Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
File: PHQZW9u2a2A65joVGPBm-gsRUfU.mft (raw, json)
Hash identifier: K0mWXoHEpJbz2YK9CKabflrQHR8vH2t4NqJOHVFGBcs=
Subject key identifier: 73:6E:F0:DC:05:B2:91:98:BA:A3:C6:B2:11:7D:D1:8E:62:04:E9:78
Authority key identifier: 3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5
Certificate issuer: /CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5
Certificate serial: 0199FBEBF3244C3A22E597FECB7F31DD0171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
Manifest number: 0A14
Signing time: Sun 19 Oct 2025 10:02:48 +0000
Manifest this update: Sun 19 Oct 2025 10:02:48 +0000
Manifest next update: Mon 20 Oct 2025 10:02:48 +0000
Files and hashes: 1: PHQZW9u2a2A65joVGPBm-gsRUfU.crl (hash: 3oeQUH6cwvaeaWEZkhG3QpOyyo2ZXcfRy903iiEuL3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f3:24:4c:3a:22:e5:97:fe:cb:7f:31:dd:01:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c74195bdbb66b603ae63a1518f066fa0b1151f5
Validity
Not Before: Oct 19 10:02:48 2025 GMT
Not After : Oct 20 10:02:48 2025 GMT
Subject: CN=736ef0dc05b29198baa3c6b2117dd18e6204e978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a5:fc:6e:42:39:ce:68:35:87:d5:f1:88:21:
c2:70:d9:a1:cd:73:9a:1b:9d:9d:a6:ec:57:8b:e5:
cc:44:f4:5e:dd:1a:c6:7c:95:e3:fe:73:1a:6a:a0:
dd:bf:e9:8c:f4:57:2b:97:b1:f0:0c:40:f5:36:c6:
52:84:a1:89:09:a7:8a:80:4b:49:c7:8b:42:50:f3:
f4:1f:91:14:65:75:e6:a8:81:65:1a:91:cd:91:28:
22:2f:34:46:94:3f:c9:bc:ca:0e:60:91:e3:4e:14:
a2:15:d3:ed:df:45:6f:d9:b0:84:ca:35:a4:f3:c5:
c7:bb:27:ab:d0:7f:9d:21:4c:95:55:14:5a:44:28:
ad:9b:86:7b:6d:91:11:da:41:82:df:ce:12:db:41:
a6:f0:2d:06:c2:ea:da:77:67:c6:3b:85:98:0c:2a:
22:d6:5c:5a:62:84:3a:ad:ae:c4:93:b7:b1:dc:3b:
06:51:04:62:b2:2d:c7:81:66:69:bd:b2:3a:36:57:
25:c5:6d:35:bf:44:69:e7:86:45:1c:6c:f8:cc:e3:
61:6b:3f:6b:c8:0a:af:2d:7a:16:88:9b:9d:c3:31:
b2:0f:26:9e:5b:d2:c3:96:8e:bf:56:64:d2:d9:6f:
81:17:2a:52:3c:86:1e:b3:e8:17:39:c6:39:6a:52:
b0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6E:F0:DC:05:B2:91:98:BA:A3:C6:B2:11:7D:D1:8E:62:04:E9:78
X509v3 Authority Key Identifier:
keyid:3C:74:19:5B:DB:B6:6B:60:3A:E6:3A:15:18:F0:66:FA:0B:11:51:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PHQZW9u2a2A65joVGPBm-gsRUfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7858a4-2e33-43c4-b33d-1e04b20d8567/1/PHQZW9u2a2A65joVGPBm-gsRUfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:84:8f:2d:bb:8a:22:0c:56:55:60:88:c5:6f:e9:46:f5:17:
8f:64:77:27:d1:c5:10:e3:e9:60:a5:c5:80:08:cd:e1:f4:97:
04:5b:ea:ae:a1:3d:80:7f:78:68:cf:ce:1d:0d:87:a2:ba:bf:
79:14:94:92:f9:09:cd:16:b4:b3:35:3a:f3:43:1a:43:63:07:
b8:23:57:13:57:4c:10:e8:dd:c4:c4:f2:51:8b:67:57:aa:8c:
06:57:92:f5:0f:be:58:48:2e:a9:94:b8:86:22:17:2f:cd:a3:
9f:55:55:48:ae:79:cf:a3:d9:1e:8d:39:78:85:64:f9:15:7a:
29:15:33:8c:54:74:d5:08:9e:76:c7:e3:e4:37:39:31:94:37:
4a:c3:f1:8d:ad:d2:f6:9b:31:5f:49:67:89:b9:d5:0a:6b:98:
94:69:61:c8:72:60:93:a3:f7:96:5e:ee:fb:91:26:a1:cf:b8:
d2:ba:39:e8:c4:7f:df:ae:7b:f2:0c:29:ad:e6:3b:f9:d8:c7:
c8:5e:53:3c:ef:ee:8d:4c:27:75:82:2b:dd:9e:5b:c7:6d:5c:
f1:eb:72:31:e7:40:a0:78:ca:99:cd:4c:67:88:7b:0b:3e:23:
3b:4d:32:04:80:c4:ce:05:dd:74:db:16:9d:e6:4d:b0:79:c2:
4d:35:a4:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:54 2025 by rpki-client