Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: 14xBpx9Q/xCrqJaEllO6j5TOziBrIFUMAwdvj4MYlTg=
Subject key identifier: 6C:ED:47:CE:12:5D:25:11:64:F5:37:7B:C8:D8:0B:A7:4B:EC:92:31
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 019892C9622E77F7FA5EC54B0FA609120942
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 0901
Signing time: Sun 10 Aug 2025 07:02:08 +0000
Manifest this update: Sun 10 Aug 2025 07:02:08 +0000
Manifest next update: Mon 11 Aug 2025 07:02:08 +0000
Files and hashes: 1: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: oK10G0qXvtj5pyGDyiEv+7M4GeFapOpNUkIdec/umYg=)
2: rWk5sIUEQt5GM5tD9jvlVGxlmoc.roa (hash: bdSHmybqlxfqe2LDlmT/vhR2hatifsBsFgj+STLVUXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 07:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:c9:62:2e:77:f7:fa:5e:c5:4b:0f:a6:09:12:09:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Aug 10 07:02:08 2025 GMT
Not After : Aug 11 07:02:08 2025 GMT
Subject: CN=6ced47ce125d251164f5377bc8d80ba74bec9231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6a:9f:9a:c3:0a:2d:58:43:a8:4f:ee:5c:3d:
eb:c1:45:4c:45:40:a3:63:b6:1a:8c:36:98:1c:89:
d0:a4:b8:a4:48:7b:36:d8:6a:5f:03:b1:30:49:45:
76:0b:9c:a1:7b:0d:08:9d:ab:84:5c:70:ab:6c:1c:
3d:f8:56:75:93:86:cb:08:96:bd:2d:78:de:42:02:
7b:25:04:75:79:07:29:f4:8f:e8:e1:b7:81:e9:6d:
2c:b3:e4:66:e2:2a:45:cf:33:78:2c:be:3a:0d:9e:
15:c5:36:92:40:a2:f1:61:04:c2:f8:f3:d9:fe:64:
a4:19:cc:68:0f:6b:04:45:f6:ba:2d:2e:df:f8:3c:
c5:08:99:be:08:85:52:c9:a1:18:5c:24:37:39:a3:
29:b2:72:ff:ea:a9:24:fa:ac:1a:15:71:91:76:2f:
21:4e:bb:27:d8:e8:40:00:75:d2:6c:02:91:6b:f4:
15:dd:ab:bf:02:9a:aa:70:0f:ec:e2:c4:ea:f3:1b:
ae:20:74:23:36:7f:7b:dc:48:86:0d:d1:7a:e6:eb:
b7:5a:1b:b2:5f:e5:26:cd:c2:13:3c:41:82:c6:81:
b5:bb:59:30:34:04:fb:e0:69:68:22:8f:3e:a0:2c:
43:dc:c0:c4:54:11:89:05:cb:af:1c:81:05:31:c2:
aa:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:ED:47:CE:12:5D:25:11:64:F5:37:7B:C8:D8:0B:A7:4B:EC:92:31
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:49:1c:95:b4:09:18:d2:fc:8b:3f:2d:65:89:05:56:18:76:
7a:f6:36:07:47:63:6e:9c:c8:7f:6e:1d:8d:f2:6c:8d:ce:03:
f2:91:be:89:19:24:73:b6:71:7b:56:7a:c5:57:aa:00:d5:a7:
9c:38:72:0a:72:65:18:d5:78:42:e8:9a:4f:0e:c7:0b:e6:01:
11:fb:c7:d3:9d:f7:0d:96:cb:d1:db:02:ee:a0:05:bd:11:99:
e1:4a:26:52:1d:22:82:80:39:73:5f:33:de:3b:c7:59:a7:c8:
c2:1a:a3:30:e1:be:11:b6:1f:bb:18:84:3c:e5:c1:8b:d0:fd:
c9:fa:f2:3b:fd:a0:14:6e:48:2c:d9:f0:75:7b:10:72:39:f7:
a3:26:04:0c:dd:bb:e1:79:99:54:40:92:99:c2:da:12:ff:00:
51:8f:7a:14:1c:86:f4:f0:88:d0:9f:71:32:f0:cb:8f:10:21:
0f:fb:d1:01:8d:5c:65:b1:c0:03:bc:c7:65:05:20:9c:f3:3e:
80:08:02:16:a7:df:08:d5:2e:c8:28:e7:e4:6b:b7:69:b2:3e:
0b:da:63:1c:5b:a6:3c:11:ba:b6:9c:07:5f:73:dd:73:9a:6f:
1d:c7:fd:63:15:3b:48:37:a0:f2:26:93:a1:f4:3a:bd:e3:4b:
70:7d:15:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:02 2025 by rpki-client