Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: rezEzDJxdu9DWGFC0uBvYr3ZOa6ZReV8wOoRP9yyaLM=
Subject key identifier: E3:EB:8B:A1:E5:EC:4C:C1:40:E9:6B:FC:3D:84:2B:FA:FA:C6:18:98
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 019A522CD257B65148764C27A033CC9D955B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 11E2
Signing time: Wed 05 Nov 2025 04:01:00 +0000
Manifest this update: Wed 05 Nov 2025 04:01:00 +0000
Manifest next update: Thu 06 Nov 2025 04:01:00 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: uux6ofr/lpFx/znDbkyUIh0vXgJbEtXpRRZFcmXq4hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:d2:57:b6:51:48:76:4c:27:a0:33:cc:9d:95:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Nov 5 04:01:00 2025 GMT
Not After : Nov 6 04:01:00 2025 GMT
Subject: CN=e3eb8ba1e5ec4cc140e96bfc3d842bfafac61898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e4:18:4b:70:3c:08:1a:d1:0d:7d:21:93:48:
d2:a1:31:86:57:cb:38:01:5a:b2:fa:55:95:61:39:
43:f6:a4:8f:28:6c:f6:15:0c:ed:09:74:05:a3:a7:
48:89:2a:40:15:aa:b9:c7:c2:2c:b2:0b:8f:37:44:
df:84:23:00:9c:c2:35:93:5b:11:2e:95:1d:95:f7:
0c:1e:b9:7f:be:be:d3:fd:ba:83:b2:08:e1:3c:33:
b6:f2:e9:1c:8b:f2:eb:b3:5a:5d:da:ab:95:71:98:
a6:80:ce:9d:2c:94:71:86:ae:97:56:3f:96:7e:67:
09:70:63:70:d0:24:21:45:21:35:7b:f0:9b:9a:8e:
dd:26:b8:8a:da:75:a2:6e:b6:b6:86:4e:c7:7a:69:
fe:8e:5c:72:e3:9d:8d:b9:0a:c6:b3:45:29:a5:8b:
2b:25:51:9e:70:6d:d2:0e:6b:f4:a3:8e:e2:66:e8:
d7:6a:9d:5e:2d:66:b8:c8:10:30:03:2e:58:97:70:
79:0b:3b:ca:83:63:4a:72:4a:05:e6:38:1a:c2:8c:
c4:1a:a3:66:cc:d1:a1:8c:fe:9c:15:58:94:95:95:
fd:9d:16:8e:a3:69:1c:50:49:5c:51:b5:59:67:c3:
b2:e0:22:20:68:32:7b:11:b4:6b:fb:86:2a:1c:dd:
2e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:EB:8B:A1:E5:EC:4C:C1:40:E9:6B:FC:3D:84:2B:FA:FA:C6:18:98
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:24:11:42:3c:e1:77:b9:71:81:db:79:6b:5d:e9:a0:5a:b3:
c3:50:c0:13:c1:2d:1a:59:31:3c:01:21:f6:48:d7:d1:e2:33:
66:a8:a4:6a:b9:53:24:6b:7b:50:ca:b1:7b:cf:57:d7:60:1c:
b0:39:0a:a1:67:69:81:94:4e:2a:cb:a3:f8:0e:06:76:b2:df:
e4:c6:dd:a4:48:65:91:10:fd:69:a2:84:49:80:5b:83:16:a5:
11:74:e5:16:6b:61:a9:f6:c5:22:92:b9:5b:0b:dd:b5:f3:29:
c9:36:71:44:f7:25:08:a1:dc:ba:10:c4:1f:1b:80:73:93:7a:
35:e8:2d:43:08:21:5d:35:43:d6:52:d6:55:b6:6d:28:df:cc:
a9:52:65:73:6e:5d:60:17:cc:0d:dc:0a:8b:65:b9:65:5d:22:
55:30:41:f4:75:08:da:99:92:2f:cf:d6:23:5e:0b:b3:53:46:
72:fe:af:a0:22:33:50:52:49:37:0f:cc:e1:d0:62:4a:dc:6e:
4b:ce:20:24:8c:14:33:7b:94:81:b7:2b:28:ca:cb:26:0e:a3:
f9:d3:2e:28:2c:64:56:bd:47:e0:99:28:58:67:ab:f0:8f:45:
d7:05:f7:4b:bf:7c:13:ba:10:08:11:f3:3c:77:6b:9f:a1:c1:
7c:cd:72:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:44:28 2025 by rpki-client