Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: 4eJUQk8WFEQb3Fowxc63fKfR98XS/6gqUpoYIp67rbo=
Subject key identifier: EA:A1:EA:65:2B:08:4B:35:07:8C:90:DA:82:EC:17:9F:25:E2:79:ED
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 01987DF7ED87ECDED0A1238EABC10839FCBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 161C
Signing time: Wed 06 Aug 2025 06:00:56 +0000
Manifest this update: Wed 06 Aug 2025 06:00:56 +0000
Manifest next update: Thu 07 Aug 2025 06:00:56 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: I9KycW6ERvL3ssOo4C8Xh2/3Rs19gtzoyIvUjhFjQLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:ed:87:ec:de:d0:a1:23:8e:ab:c1:08:39:fc:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Aug 6 06:00:56 2025 GMT
Not After : Aug 7 06:00:56 2025 GMT
Subject: CN=eaa1ea652b084b35078c90da82ec179f25e279ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a0:e7:af:71:00:3b:31:fc:41:af:ab:5a:83:
12:f5:69:fc:88:13:65:82:0c:dc:62:0e:71:56:8a:
ee:58:0e:93:d5:94:40:a4:76:c4:b3:35:15:78:f3:
bb:4b:13:8a:51:6a:b5:de:16:7e:ed:8c:17:53:59:
5c:f5:a8:5e:e5:9b:91:46:bf:4d:b7:6d:26:bf:e0:
18:26:63:4e:f0:0f:be:b8:41:9f:6e:f0:5a:5a:05:
23:53:bb:52:d8:24:fd:37:1f:dc:2a:33:61:2a:fe:
d6:da:db:c5:46:f9:3f:71:66:7a:3a:7c:63:7f:7a:
02:4c:e1:53:df:f0:fb:dc:ac:3b:7a:44:1a:c4:12:
a9:71:cc:a8:6c:a3:5f:53:50:12:00:50:09:69:10:
6b:61:10:47:c4:cc:27:ff:b9:85:cf:2a:b7:b6:0a:
e0:ff:d7:94:8d:d9:ae:e1:d3:ad:81:c9:38:6f:06:
b8:f8:f3:d7:c9:7a:98:10:00:43:c8:68:3e:dd:32:
86:2d:48:de:ba:12:e9:b3:fc:19:39:45:d1:6e:b5:
e0:bc:fc:95:9d:8e:dd:05:38:ff:7d:59:8e:85:5c:
de:df:30:b7:e1:b4:0c:56:0a:e7:2e:0d:44:d2:dc:
1d:b6:cc:64:31:a9:69:48:ca:71:69:e7:46:b6:92:
43:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A1:EA:65:2B:08:4B:35:07:8C:90:DA:82:EC:17:9F:25:E2:79:ED
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:1a:a7:cd:57:41:8b:43:c5:29:56:42:74:e6:25:ea:79:d0:
f3:b6:5f:78:27:0e:f7:65:f7:42:91:51:d2:98:6d:02:8b:2c:
d9:91:f6:75:ef:1e:4a:84:fd:f1:1b:8a:1d:f6:77:03:bc:ea:
11:56:98:bc:b9:c6:ba:fa:18:77:7a:22:0e:cb:19:13:f7:fd:
a4:c2:99:a3:3e:2e:24:d5:ee:a2:3b:c4:58:d9:84:f4:59:69:
a8:2e:a6:0c:2c:af:0b:69:7e:e8:d4:28:b0:8d:84:50:72:38:
69:92:c6:d5:ab:65:ba:8f:e9:a5:b1:f8:47:d6:98:71:13:2e:
2c:36:a4:38:3f:b5:3e:04:6c:5a:ec:c1:55:cc:c0:d8:14:3e:
a0:e1:46:55:69:18:cf:38:4e:12:27:85:1c:4d:c0:c1:66:dc:
ee:c9:16:98:a3:9c:5b:a0:96:1b:fd:86:b6:d3:e3:79:c9:2e:
5d:25:d1:b5:79:ea:0e:3f:e0:25:99:8a:c8:ca:1e:f4:fd:19:
e2:ed:68:76:2e:93:1d:a8:3c:86:19:6b:6b:63:07:e2:4a:ee:
67:29:e0:4f:ff:f7:f5:a7:10:b2:1f:97:af:0e:2d:29:29:30:
07:14:a2:8b:5a:67:96:59:fd:5f:37:36:01:2a:77:74:32:d6:
8a:7d:ce:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:38:17 2025 by rpki-client