Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
File: pYQcxzKsc43B4_5nwS5RBL74Y7o.mft (raw, json)
Hash identifier: Rka4v+VPD6nSu5TA5M6FYea3kzJcgQ8WpJzuSZRj0ds=
Subject key identifier: 52:A2:90:E0:38:52:A4:1A:15:3D:18:5A:06:4B:70:9A:35:27:7D:D8
Authority key identifier: A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
Certificate issuer: /CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Certificate serial: 01989ECC9F982CBE50054A6B9D24054E5A65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
Manifest number: 0C16
Signing time: Tue 12 Aug 2025 15:01:06 +0000
Manifest this update: Tue 12 Aug 2025 15:01:06 +0000
Manifest next update: Wed 13 Aug 2025 15:01:06 +0000
Files and hashes: 1: YFmwVrLg1hwmMKXx_Mm4unlp1Pk.roa (hash: k02tWA3CSFWvzMdYPWtnwp3L9wjqBp2dmnRijw+YwuE=)
2: pYQcxzKsc43B4_5nwS5RBL74Y7o.crl (hash: RvRzTXph9c3tdr7u+Pr5YY2LfgXgkEgMdKNXFPxUm0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:cc:9f:98:2c:be:50:05:4a:6b:9d:24:05:4e:5a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5841cc732ac738dc1e3fe67c12e5104bef863ba
Validity
Not Before: Aug 12 15:01:06 2025 GMT
Not After : Aug 13 15:01:06 2025 GMT
Subject: CN=52a290e03852a41a153d185a064b709a35277dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:60:0c:fa:d2:9c:eb:51:01:8b:69:ce:98:79:
c2:ee:e5:cd:24:c4:14:c3:74:ce:32:e4:3e:af:1e:
e2:20:b1:27:d8:8a:e9:cb:8b:57:b5:4b:40:09:04:
04:77:a2:13:5b:b7:67:26:37:62:a1:dd:0f:11:c1:
a5:7a:31:ba:71:a5:25:b1:35:d0:8b:ee:d7:b9:27:
f7:73:ef:6b:b4:ed:87:d2:9a:b5:da:ea:bb:92:7b:
77:b6:3f:c1:df:6a:dd:86:23:d3:71:fc:97:5f:f9:
6d:45:f5:ae:45:69:84:bb:81:5d:46:7e:6f:17:dc:
5b:b8:ce:bc:64:4d:6d:61:cd:ff:8b:1f:8e:4a:4d:
b7:fa:72:5e:02:23:c9:d2:a2:78:8f:b3:a7:a9:68:
91:67:2a:15:5d:09:f9:9e:0c:58:5f:74:4a:52:a1:
2c:c2:c3:e7:dc:0a:27:5a:6d:e2:86:a9:13:4b:b1:
14:c7:80:d3:27:f8:d3:24:29:bb:90:df:3d:58:54:
76:e7:13:69:96:da:8b:72:af:3c:4a:f5:67:8a:d4:
fe:9e:2b:88:7e:06:87:d5:ed:fc:11:bb:e8:49:5b:
c2:15:8d:07:54:a9:49:e9:41:89:6c:78:00:f9:30:
4d:e0:8f:00:b7:53:10:7c:2a:a7:cd:c4:45:85:1c:
b6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A2:90:E0:38:52:A4:1A:15:3D:18:5A:06:4B:70:9A:35:27:7D:D8
X509v3 Authority Key Identifier:
keyid:A5:84:1C:C7:32:AC:73:8D:C1:E3:FE:67:C1:2E:51:04:BE:F8:63:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYQcxzKsc43B4_5nwS5RBL74Y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/141a2a-194b-402b-92dd-66660b222fb0/1/pYQcxzKsc43B4_5nwS5RBL74Y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:94:43:0d:9d:85:ef:c8:ae:87:02:b4:c6:31:6a:09:51:5b:
6f:6e:e5:d1:e0:bd:7f:28:9f:98:b7:82:e1:f2:2b:0f:84:2a:
17:56:5a:1c:a4:77:a8:3d:8a:5c:91:fb:18:d7:42:c8:22:66:
5f:6c:f4:73:fe:ec:c0:b9:66:ee:38:f3:33:5c:af:f7:17:57:
36:09:25:4a:f0:85:57:b9:ee:55:c2:16:b2:6c:ef:4d:83:78:
4c:a4:2d:6d:f7:9b:50:c1:2f:10:2e:38:82:13:f6:cb:15:9c:
e0:08:f3:c8:47:da:3c:f1:71:d5:a8:fc:9e:8c:0c:d8:0d:d4:
ba:6a:8a:a8:d7:b6:33:63:7e:68:fc:70:0c:ad:a3:33:41:69:
01:f7:14:fa:15:a3:81:02:29:84:c6:96:e2:23:f9:32:1d:87:
d8:26:46:23:0b:ed:d1:9e:1d:4a:31:cc:62:3f:84:92:d1:b1:
46:26:3d:55:84:9f:55:c1:a4:1e:11:6e:69:0f:69:50:6e:16:
ea:42:4a:51:c9:1c:24:b5:eb:9c:75:44:86:b4:0f:7a:73:ec:
05:8c:df:1a:aa:d6:fb:55:0a:02:9c:72:ec:96:b9:e0:85:6e:
a6:4b:17:70:91:4e:e9:14:d6:fd:c7:89:a8:df:26:b6:3b:aa:
73:fb:7d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:52:59 2025 by rpki-client