Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
File: pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft (raw, json)
Hash identifier: CvBdiD+Aph5c6ERAR5ds0ZG+n2UeDS1zuY8FCgCtoco=
Subject key identifier: 27:26:3F:8F:FA:E5:8F:7A:B8:91:BE:8D:00:2E:CA:27:E2:2C:29:24
Authority key identifier: A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
Certificate issuer: /CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Certificate serial: 019A4F9968681EEAA892F733D7900C458080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 16:00:45 +0000
Manifest this update: Tue 04 Nov 2025 16:00:45 +0000
Manifest next update: Wed 05 Nov 2025 16:00:45 +0000
Files and hashes: 1: o-nYlXPYTvbWycHnP4jG4hys78s.roa (hash: +9u5uc7wAwLvJQwWxklCfmQHya0NysgfSBmasNGP6Yk=)
2: pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl (hash: VmC2/BSgFJg2SSYXhGaTYmyI7cCXojlp2cfKjejD2cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:68:68:1e:ea:a8:92:f7:33:d7:90:0c:45:80:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Validity
Not Before: Nov 4 16:00:45 2025 GMT
Not After : Nov 5 16:00:45 2025 GMT
Subject: CN=27263f8ffae58f7ab891be8d002eca27e22c2924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:18:ac:80:39:83:65:9c:0c:d4:9f:4b:9b:d9:
46:47:65:b8:c9:0c:80:f5:cd:f8:51:cc:4f:9f:65:
e8:f2:33:3d:10:9b:14:b4:c0:a0:54:79:ca:48:7d:
57:9f:ef:eb:ae:59:f8:19:85:78:b1:16:c7:03:d6:
79:18:94:7c:0c:48:68:7e:b7:4d:23:3c:c3:3d:44:
0a:1b:19:4f:a0:6a:60:20:cc:82:c6:76:fe:e0:32:
32:42:70:8b:11:04:1c:d0:8c:97:cf:b5:6e:51:d1:
8b:2b:39:7a:c0:58:6f:61:5b:5b:30:84:d5:b8:bf:
3a:d5:23:5a:d1:08:b6:8a:46:31:07:11:c2:f4:2a:
a9:bb:4e:ec:65:a2:a0:67:eb:8d:95:16:05:b3:4c:
e3:61:b4:d6:a1:6c:9f:c9:bc:a2:88:3d:ec:4a:f8:
67:49:c3:3a:a2:98:dc:fc:04:6e:06:02:26:38:db:
ec:1b:60:10:1c:cc:21:87:d0:5f:bd:b8:9d:6a:f4:
86:f5:d3:23:01:ba:87:9b:81:63:03:62:41:1d:bd:
c9:b1:00:ef:67:70:e0:2f:41:85:76:74:a2:76:33:
38:0e:87:34:5b:4e:8c:9c:6e:30:48:3c:4f:57:f5:
ef:89:3f:ca:8d:6d:3d:90:a4:f0:f0:57:a8:7a:d3:
44:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:26:3F:8F:FA:E5:8F:7A:B8:91:BE:8D:00:2E:CA:27:E2:2C:29:24
X509v3 Authority Key Identifier:
keyid:A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:2b:93:cf:3a:54:94:2d:bc:b0:0f:df:92:20:b9:09:c0:62:
85:31:75:fc:59:1c:5f:99:49:8c:c2:8d:8c:60:66:a9:a0:18:
8b:f9:15:ed:da:e8:5f:0b:97:fa:8e:d8:ef:90:19:20:00:43:
3e:b5:0b:4c:30:ef:57:7c:af:bc:53:6c:5d:d7:f9:1f:af:be:
76:66:9b:d9:3a:15:ba:ad:a5:13:84:93:f7:2e:30:2b:f5:0c:
52:65:53:d4:13:b8:95:69:30:a4:a0:6b:1d:02:b2:8c:bf:99:
ac:c1:b2:e2:74:0c:88:35:80:9b:77:fa:46:b3:bb:0b:5f:c8:
e5:16:35:b6:01:46:e3:95:fe:29:8f:fe:c7:55:8e:52:da:fa:
7a:e9:d7:84:ae:b9:8a:36:41:3c:b7:63:47:03:b4:c8:55:08:
15:1a:a9:bd:22:45:cd:74:e5:a6:af:d2:53:a5:bf:0d:52:5f:
90:52:ad:d7:bb:fd:40:72:e8:ba:3a:6c:4d:61:27:f3:cb:30:
b5:76:b3:49:66:c9:88:81:d6:fb:5a:8d:ac:85:64:00:ce:31:
42:65:b7:b8:02:f1:5f:ca:4a:78:26:4f:ea:a6:f2:bb:13:5b:
39:2f:bc:8c:08:b9:17:a1:20:bc:ef:c3:07:e6:45:7e:44:66:
65:75:02:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:18:10 2025 by rpki-client