Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: qQQOr2s/rCIqTatdFKS3L/uDRKGZuuaCRpjeucvBgAs=
Subject key identifier: F2:B1:6B:AF:73:32:AB:14:6D:E8:44:E4:C5:EB:67:7F:3A:1F:50:91
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 0198D65F7895CA317D29E848B81DE3023B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 0ADF
Signing time: Sat 23 Aug 2025 10:00:37 +0000
Manifest this update: Sat 23 Aug 2025 10:00:37 +0000
Manifest next update: Sun 24 Aug 2025 10:00:37 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: 6joaf+iwlmBUNctWHrsSNVPT9ax1lbNmlD/B/1asJtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:78:95:ca:31:7d:29:e8:48:b8:1d:e3:02:3b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Aug 23 10:00:37 2025 GMT
Not After : Aug 24 10:00:37 2025 GMT
Subject: CN=f2b16baf7332ab146de844e4c5eb677f3a1f5091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:25:85:13:1e:cd:8c:98:e9:52:45:aa:5e:cb:
ac:0f:35:b9:8c:71:e3:8e:1e:3a:87:6d:f5:86:4a:
af:9d:4a:43:fd:48:92:b6:da:0e:f2:ef:dc:22:da:
20:c3:25:32:0c:fa:ff:c8:c3:23:0a:df:4d:50:8f:
2d:f6:76:a8:f6:b8:da:a4:39:f7:31:55:5c:5e:05:
66:5d:5e:ea:77:a1:d6:39:8f:02:24:2a:74:55:99:
4d:24:0e:df:f6:43:fc:01:f1:c6:16:76:7e:92:9c:
0d:43:72:50:de:cf:b9:a2:dd:5d:79:ed:91:2f:5c:
37:c3:1a:d3:54:29:93:7d:bd:2c:16:3a:5a:26:b3:
b9:f6:a7:0b:8e:89:f9:e6:a8:79:ef:51:43:3e:e7:
b4:14:ca:d6:86:34:f6:c1:54:d8:e6:a0:09:ba:2e:
50:dd:38:4d:d2:8a:b6:45:e6:d6:31:65:cc:f7:c4:
e2:36:1c:d9:98:12:76:21:23:12:78:59:9b:72:90:
6e:ca:34:49:19:44:7b:84:66:2a:a5:63:3c:59:10:
ca:b7:68:2f:bc:9b:81:a7:f4:95:e7:88:8b:0c:0d:
35:d6:e0:81:86:e9:d0:d7:29:8c:bb:7f:94:06:95:
63:ef:09:92:c8:b5:a4:de:8e:d9:3b:df:9a:d1:f7:
1c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B1:6B:AF:73:32:AB:14:6D:E8:44:E4:C5:EB:67:7F:3A:1F:50:91
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:96:7a:26:d0:22:7f:f3:47:f8:ae:45:0a:b9:fb:23:7c:ff:
e3:1b:84:4a:6e:d8:49:af:f9:5a:d3:de:57:e7:0c:52:3b:9e:
52:db:73:99:df:f3:4a:66:87:9e:9a:33:11:27:77:9c:ab:c5:
97:a4:07:82:27:21:8f:8b:0f:73:68:6e:18:9b:be:1e:71:a6:
0a:53:0c:4e:f6:c4:88:61:7a:70:7c:dd:8e:6e:d4:ee:87:67:
3c:ae:98:dd:0e:24:1f:25:02:6a:cc:75:eb:21:5e:b0:50:1b:
e3:3c:37:ab:78:b9:5c:0a:ea:75:9c:a0:c1:00:8f:63:2f:1e:
00:78:a4:47:ab:2f:55:27:c6:c4:09:2c:52:4a:82:c3:9f:b1:
8e:da:cd:5b:40:ac:dc:7e:04:29:cc:89:fa:b6:18:57:ed:ee:
1a:45:d7:44:6a:0e:14:f6:db:85:e7:9c:b6:4d:48:27:84:4c:
c2:53:00:54:7e:e4:a7:e3:26:75:90:60:23:08:9b:83:06:e5:
b9:e4:d7:bb:d7:8e:cd:e4:b4:ca:16:aa:8c:f1:56:11:02:30:
df:20:91:42:f0:9f:f7:ac:db:82:eb:4f:b4:ea:d4:f5:3d:fd:
47:a3:50:c6:53:0b:8b:17:48:b5:b4:37:7e:9c:4c:77:e1:4a:
40:7a:e1:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:25:42 2025 by rpki-client