Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
File: PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft (raw, json)
Hash identifier: U08+6Ecvk1gUR45lV2EHuxw06lFEA8lqAmLXT0JFtb4=
Subject key identifier: FE:E6:69:41:67:63:C9:71:DB:EA:F5:56:93:1E:77:D4:46:1E:59:DF
Authority key identifier: 3D:4C:79:39:40:62:37:6B:CA:63:A6:3A:0B:F9:73:99:2A:9F:80:A2
Certificate issuer: /CN=3d4c79394062376bca63a63a0bf973992a9f80a2
Certificate serial: 01988166DE0E9FE12E3EC50791301E63A662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
Manifest number: 0E17
Signing time: Wed 06 Aug 2025 22:00:59 +0000
Manifest this update: Wed 06 Aug 2025 22:00:59 +0000
Manifest next update: Thu 07 Aug 2025 22:00:59 +0000
Files and hashes: 1: PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl (hash: 2aMlkN7tE5O62JCQ7/L8USOo/e3sDUBbTjKyXWhs+lY=)
2: yQbKC99XDhYm8cHYtCzNNvOq7pA.roa (hash: RfdjXnuMOAkekc3w4VyM+j8sngFlhqDHkrg6JoAkaVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:66:de:0e:9f:e1:2e:3e:c5:07:91:30:1e:63:a6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4c79394062376bca63a63a0bf973992a9f80a2
Validity
Not Before: Aug 6 22:00:59 2025 GMT
Not After : Aug 7 22:00:59 2025 GMT
Subject: CN=fee669416763c971dbeaf556931e77d4461e59df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:07:75:90:2e:62:c0:f7:36:a2:bc:cf:7f:7b:
f8:46:e1:fc:72:f7:f8:56:29:0f:a1:90:b5:77:b4:
1d:07:67:99:52:20:43:8b:7d:c6:c0:91:c1:2f:cb:
1f:bc:9f:f5:d4:8e:34:f3:19:a6:b6:e6:4d:49:45:
46:2c:be:1b:72:59:52:1a:64:b9:69:c5:15:52:5b:
85:fd:d0:4a:15:5f:72:c3:6e:a7:d9:76:a7:6d:ac:
ca:c9:f5:54:54:93:58:2c:c4:ae:3d:5b:3f:fd:50:
27:98:c8:a8:5f:fb:f4:f5:56:66:23:ad:f1:e6:9f:
69:ed:c7:3e:f3:2b:14:fc:b2:85:f9:d7:bd:0e:34:
f0:ce:9a:18:ef:5d:05:e6:a8:23:93:53:b8:95:20:
ed:15:28:51:c8:54:c1:87:6b:3b:ed:6d:0d:d9:70:
c3:08:02:95:68:2b:b3:f1:a9:57:c1:e1:43:37:51:
58:dd:a6:fd:f5:f9:24:cd:92:bf:7e:5f:9d:f0:a5:
6b:14:1b:2b:26:1d:e4:7c:d6:7e:f5:58:a9:85:d3:
73:c4:f1:22:6c:73:dd:22:98:b0:9c:4b:60:c7:bd:
ef:1d:86:0a:1d:e2:05:e9:9b:29:92:bb:ef:8b:41:
fc:78:b6:7d:36:03:89:b6:b5:b7:f1:b2:d7:36:f9:
16:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E6:69:41:67:63:C9:71:DB:EA:F5:56:93:1E:77:D4:46:1E:59:DF
X509v3 Authority Key Identifier:
keyid:3D:4C:79:39:40:62:37:6B:CA:63:A6:3A:0B:F9:73:99:2A:9F:80:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:27:26:18:53:fe:39:e3:41:b5:34:2c:24:3d:4c:91:a2:7d:
5a:48:af:a4:b9:6a:35:7c:73:19:31:9e:35:ae:22:56:1a:e9:
94:5e:94:bd:85:48:2a:cf:6f:28:5d:0b:21:32:19:13:af:f0:
97:6a:69:e8:8e:21:5b:a1:99:6c:f8:ef:a9:c4:31:01:4e:92:
e1:10:30:92:6d:7a:e3:45:bb:46:26:33:44:ea:d8:74:88:e8:
c1:f1:dd:06:95:ee:7c:72:54:f8:80:fe:da:29:41:02:18:b9:
3a:4e:f8:b8:70:5f:48:df:c5:d2:29:72:0a:aa:af:ea:cd:5c:
ef:32:cc:8d:58:5b:44:0d:40:b0:bc:23:39:45:1a:7e:62:59:
9d:3d:c2:9a:dd:62:81:55:fe:30:a8:55:72:2b:28:b5:80:ed:
c4:7f:83:08:fe:ac:37:d7:e1:ef:c1:c8:3b:93:7a:ea:00:8a:
da:49:6b:e8:8b:33:82:72:de:c5:8d:57:e7:ec:89:ba:78:7d:
f5:50:de:6b:76:a5:74:6e:25:3a:87:77:3d:1c:ca:96:61:8c:
41:b0:55:77:af:b3:ac:2a:23:96:bb:f1:7e:f3:70:4c:d2:cd:
3b:39:1a:78:dc:f6:9d:e3:c8:80:f9:f9:7d:56:15:5d:40:00:
95:62:66:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:35:35 2025 by rpki-client