Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: 8tLIkhHsjwdoLqFf083jFFr0cG9Anl4i8XzFUYcXJkY=
Subject key identifier: 8C:48:8B:4A:30:78:00:77:C1:30:37:B7:5B:B3:FF:07:5C:FE:7E:A2
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 019A4EF56892705B5F81D211FE7F1391C9D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 1111
Signing time: Tue 04 Nov 2025 13:01:37 +0000
Manifest this update: Tue 04 Nov 2025 13:01:37 +0000
Manifest next update: Wed 05 Nov 2025 13:01:37 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: ADSwIusXL+a3vKSS1s35Ml//JxZ0SDW7CRh5tKV5QTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:68:92:70:5b:5f:81:d2:11:fe:7f:13:91:c9:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Nov 4 13:01:37 2025 GMT
Not After : Nov 5 13:01:37 2025 GMT
Subject: CN=8c488b4a30780077c13037b75bb3ff075cfe7ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:77:c5:3e:b6:ce:33:87:36:25:f7:11:b3:1a:
f2:58:3c:f1:8c:bc:10:8b:ef:26:0f:63:65:52:14:
40:f7:4a:0f:7d:28:74:85:98:4d:83:be:7b:31:e1:
9a:de:e0:51:96:d2:78:cd:0d:47:62:ab:7f:03:8d:
39:1f:30:34:b7:b9:16:5e:71:57:23:bd:69:e9:10:
41:37:58:d9:b4:17:e0:7c:84:e1:92:b5:77:1f:2b:
28:b5:23:1f:04:a1:1e:cd:2a:36:63:2c:ef:7f:bc:
b4:40:68:9a:51:af:c7:32:f6:86:57:4a:aa:ad:4e:
dc:db:ff:fe:66:ba:49:3d:cc:1c:c7:79:32:3c:be:
ec:0f:76:14:43:89:35:79:08:64:cf:5a:05:d5:2c:
5a:98:35:65:5d:5f:68:f0:1c:bb:99:d6:7e:43:33:
80:8b:41:3a:4c:f1:0b:a3:0f:4b:44:25:a9:57:9d:
ec:b3:fc:f3:de:31:4e:1c:17:09:1e:af:70:9e:47:
05:81:4d:f9:10:2b:3e:b3:3e:be:da:8c:ab:58:4a:
ce:4c:00:1c:d9:f4:7b:f3:72:78:ba:2d:1e:b9:45:
94:93:d2:b4:10:7c:77:73:8b:3a:a9:eb:2a:b9:1f:
a5:fc:03:ca:33:6d:9c:07:6b:16:50:68:4d:44:c8:
c1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:48:8B:4A:30:78:00:77:C1:30:37:B7:5B:B3:FF:07:5C:FE:7E:A2
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:a7:9c:b9:94:d0:6d:8d:5e:47:f4:38:37:5d:e4:6f:3d:4b:
49:72:4a:f9:05:61:e7:8d:e5:00:f7:d4:9a:2e:39:d3:9a:26:
15:6c:2c:98:53:fc:fc:b3:45:9c:dc:ec:a5:58:6c:8e:3b:65:
f8:88:e6:56:47:30:d6:0c:70:5a:5a:8c:53:ae:33:df:31:3c:
25:41:2d:6a:96:69:a7:61:49:4e:18:73:a7:ac:b3:62:a7:42:
a0:7b:90:b7:57:69:49:c3:44:27:22:c6:6a:e8:58:76:40:a2:
20:f3:34:50:2f:f7:ab:d0:84:37:fa:44:85:08:9d:b6:90:c9:
c8:78:6e:b0:ca:77:72:50:20:ca:1b:82:55:e9:a6:8a:e6:dc:
a4:84:68:4a:b0:5b:61:b8:06:44:05:c6:01:4f:a7:f4:1c:16:
5f:ab:b0:9f:8d:50:31:80:ed:99:ed:35:db:5b:3c:fd:a3:56:
dc:cf:99:a8:56:67:d7:4d:3e:94:63:7b:66:37:22:a0:81:28:
99:7a:4f:c6:3a:e8:60:62:a0:d9:ee:91:09:c7:5b:92:6a:1f:
d7:53:a3:00:75:b2:55:17:68:64:13:d0:ae:af:75:5b:01:85:
d8:c4:6a:68:59:6a:61:e8:27:12:79:71:f6:3a:da:0c:b6:42:
b2:fb:01:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:32 2025 by rpki-client