Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
File: PE71UtfFcTYTTntE1pfLAs3n2H0.mft (raw, json)
Hash identifier: DcaFNzXixqeHTEFaXNz4QfPNeYqNeC/okz2chmo2J+4=
Subject key identifier: 60:8E:B0:F0:E7:7F:E4:BC:DF:D9:65:C5:50:58:98:68:DA:8F:C0:E9
Authority key identifier: 3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
Certificate issuer: /CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Certificate serial: 0199FC21A26B5F61218FA07B9B2CD9943725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
Manifest number: 0B47
Signing time: Sun 19 Oct 2025 11:01:26 +0000
Manifest this update: Sun 19 Oct 2025 11:01:26 +0000
Manifest next update: Mon 20 Oct 2025 11:01:26 +0000
Files and hashes: 1: PE71UtfFcTYTTntE1pfLAs3n2H0.crl (hash: HPNSYA5hZ13Ix6WlalvmI2xCVGTHrwZz5lt5rl4Rj8Y=)
2: RuZvzxLvicWfAkL-HU_suiyEHkc.roa (hash: 1ChRVjdhLwU5Jyhx1uu/EkAAaI5ej8w7SIJnkr0NI2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a2:6b:5f:61:21:8f:a0:7b:9b:2c:d9:94:37:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ef552d7c57136134e7b44d697cb02cde7d87d
Validity
Not Before: Oct 19 11:01:26 2025 GMT
Not After : Oct 20 11:01:26 2025 GMT
Subject: CN=608eb0f0e77fe4bcdfd965c550589868da8fc0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1c:55:07:31:26:d2:d7:73:05:41:db:b8:49:
7d:2e:ff:17:3b:e4:a7:2b:d2:71:7f:dd:be:e6:4a:
eb:51:32:bb:a9:ce:ca:af:9f:63:1c:48:17:b5:7f:
d2:5c:ce:90:e4:01:ce:f4:12:f0:90:a0:fb:81:b1:
bf:19:c8:fc:9e:d4:71:1e:d0:f0:66:a1:69:25:95:
33:db:29:20:7d:f1:10:20:2f:9b:f3:63:f8:82:16:
db:17:90:eb:e7:36:a7:8d:b3:f9:68:cf:84:86:e2:
8c:b3:5d:ca:65:45:43:2a:c1:6a:1c:94:63:5d:8f:
8f:98:70:8f:32:43:6d:20:c8:63:89:16:e4:83:41:
f9:35:b0:2c:93:3d:c8:71:ff:5c:43:ad:11:89:1b:
2d:f3:d2:c1:e2:90:4d:f3:a9:ef:14:bc:9d:26:33:
98:c8:4a:ba:d7:d1:e5:1f:e4:d3:d1:a1:65:2a:2d:
11:cf:1f:2a:ad:dd:50:20:47:a2:44:89:98:58:3b:
11:17:c0:22:24:83:c1:b3:31:8f:ee:c7:3a:fa:a9:
70:ea:df:97:ae:50:6c:5b:bf:5b:78:72:fc:c8:ef:
d9:00:9c:ad:94:6e:51:ee:96:50:db:5d:f0:31:84:
a9:c9:dc:e0:dd:14:1c:e2:e8:a8:8e:ea:fa:6b:14:
28:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8E:B0:F0:E7:7F:E4:BC:DF:D9:65:C5:50:58:98:68:DA:8F:C0:E9
X509v3 Authority Key Identifier:
keyid:3C:4E:F5:52:D7:C5:71:36:13:4E:7B:44:D6:97:CB:02:CD:E7:D8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE71UtfFcTYTTntE1pfLAs3n2H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b321d1-814b-4cf9-9d07-11441e16a137/1/PE71UtfFcTYTTntE1pfLAs3n2H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:aa:0e:e7:bc:83:33:68:7b:9f:ae:fc:42:36:f5:5a:b3:38:
3c:c4:11:81:94:cb:f8:75:b5:51:6a:3b:ef:fa:77:42:4d:c6:
b9:8f:34:64:70:f5:a0:72:e3:e6:57:f3:6a:20:c2:f2:2f:ad:
f8:3a:d1:80:95:b0:f7:50:e2:f1:de:73:e6:fd:d6:a2:59:85:
88:1c:f5:b0:99:c5:b0:85:28:26:eb:2b:53:12:44:82:f2:43:
17:d7:b4:29:4f:1e:2e:0e:eb:3b:63:e0:fc:12:d7:c3:04:fb:
bf:6b:f3:a9:10:57:8b:54:3a:42:13:ca:36:ce:af:a1:81:a2:
d7:22:69:38:61:8c:69:38:82:ae:89:d7:c8:58:1a:3c:cd:8e:
e3:0f:1e:79:5b:fc:1b:4a:39:56:a6:dc:97:1a:16:89:23:a4:
ef:99:d5:c7:4f:b3:d6:8a:60:d7:aa:1f:30:52:c5:99:1c:f0:
1f:da:00:e6:51:8e:77:36:5b:ef:e6:29:e4:1a:d7:fb:b9:0e:
71:a3:94:93:62:9d:c0:8a:3b:8b:36:ee:53:a2:42:76:23:0d:
0e:3f:a7:d4:69:34:c5:60:71:84:9b:6b:c5:ae:c4:0e:63:54:
4c:c5:04:bc:0e:22:0c:e9:e4:e2:22:a1:b5:50:cc:c0:a1:26:
0b:71:34:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:00:50 2025 by rpki-client