTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0X7VnvjB3jYgP2msDCuqnzsBDa+b
nxSGiDsN3QcUV356myaPLJBgVl8Sl6qDtkOQujRNwIfnr5pwiD9qxTJFk5qxgoiP
OHXMBO3O1NTmm3zM7qT3HtsrP4z5RczugJaud8frvN8wH7iYSvti0DEpSosVmn9m
E2DQQL9TQlZJgV5gj4SyjR2BLbpg6gSuH2PP8O3pHYzOVuKKxrm0Afm3vCFgIi9a
fBmAjTvyoBaN145mhJ1fBlfeRdKT2qfMZRESb/DhhdY0TD7dlYIpV1cCIZBvFQo6
RArsVYP2JWRb1HgfzWsi+n3Pzj7PdvijTKeC0LwA9h+aZIvx2iVCssoxvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmCAQC/2Ie2NfxEpXQcsqBkmmqbMB8GA1UdIwQY
MBaAFD1w8fZWPeQ6EdNkSXVmfBwo55WeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC82YzA3NWUtNjI2My00ZmYzLWEyNmQt
OGQzMjIyMDcxNWVlLzEvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC82YzA3NWUtNjI2My00ZmYzLWEyNmQtOGQzMjIyMDcxNWVl
LzEvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPNTXbezW
foFgO4a+yXr8HGEat05VgFN95nJHOhSqxoraSaMRpFYRuI1Nxv5rI6Zp0pip4LnQ
pnEVF3yMLF4+LuE+pQindNYjLuDoRd5qGeW8tgc+CmxpMbxzSZEmpQbIRcnCFkZ8
QFYXwVO+oy1yVaUImW5ldo+XAsLGHixHkRsFR9AAVn8IQcZkxLSnodujXmpmiLrX
EGiFROTo7bchybSyRMDoxaFY9j3KQD3hDzpFEEa1GqPm5E99+8kFdaUEtDGoASZ3
zElmIy2FgNB5skkWU99yUZxV4Aw+ZMROttRnWOmiwdqMeYWTVeKb3lf9w6HXrvSS
+xDQ5jPKReTs4A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:20 2025 by rpki-client