Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
File: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft (raw, json)
Hash identifier: hSPoeOPMnh4c/b2fa9Nu+t2/cCWrAXfWFI4mj8/B0f8=
Subject key identifier: 4B:63:CA:75:C2:02:AC:5C:2A:E6:73:A3:7B:A9:1C:69:D8:23:8E:9E
Authority key identifier: 3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
Certificate issuer: /CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Certificate serial: 019A4F62E95A59AAA8E5051ADE7361E33C93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
Manifest number: 0E87
Signing time: Tue 04 Nov 2025 15:01:13 +0000
Manifest this update: Tue 04 Nov 2025 15:01:13 +0000
Manifest next update: Wed 05 Nov 2025 15:01:13 +0000
Files and hashes: 1: 9-fbWWjNC4mOvVefigl9UV2UFJs.roa (hash: tWgz0w4Sqnk4S40gqRVMtTMDJNe1eyYOZFDB5oZ2xOA=)
2: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl (hash: YmJsER/BwPwMwaZMc9+lkn9na9DGX9KzeaSJlU9jHCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:e9:5a:59:aa:a8:e5:05:1a:de:73:61:e3:3c:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Validity
Not Before: Nov 4 15:01:13 2025 GMT
Not After : Nov 5 15:01:13 2025 GMT
Subject: CN=4b63ca75c202ac5c2ae673a37ba91c69d8238e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c8:e3:ad:7a:26:cf:4a:54:ae:d7:3d:01:82:
96:14:54:3e:69:68:a2:71:c8:6a:4e:28:6e:b3:8d:
51:82:5c:22:03:b6:e4:a3:e5:17:df:20:78:6c:4a:
35:07:14:9c:ee:36:d4:72:1d:1e:00:69:78:b9:d9:
53:fc:3b:2b:66:be:ae:69:2b:61:53:7e:8f:5d:b3:
a9:c7:33:d5:00:51:1b:8f:56:e6:d9:2b:37:f7:7f:
a9:ce:f5:24:0b:c0:d3:bd:95:b1:ef:26:e4:6e:db:
81:d9:23:1e:a0:7f:f6:4b:0d:1e:db:6b:5a:1a:02:
b3:ea:de:06:57:2e:20:79:c3:20:dd:d9:4f:66:d1:
61:a7:84:d0:e8:ec:e6:c4:73:12:47:01:2c:d1:b3:
67:a6:db:b1:04:4f:e6:b3:a2:1f:d0:ca:6e:e8:41:
e0:b7:08:a7:27:89:ca:3f:94:53:21:05:9d:5e:be:
a7:a7:95:8d:c0:49:b1:6b:fe:21:b0:46:84:c4:73:
1a:c4:f5:ad:29:9a:a0:39:a4:7d:47:df:e5:de:54:
64:9e:88:fd:3f:32:7b:db:fb:4c:52:47:76:57:c6:
54:68:24:3d:67:4e:33:50:95:8d:1a:2b:c1:51:cd:
44:30:bc:89:73:98:3e:0c:98:e6:53:c4:4f:1b:6b:
9b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:63:CA:75:C2:02:AC:5C:2A:E6:73:A3:7B:A9:1C:69:D8:23:8E:9E
X509v3 Authority Key Identifier:
keyid:3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:e3:b4:22:c6:15:c0:eb:93:5e:b0:b2:e9:df:12:7e:8a:b8:
1e:63:8e:17:8c:0f:fa:eb:ff:ff:bc:74:66:25:dd:07:da:e2:
4f:2c:f0:cf:11:f4:db:5f:09:9a:d5:c6:93:c0:d3:11:d9:2c:
90:11:ee:ff:64:3b:22:43:5b:4d:2b:d0:38:14:ee:28:cf:d6:
b3:d4:c4:54:3a:cf:f8:ce:f6:50:05:29:9f:77:4f:cb:9a:2d:
b1:b1:bf:52:a6:f8:5c:1d:5e:d4:4c:a6:c0:e6:31:ed:fc:3a:
6f:af:44:b9:43:9d:66:60:ac:a1:23:b8:5d:95:06:31:03:52:
ff:43:0d:ca:f9:19:be:13:25:7f:df:9c:e3:08:dc:e8:6c:08:
24:cf:d5:ac:b8:c3:ea:82:fd:de:d9:da:54:3e:18:54:89:e9:
f9:4c:da:ad:20:f4:ec:a3:ae:da:7e:da:9b:ae:d1:66:b2:fa:
48:87:07:62:a3:68:70:39:b4:65:d4:f4:fc:47:0d:fa:d9:42:
65:2a:af:f4:fc:e9:7b:62:79:82:c7:a1:fe:40:7f:4a:2f:66:
49:89:f0:5d:78:2f:a5:43:cb:1d:35:9d:79:46:e2:af:4f:95:
ce:90:85:b4:ba:d7:b4:f8:1f:32:e2:ed:a7:24:16:cd:30:b6:
29:89:06:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:57:52 2025 by rpki-client