Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: c4JO0yQ092VWqyuZ4rVdsZMjp8si5eJZ/vtRimuD20w=
Subject key identifier: D6:05:3D:6B:94:78:C5:35:82:BB:6F:52:70:65:59:B6:ED:7C:5F:A8
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 0199FE46B9B686C678A033ED5A053942F7D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 21:01:11 +0000
Manifest this update: Sun 19 Oct 2025 21:01:11 +0000
Manifest next update: Mon 20 Oct 2025 21:01:11 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: 8cZLG2xx7O4XZ6o66uw34h4CsQaRNTKrZg88hb/qiMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:b9:b6:86:c6:78:a0:33:ed:5a:05:39:42:f7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Oct 19 21:01:11 2025 GMT
Not After : Oct 20 21:01:11 2025 GMT
Subject: CN=d6053d6b9478c53582bb6f52706559b6ed7c5fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:83:d2:ab:2b:ad:fb:d3:f7:78:91:68:14:10:
9f:1c:1a:db:0b:d3:73:7e:d2:4d:a7:fc:31:cb:21:
88:06:01:8a:83:e8:9c:9f:ea:2f:a2:d5:b9:2d:53:
a4:62:68:89:57:a3:74:3a:91:b2:e5:10:f1:83:cc:
f4:57:fa:51:31:f5:c5:d7:e2:6f:d9:2e:82:b3:80:
5e:32:c4:51:58:2a:23:c2:a3:20:8e:25:e1:7d:35:
1e:42:03:1d:95:a4:df:af:07:ac:b4:e8:10:9f:fa:
5f:75:ad:db:d8:ce:65:aa:a7:2b:bd:34:b6:ed:4c:
79:db:12:c3:a9:29:90:49:ec:c3:3b:c1:50:e2:30:
b8:d3:3c:f7:6d:dc:a9:a9:b2:71:52:63:11:55:27:
82:01:6b:d0:c9:a8:ed:41:94:87:c3:74:81:c1:44:
5b:a9:15:50:dc:d3:e7:62:46:72:25:bc:dc:f7:f0:
df:d9:cd:fb:92:d7:a5:c4:e1:f0:56:ef:10:c5:3b:
db:89:1d:17:f4:c6:17:6d:35:c7:70:00:87:4a:12:
fc:a4:af:71:46:a6:70:bb:3f:5f:84:1f:02:7f:6b:
0f:30:14:6d:b0:87:a2:d3:98:0f:65:e5:78:c3:ea:
e6:c6:e4:2d:84:23:52:c9:09:92:84:ec:62:e2:7b:
72:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:05:3D:6B:94:78:C5:35:82:BB:6F:52:70:65:59:B6:ED:7C:5F:A8
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:7b:5c:0d:d5:ae:4e:01:f0:69:7e:79:56:c8:7a:58:0f:d6:
92:70:ce:8e:36:67:76:93:e8:93:e6:5a:42:3d:1e:b3:9b:13:
45:a4:83:65:22:33:49:ee:aa:48:10:80:06:5c:04:7d:70:63:
28:fc:41:ca:96:82:4f:10:5e:1d:eb:b2:a4:f8:2f:79:e4:6f:
62:6b:9e:25:d3:84:15:ed:6f:5b:94:96:9b:09:47:38:71:93:
8b:4f:69:1b:31:b2:b4:c6:92:f8:e5:5b:83:e6:e6:e2:d3:1a:
57:4b:98:3d:80:ef:13:3a:81:51:6a:16:9f:bf:ce:e0:06:d3:
0a:41:1c:cc:7c:5e:f0:c4:4a:b9:07:fa:87:84:b5:2a:63:f6:
8f:78:52:77:5b:db:04:74:9e:a2:54:ad:18:74:cd:45:82:2a:
56:8a:2a:93:3b:8e:7d:52:10:ac:a5:9a:f9:d2:ba:a7:c9:b9:
05:ee:4f:9a:83:32:98:06:61:73:8a:60:73:95:d5:e8:4e:e3:
97:5a:ca:b0:9d:e1:c8:94:3e:52:50:2e:4e:a0:ea:17:d2:a9:
b5:ac:8a:fa:c0:b3:f4:1a:be:a8:bd:eb:56:fd:97:9c:c9:27:
bd:bc:a5:6d:c0:03:84:0f:2f:56:7d:a9:49:bd:dd:e1:3e:c8:
32:7d:fa:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:37:08 2025 by rpki-client