Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: qzP9Fo4ML7ZmZSmC8jQK7rO34MvHjh76sDA8Bmk/awA=
Subject key identifier: 3B:3A:5A:A5:85:47:6A:0D:33:A7:10:09:96:3B:3B:C0:A3:F0:28:FE
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 01988DA2570E4B14D1E97566C7C442573A4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0C33
Signing time: Sat 09 Aug 2025 07:01:23 +0000
Manifest this update: Sat 09 Aug 2025 07:01:23 +0000
Manifest next update: Sun 10 Aug 2025 07:01:23 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: 9rl3fFrhRWcdqnhCQHiC0bOJnlRzm1gSTER5EpKMnUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:a2:57:0e:4b:14:d1:e9:75:66:c7:c4:42:57:3a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Aug 9 07:01:23 2025 GMT
Not After : Aug 10 07:01:23 2025 GMT
Subject: CN=3b3a5aa585476a0d33a71009963b3bc0a3f028fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:03:8e:b2:ff:f2:02:1f:77:d0:5a:f5:e6:77:
c9:75:e6:a4:a4:b1:f6:9f:3a:de:f5:a2:85:5c:8a:
70:7f:58:ee:e9:d6:e5:27:23:19:4c:e5:9e:71:a4:
db:5d:54:ab:3a:9e:d6:a6:c7:36:8c:eb:62:48:fb:
7c:51:a3:44:2b:f1:8c:ea:03:8b:3e:95:0c:76:34:
94:40:08:62:78:37:b1:a0:5d:bb:10:66:4f:bc:e4:
78:fb:46:49:bc:c8:2f:f2:c3:4e:96:75:3e:00:f6:
5a:a0:51:c8:50:bc:de:93:14:6c:e1:33:c3:62:05:
ea:e3:e8:d9:2b:d9:94:9e:11:43:c5:9e:6c:75:8d:
bd:08:8e:3e:92:4e:ec:18:ca:6b:57:18:8a:51:f4:
2d:5e:87:5e:ff:06:f5:4a:fa:06:3c:72:84:3a:11:
8e:8f:48:1d:38:b6:d8:62:f3:dc:8c:3f:1c:7e:65:
27:fd:ee:08:11:68:0f:b2:8b:68:c6:e9:ad:5c:7a:
e3:2c:22:94:c9:7b:a2:fc:fe:d2:7d:8f:ca:3e:3d:
e7:78:32:2f:3b:8d:81:4a:28:0d:b5:2d:01:9c:74:
14:c1:73:72:52:d8:9f:05:d8:1c:d5:fb:35:05:94:
6a:86:01:3a:d0:df:3f:a3:65:25:55:e7:24:6b:78:
4c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3A:5A:A5:85:47:6A:0D:33:A7:10:09:96:3B:3B:C0:A3:F0:28:FE
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:58:64:ae:bf:63:c6:aa:0a:26:7b:41:5b:11:7a:e4:7c:50:
3c:e8:c7:77:c1:e8:01:25:8c:8e:40:e9:df:4d:d0:d1:ad:d3:
f7:68:07:74:f5:b9:26:e4:f3:13:5a:f9:f4:d3:46:18:37:1e:
b6:ed:c4:94:83:76:4c:d6:af:33:ca:73:fa:b6:60:07:d7:f4:
3f:85:05:ae:20:12:22:14:b7:94:c4:dd:38:f5:70:9f:7f:f6:
80:3a:d3:69:1a:be:9d:5e:90:2b:86:da:04:3c:b4:f3:61:a3:
1d:7e:31:b2:6f:2b:28:12:da:ac:36:c5:3c:46:62:2f:70:66:
91:4f:82:87:f0:5e:e9:8e:a9:7d:cf:11:dd:42:72:67:6b:26:
1b:54:50:57:2f:c8:de:62:71:4c:18:d5:c7:5d:04:c7:86:bc:
d7:37:1c:0e:41:db:d5:e2:5f:10:60:0e:16:88:a7:ac:e8:61:
17:fd:0d:be:b4:4f:44:91:46:d4:56:04:60:80:b7:61:18:f7:
1f:89:c9:b0:5b:56:47:b3:c3:b9:c2:2d:5e:46:0c:e3:9c:49:
4e:cc:da:18:64:60:b6:d6:c2:21:f0:f0:e2:6a:99:74:61:54:
44:ec:38:74:65:39:cf:3d:cf:61:64:ea:f2:8c:5b:0b:49:00:
c6:7f:eb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:39:42 2025 by rpki-client