Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: D3ZmJCUfvm5SAjT6flR/EC6iFR6DeWZUeOxkqvaKzHM=
Subject key identifier: D0:D3:8C:D3:E6:06:43:B1:AB:3E:9D:37:CD:0B:05:DC:05:60:94:FE
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 0199FDA1D619F1BE92CE835C596733477F3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 0B78
Signing time: Sun 19 Oct 2025 18:01:05 +0000
Manifest this update: Sun 19 Oct 2025 18:01:05 +0000
Manifest next update: Mon 20 Oct 2025 18:01:05 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: oQqWY6EAsVIpQPe/DhJ2+Ew7IHA/gi3KMCBt4KO1s50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:a1:d6:19:f1:be:92:ce:83:5c:59:67:33:47:7f:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Oct 19 18:01:05 2025 GMT
Not After : Oct 20 18:01:05 2025 GMT
Subject: CN=d0d38cd3e60643b1ab3e9d37cd0b05dc056094fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:12:53:57:a4:ed:e7:59:a3:45:9c:e5:7d:70:
78:9b:fc:71:37:ae:06:9c:78:3b:f2:fc:72:79:0c:
de:51:34:d2:11:ff:5e:cc:05:c8:28:b2:e1:a1:a9:
7e:fa:80:ce:63:65:64:f5:64:f5:b7:1e:f9:8e:d8:
47:05:f2:4b:55:9e:1c:cf:e1:13:1a:8a:58:bd:c6:
91:93:a6:aa:94:cf:d4:56:44:5a:d9:81:7c:67:40:
50:60:cc:29:9d:04:41:85:24:de:e2:dc:33:78:a3:
50:b5:d2:68:c5:78:5d:bb:b9:93:bc:2c:a1:a0:8c:
3a:76:40:66:e4:8f:8d:a0:98:70:23:e4:98:93:66:
3e:d9:f9:ee:6e:a9:80:93:6e:a1:ec:83:61:8d:ad:
ce:a2:cf:a2:da:23:20:d4:19:31:e0:7c:97:3a:a4:
87:4c:8c:7e:59:8e:a7:6a:9a:4c:a3:4c:af:31:09:
93:e7:2b:c5:b6:99:2f:54:85:87:b1:d0:a2:e7:bb:
b0:83:cc:fa:b3:15:68:a2:ad:cf:fa:4b:c2:75:a6:
67:2b:3c:ca:64:d6:bf:11:a6:f1:2b:77:b5:ca:0b:
a5:1b:17:02:4a:c3:df:b7:75:9a:66:d3:62:d6:c5:
08:bf:78:be:56:95:99:66:d0:70:fe:5c:a7:b9:c2:
2b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D3:8C:D3:E6:06:43:B1:AB:3E:9D:37:CD:0B:05:DC:05:60:94:FE
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:cb:b2:b4:6d:20:4f:91:03:b2:39:55:b0:4b:39:8e:94:33:
72:b4:80:95:76:db:1a:86:92:9d:50:05:8c:f8:62:7e:b5:82:
a9:74:c7:19:18:d7:51:55:81:04:ee:6e:fd:c3:1a:d8:43:85:
f9:f7:bd:b0:50:37:9a:0c:ea:60:8a:ea:cb:37:78:da:08:95:
77:36:64:25:4b:bf:3d:d3:52:e7:62:d8:a5:0c:7b:be:ac:ef:
c5:54:9b:e4:c0:f6:fd:f3:0b:ea:a5:47:fd:29:81:36:91:29:
2f:74:35:13:b4:82:9a:35:0b:12:1e:09:23:23:f0:55:91:f5:
e1:99:f0:21:49:2e:45:69:0e:9c:e2:ed:60:79:45:fd:31:15:
6f:e0:db:45:05:5c:d4:e7:92:f6:a5:71:ed:8a:c7:1c:0e:1c:
f6:c1:0b:c2:4f:80:ef:e2:6c:a3:27:5d:b2:cd:a0:27:80:c5:
0a:28:25:8b:3a:b4:60:91:8c:69:5f:b1:70:f6:ae:71:4c:f8:
9e:0c:54:a3:58:e0:ee:3f:cb:8b:ae:72:7d:d6:e4:5d:d6:e8:
16:ad:8a:c9:87:e6:74:95:25:07:d3:81:5c:fd:fa:11:c1:a5:
7e:bf:66:ce:11:cf:0c:72:42:ea:0f:23:c4:e8:94:69:74:2b:
68:a3:5c:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:34 2025 by rpki-client