Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: 1yfsQQ1qimQUJWE3CLZRk/gftCwOUWAS7V9uFA2LINo=
Subject key identifier: 38:4D:42:A2:4B:70:AE:10:D5:A5:4D:56:C2:D8:0A:75:28:02:C0:EA
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 019A52D172269F9F1CC1CBD0ECEA0EE077D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 13A4
Signing time: Wed 05 Nov 2025 07:00:49 +0000
Manifest this update: Wed 05 Nov 2025 07:00:49 +0000
Manifest next update: Thu 06 Nov 2025 07:00:49 +0000
Files and hashes: 1: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: a9sXgq+neoR7d5niyGaa9+IsabSaTQREA7Qr2dStfB0=)
2: f4uXUqTz6EMLfxnYPkQ3ht2dRz0.roa (hash: WwKae4E8mCPYphGvXV9B/QCbohcENp4wZ1ekmYvPPps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:72:26:9f:9f:1c:c1:cb:d0:ec:ea:0e:e0:77:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Nov 5 07:00:49 2025 GMT
Not After : Nov 6 07:00:49 2025 GMT
Subject: CN=384d42a24b70ae10d5a54d56c2d80a752802c0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:45:67:b7:2f:72:a9:65:7b:14:c1:ba:81:ea:
01:01:e0:96:40:de:f0:03:d0:c6:36:98:05:a1:5f:
b8:ca:23:03:3b:da:93:fd:a5:83:bf:59:6a:fe:1c:
60:fd:f5:0a:b5:36:90:67:0e:99:d3:b7:a6:33:4f:
b7:50:ee:b3:26:4a:75:50:3d:17:f1:53:94:2f:5d:
24:af:a1:3e:4d:ca:3e:10:47:01:eb:32:cb:09:dc:
01:90:02:4a:88:85:f2:70:b4:ee:40:3d:ce:05:ca:
37:d9:7d:d6:c1:75:91:11:ca:ad:08:e1:3f:63:7c:
05:4c:e7:0f:6f:cb:95:9e:f8:d8:99:19:90:e0:0d:
29:70:3c:05:72:c9:41:9d:25:99:7d:09:e1:ea:80:
d5:3c:a9:46:e6:0c:f0:d9:93:ad:97:c8:b3:89:d6:
1f:d9:07:e1:2d:e0:1b:b0:53:7b:f4:48:d6:9a:8e:
87:d0:f7:be:21:d2:14:d8:cd:79:28:3d:e5:3d:fb:
47:89:d6:59:29:7d:6f:b8:5e:1e:b5:14:83:66:13:
80:6e:bb:2d:61:e7:85:f6:9f:21:7b:c3:40:82:c1:
ad:a7:2c:26:72:08:c3:11:2a:8b:25:d9:1b:42:9b:
f4:ef:08:31:3b:0f:cd:b2:a4:56:7b:99:e4:55:bf:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:4D:42:A2:4B:70:AE:10:D5:A5:4D:56:C2:D8:0A:75:28:02:C0:EA
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:f4:89:43:2d:a7:01:c2:9f:95:21:d5:5d:23:2f:48:a6:e1:
f5:57:5c:67:a4:ee:c8:33:e5:19:53:50:0a:f0:b0:91:d8:a5:
a6:23:9a:c9:6e:a0:1c:d2:74:34:a2:f7:76:8e:fc:5c:06:3b:
f4:05:03:52:f5:17:f9:8c:0f:1c:22:77:e9:1e:b4:b9:a4:bf:
9c:1a:b8:1e:b5:f1:6d:7a:cd:05:18:e6:c4:67:7f:b0:4d:fc:
e2:4f:0d:1e:25:d0:a0:20:31:cd:a0:a7:4d:e9:ed:15:77:8b:
ef:87:60:34:0b:c0:ea:ad:e5:b8:d8:87:8c:79:9e:07:88:1e:
35:96:ec:2d:25:a9:4b:32:33:e3:91:e8:8c:e6:db:6a:59:03:
b2:76:63:4d:de:72:f3:67:80:cd:43:80:59:b2:07:6b:8b:35:
c3:e1:fa:dd:ab:85:99:51:22:aa:a6:82:82:28:45:64:86:9c:
c8:37:94:17:de:7b:9c:33:a2:cd:f2:c5:e7:93:5c:64:83:26:
7b:b8:05:e4:df:66:8a:37:bf:0a:98:5b:97:62:94:f7:2b:96:
af:69:45:77:95:a9:4d:17:c9:c7:92:89:5f:a2:8b:0f:03:79:
21:9a:4b:43:4a:f2:2d:8a:8e:ed:44:a7:e3:75:b5:c7:4b:de:
c8:92:28:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:36:41 2025 by rpki-client