Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/ff4191-b9f3-4382-bee1-2957afb14794/1/PqlK-DEYyT_-izYnXtU0mU1not0.mft
File: PqlK-DEYyT_-izYnXtU0mU1not0.mft (raw, json)
Hash identifier: PtpAp2Fd2kXOqLGyMc3TLbNSfSf/n85VG6b/s/PctjY=
Subject key identifier: 8A:A4:E3:C6:80:03:FB:A3:88:3A:80:40:45:59:33:32:31:8D:0F:67
Authority key identifier: 3E:A9:4A:F8:31:18:C9:3F:FE:8B:36:27:5E:D5:34:99:4D:67:A2:DD
Certificate issuer: /CN=3ea94af83118c93ffe8b36275ed534994d67a2dd
Certificate serial: 0198D77396076BD1F5FA066CDFB7AC041F65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqlK-DEYyT_-izYnXtU0mU1not0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/ff4191-b9f3-4382-bee1-2957afb14794/1/PqlK-DEYyT_-izYnXtU0mU1not0.mft
Manifest number: 123B
Signing time: Sat 23 Aug 2025 15:02:12 +0000
Manifest this update: Sat 23 Aug 2025 15:02:12 +0000
Manifest next update: Sun 24 Aug 2025 15:02:12 +0000
Files and hashes: 1: PqlK-DEYyT_-izYnXtU0mU1not0.crl (hash: Qz1Cf97BO+8kFmOVy06Fa9EH1MUaw4A12AIuhYje6LA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/ff4191-b9f3-4382-bee1-2957afb14794/1/PqlK-DEYyT_-izYnXtU0mU1not0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/ff4191-b9f3-4382-bee1-2957afb14794/1/PqlK-DEYyT_-izYnXtU0mU1not0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqlK-DEYyT_-izYnXtU0mU1not0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:96:07:6b:d1:f5:fa:06:6c:df:b7:ac:04:1f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea94af83118c93ffe8b36275ed534994d67a2dd
Validity
Not Before: Aug 23 15:02:12 2025 GMT
Not After : Aug 24 15:02:12 2025 GMT
Subject: CN=8aa4e3c68003fba3883a804045593332318d0f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:32:46:e3:8e:48:08:6c:8b:b9:9e:3f:38:97:
d9:60:a6:b6:3a:79:32:3d:a3:5c:c2:b8:55:e8:39:
02:a7:32:9a:04:b3:f8:71:be:00:8e:f5:34:29:84:
09:ac:7a:8c:67:c8:8f:e4:78:11:36:ca:eb:0b:3e:
50:db:ac:ce:a4:c9:d1:29:30:fb:74:af:c5:57:b4:
e7:89:8a:f0:35:de:68:51:3f:f6:e5:18:73:e8:49:
be:3d:01:1d:39:cc:64:9a:7f:c5:e1:81:30:3f:ed:
b4:8f:94:ed:97:73:bf:ac:b5:ca:c0:12:d6:d6:bc:
c7:b6:4a:15:96:a8:86:84:13:fd:46:33:9b:3f:97:
90:3a:37:ce:96:77:7a:2c:84:75:21:43:e4:bb:ab:
bb:1d:60:0e:eb:81:29:91:66:10:bd:0e:bd:50:a2:
1f:0e:18:20:e9:81:cf:89:8a:d3:e2:aa:a9:15:fc:
a1:a7:2c:4c:f4:08:51:a7:69:e0:31:22:53:f2:cf:
9e:60:0b:32:ef:61:03:e9:80:35:d8:22:c3:6c:bb:
cb:ea:63:9a:64:71:82:62:a9:42:13:ee:6c:55:ec:
99:09:ca:6e:22:61:83:0f:fd:a8:b0:1f:cb:f1:1d:
33:e8:0f:bb:3e:d9:86:6a:66:75:17:fa:0c:89:9d:
b6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A4:E3:C6:80:03:FB:A3:88:3A:80:40:45:59:33:32:31:8D:0F:67
X509v3 Authority Key Identifier:
keyid:3E:A9:4A:F8:31:18:C9:3F:FE:8B:36:27:5E:D5:34:99:4D:67:A2:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqlK-DEYyT_-izYnXtU0mU1not0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ff4191-b9f3-4382-bee1-2957afb14794/1/PqlK-DEYyT_-izYnXtU0mU1not0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ff4191-b9f3-4382-bee1-2957afb14794/1/PqlK-DEYyT_-izYnXtU0mU1not0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:e3:d4:d2:a0:64:58:ff:6e:05:08:37:45:46:7d:20:37:9d:
fc:69:10:38:60:36:b6:5d:3c:14:5f:52:61:28:b9:73:d8:a3:
14:71:d1:e4:f5:29:00:81:2b:44:54:f2:08:04:a7:7e:61:be:
23:af:5d:53:32:80:69:e0:4a:c8:c8:6a:3b:21:45:c7:c8:7c:
91:32:4a:80:92:a0:65:b3:75:a2:ad:1b:f5:03:8a:25:2d:51:
f0:b2:eb:b3:f3:c7:50:86:22:7d:84:2c:d4:e8:3e:ef:a0:1d:
ea:d5:50:e8:f8:7b:3b:4b:a0:b5:a5:57:08:b7:a6:4b:bb:6b:
5b:57:b0:b2:ea:5d:f3:34:88:8b:5f:87:e8:e2:9c:86:4f:9c:
71:1a:74:dd:0e:c4:5f:0d:ad:0a:17:50:91:a4:34:d6:6d:3c:
3c:88:08:fb:49:c3:37:6e:93:98:d3:6b:aa:e0:b8:61:bc:ee:
b7:37:f0:54:74:aa:59:dc:88:1e:b7:a4:89:d4:17:9c:cd:a6:
87:15:67:6c:0d:8d:dd:dd:0a:06:7e:a2:bf:03:fe:6a:33:46:
bc:0c:b6:0e:90:9d:69:47:50:78:6f:cd:f0:84:7e:b2:e7:3a:
3f:70:39:b4:cb:cc:3a:0c:6f:6a:0a:56:3d:32:6a:60:4d:95:
26:a6:f7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:16:27 2025 by rpki-client