Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
File: pnyqBsCo91QBbmFEgLuzh35AiR0.mft (raw, json)
Hash identifier: njPRRg4xsAlVBPzqxFOdTY/Nojhx5fxFMiiuM2cCOC0=
Subject key identifier: E3:32:33:9A:67:6A:5C:B2:8A:C1:35:9A:1C:E4:6D:22:10:76:60:89
Authority key identifier: A6:7C:AA:06:C0:A8:F7:54:01:6E:61:44:80:BB:B3:87:7E:40:89:1D
Certificate issuer: /CN=a67caa06c0a8f754016e614480bbb3877e40891d
Certificate serial: 0199FCFDA2AD0CCE2994080CDB2ED393117C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
Manifest number: 040C
Signing time: Sun 19 Oct 2025 15:01:44 +0000
Manifest this update: Sun 19 Oct 2025 15:01:44 +0000
Manifest next update: Mon 20 Oct 2025 15:01:44 +0000
Files and hashes: 1: pnyqBsCo91QBbmFEgLuzh35AiR0.crl (hash: 4YfnDsju+GeIJtc1odvOZkb+DjSlT3boge+De8GKBJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:a2:ad:0c:ce:29:94:08:0c:db:2e:d3:93:11:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67caa06c0a8f754016e614480bbb3877e40891d
Validity
Not Before: Oct 19 15:01:44 2025 GMT
Not After : Oct 20 15:01:44 2025 GMT
Subject: CN=e332339a676a5cb28ac1359a1ce46d2210766089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:95:7f:7d:ca:b2:a0:d7:9b:aa:94:03:d5:
88:bd:82:56:29:98:3a:a4:80:e9:52:a2:bc:ab:ec:
4e:86:8c:32:4c:ce:63:d2:44:2f:fb:f6:8e:c5:fd:
0e:59:cd:bf:e4:c0:b1:e2:19:b1:c1:a3:55:2e:b2:
fa:f2:08:60:b0:f2:6d:1a:47:36:48:ea:65:c7:64:
a4:2d:7d:82:0f:b6:ef:df:d9:43:8c:56:54:61:b9:
68:1f:67:52:02:64:3e:f7:23:2e:98:76:9b:aa:51:
b8:6f:7a:5c:55:01:14:20:b7:3b:4d:c9:30:33:62:
20:90:9b:b4:0f:74:94:08:93:60:ac:47:d4:65:38:
d8:49:6e:fe:ce:1f:05:3a:39:aa:17:55:45:44:eb:
9f:0f:12:54:0d:4e:df:3c:04:fc:f0:79:19:bb:0e:
a9:ec:fd:be:e7:33:f6:e0:c8:61:35:b0:17:1e:69:
8e:36:2e:05:40:be:99:3f:70:d2:71:a0:1e:fc:9e:
53:3e:de:24:8f:4a:cc:6f:6f:e6:c6:37:e5:0b:c7:
c7:18:a8:bd:94:54:20:37:d4:e9:7b:40:bc:37:ea:
d5:1e:dc:7a:5e:b1:4a:d7:f6:4b:4b:97:30:21:d5:
7e:af:72:2c:4d:42:eb:ab:90:e6:03:35:95:aa:23:
99:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:32:33:9A:67:6A:5C:B2:8A:C1:35:9A:1C:E4:6D:22:10:76:60:89
X509v3 Authority Key Identifier:
keyid:A6:7C:AA:06:C0:A8:F7:54:01:6E:61:44:80:BB:B3:87:7E:40:89:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:06:15:f1:a8:3e:a6:fc:12:93:45:bc:c5:f2:18:46:f7:e0:
70:bb:92:ee:2b:ec:91:c8:25:25:e0:10:8b:a6:00:c3:ce:6d:
8a:f3:b9:5b:fd:da:f5:39:ba:fd:78:8a:2b:b4:fd:ce:b9:44:
35:56:66:cd:02:99:09:67:80:4a:eb:31:68:75:ee:68:32:a0:
00:11:fd:e2:c7:b9:9f:ff:aa:23:9d:e0:f2:d1:57:a9:12:ff:
32:9e:3e:ca:af:fe:cb:96:68:b8:2d:f8:10:2c:87:40:ac:b0:
b1:26:2c:c4:c6:1a:fe:c9:e1:5c:9e:3f:b1:2c:17:ef:39:2c:
a0:66:e9:5e:d4:d2:6e:44:08:af:e2:3f:9c:a6:00:86:5a:8b:
40:37:21:e9:e4:0f:a2:cc:47:d6:09:5c:df:c6:e4:ae:b0:a2:
d2:0e:cb:8f:98:69:44:35:1e:60:39:62:c1:1c:14:f1:ec:8d:
7d:18:fe:4e:b1:66:02:86:09:ee:76:27:74:78:1e:b7:aa:3f:
c9:ab:69:f2:ad:f5:78:00:ec:d1:17:1a:1c:3e:fc:cc:d1:36:
9e:57:15:c8:9b:59:2f:53:05:fa:87:a6:c9:7f:59:33:22:53:
1e:01:99:11:a4:dd:34:3d:86:f1:ff:fc:a6:33:1e:73:b7:0b:
dc:1a:44:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:27 2025 by rpki-client