Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: r9ycWhJMoNE7XnAx+mUP2Hx2L/TNmRxM9jD2Ca9Wn+E=
Subject key identifier: F4:5B:E0:0F:35:F5:A7:11:36:75:AF:1C:DA:43:F4:21:3B:F2:FA:E5
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 01989110FC6118255A7EB9591D6F70B9985F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 0139
Signing time: Sat 09 Aug 2025 23:01:06 +0000
Manifest this update: Sat 09 Aug 2025 23:01:06 +0000
Manifest next update: Sun 10 Aug 2025 23:01:06 +0000
Files and hashes: 1: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: GKeWCmr8vuKWHFMnP9wELs7KYo4fVLHxNZMeGskobM4=)
2: QmVb0SoXYnlMedY0w_3_iXHpV1g.roa (hash: a3gXOD/NjdWHnE6P9SQzEQhqDOtbuugfMMDorP0aI2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:10:fc:61:18:25:5a:7e:b9:59:1d:6f:70:b9:98:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Aug 9 23:01:06 2025 GMT
Not After : Aug 10 23:01:06 2025 GMT
Subject: CN=f45be00f35f5a7113675af1cda43f4213bf2fae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7f:5d:7b:6d:34:05:d6:32:57:28:fa:81:27:
fd:e4:7c:91:c0:e2:6f:ff:73:be:61:52:6a:7a:43:
ae:d8:f7:66:d4:2b:24:52:da:bc:90:94:ee:a5:0f:
5f:e2:35:1c:0a:ef:b1:e5:6d:5c:3e:07:59:ec:53:
6f:2d:d2:61:a7:65:8d:d9:63:93:19:57:c8:bc:2a:
77:fe:8d:d4:bf:cc:1a:9f:c2:b1:e5:b2:1d:4c:47:
b6:1e:2f:02:25:9c:8c:74:17:b1:74:5e:79:78:f0:
2e:c2:27:27:c0:1c:90:6f:dc:d0:73:7b:e8:43:ad:
a8:14:7f:94:8b:ab:54:ca:46:68:72:6f:5d:bc:82:
b2:76:ee:99:d3:d5:69:f4:82:41:da:d2:31:f1:91:
34:1e:5c:85:14:2a:64:ec:06:8c:d3:bb:67:2e:89:
56:9e:f4:69:27:2a:a9:66:be:bb:03:f3:4c:a1:1c:
89:93:6b:11:cc:88:51:85:77:63:c5:34:7e:0c:1a:
e4:b5:74:5a:0a:6e:f1:0a:b4:8b:74:5a:7b:88:ae:
89:23:74:94:bb:be:7b:c8:f5:c4:77:d0:60:b6:87:
83:90:de:73:90:e5:b5:7f:26:3d:4f:50:3e:27:92:
5e:16:a7:80:26:88:bc:29:84:2e:b2:68:31:fc:4f:
83:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5B:E0:0F:35:F5:A7:11:36:75:AF:1C:DA:43:F4:21:3B:F2:FA:E5
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:46:6c:e7:94:ba:2a:c8:cb:6d:2c:06:52:98:f5:74:3e:c9:
1b:8e:cc:0c:ce:73:b6:0b:c7:17:c9:9e:98:be:d1:1f:81:9f:
cc:e7:c7:b6:de:61:dd:29:2b:3c:41:b1:14:11:b7:20:9a:3b:
0e:14:89:da:6e:2e:7e:bd:9e:38:05:44:d1:98:2d:6d:1c:3c:
0c:2b:71:e4:e3:ea:5e:d1:85:0f:b9:5d:5b:1b:ab:ad:cf:0a:
35:f9:81:45:03:eb:2b:23:cc:e2:d9:f8:a6:51:de:eb:f5:15:
45:5d:60:3b:f1:75:e7:5b:db:a8:df:51:11:d5:38:b0:05:d6:
b3:86:6c:bf:d8:1e:03:6b:2d:4b:ef:64:49:d2:8f:87:dc:05:
e8:e0:2b:83:de:b1:91:53:e5:13:ca:6d:46:4b:92:91:32:11:
8f:e4:20:50:24:fc:35:61:0e:d1:6a:ab:0a:9e:d6:49:af:0c:
44:54:04:ec:b7:81:e0:0a:69:05:0e:f5:e9:d1:ff:36:2d:39:
17:98:c2:62:5a:b0:8d:6e:5b:c8:dc:25:73:a9:d6:08:26:bc:
7b:9f:10:63:cf:a7:78:50:83:2e:a7:6e:01:ee:97:cb:31:53:
d7:c8:55:cb:d5:7f:de:68:35:ba:8e:00:bb:8a:27:63:08:22:
eb:76:a4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:39:39 2025 by rpki-client