Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: 0hQ9FBBbaGMivzRw7MGh4EKkSNmSCWM4kDo7IwYOh5Q=
Subject key identifier: CF:06:7F:90:1C:A7:ED:88:2C:B1:A1:41:C1:2F:E0:3C:BD:F0:F0:CF
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 019873068F27C9D2B428335BAF76157D8EA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 15A4
Signing time: Mon 04 Aug 2025 03:01:06 +0000
Manifest this update: Mon 04 Aug 2025 03:01:06 +0000
Manifest next update: Tue 05 Aug 2025 03:01:06 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: 7cvbCtJeHeS+2QjqO2d27U2hZEFiy8KiHRXnnMa4mu8=)
2: ZFcvFlhDWryyoXWXMpIDlrIOANM.roa (hash: vf4LDljSHDeogKMO6SAS7Y9xTDtYGGINc31+p97CZuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:8f:27:c9:d2:b4:28:33:5b:af:76:15:7d:8e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Aug 4 03:01:06 2025 GMT
Not After : Aug 5 03:01:06 2025 GMT
Subject: CN=cf067f901ca7ed882cb1a141c12fe03cbdf0f0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4a:1b:ca:d2:10:f5:9b:3b:8e:c1:79:6e:6b:
c3:94:76:47:43:d8:f7:2e:43:16:01:f2:a8:8c:f3:
3a:f4:d8:7b:43:9b:05:10:c4:ad:64:73:9a:91:aa:
2e:f7:b0:ab:1c:fd:7b:09:0f:60:46:24:8b:db:27:
de:fb:6f:3e:d2:56:21:6b:b8:ab:40:d3:b7:70:74:
51:96:62:23:f3:89:d5:e8:9c:2b:6d:9b:ac:3f:70:
ae:c7:21:a1:91:23:ba:3a:af:bc:0b:35:de:d3:79:
84:4a:79:9e:10:55:62:39:c5:69:66:95:99:7e:55:
d4:d7:5f:e3:90:af:f6:46:6f:e6:c8:a6:a8:5e:c0:
fa:50:cb:ba:e6:28:70:ac:de:db:8f:31:db:7c:e2:
33:07:f5:72:f7:1f:42:c2:e7:a5:ad:a7:90:f7:55:
ec:b7:47:5f:01:82:89:43:a6:ec:5c:6a:c2:40:0b:
73:16:81:e1:b3:5f:f0:f9:b6:c2:5d:ba:e0:b4:16:
94:97:6e:74:28:e2:37:40:d6:54:bf:88:c0:bf:7f:
14:e6:ae:c1:0e:dd:b7:b0:d8:13:7c:2e:81:ec:75:
6b:0e:f0:fc:d9:9d:99:34:12:7a:e5:a6:4e:9f:82:
ff:d6:c0:f6:af:0c:20:a0:fe:45:74:d6:ee:16:27:
df:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:06:7F:90:1C:A7:ED:88:2C:B1:A1:41:C1:2F:E0:3C:BD:F0:F0:CF
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:99:46:51:ed:c0:85:07:54:c0:c8:3b:09:87:62:2b:28:57:
e2:eb:92:de:a7:c6:49:4d:47:87:87:39:0e:50:37:c4:7f:09:
90:30:f8:6d:8d:f4:36:dc:b9:18:d0:cb:8b:26:23:12:54:35:
d6:e5:70:5c:6b:c1:1f:29:dc:e6:ff:61:2e:bb:37:ff:56:7d:
c5:f5:7c:1a:e0:db:69:8f:23:d9:01:a7:8d:1b:e3:11:cf:cf:
36:b3:f0:c8:14:f5:26:34:e3:23:dd:13:8d:8f:e1:c1:05:26:
06:6f:9c:03:69:9a:57:08:d9:b6:27:4f:d2:e5:74:91:db:5c:
1e:72:30:f5:31:7c:a2:fb:a9:43:99:09:46:00:8e:d1:6d:90:
5b:2e:6a:9e:84:d3:f5:91:89:59:97:e2:41:b1:f5:cf:95:42:
f3:56:d7:fe:bb:fe:fd:b7:c0:c9:3b:d0:ac:90:6f:52:2e:57:
09:54:ed:2d:84:07:e9:cd:49:3e:ba:e8:0b:6e:5f:0b:75:6d:
ba:5c:ce:1a:21:95:5c:ff:18:1c:fe:02:39:31:75:35:26:d8:
b0:a4:93:66:8e:62:16:55:74:5d:f4:7c:32:41:42:ba:9d:f7:
27:92:82:2a:56:07:f0:c5:49:3f:a8:ac:d1:98:05:e3:6b:b8:
bd:74:99:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:25:29 2025 by rpki-client