Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json)
Hash identifier: h4swlib8lEjl6rkX6o5US/UXdrtd5xbBtsX92k5r4XQ=
Subject key identifier: 8F:16:3A:69:21:91:52:56:BC:46:AD:B6:CA:67:DB:D5:D1:BE:18:FC
Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Certificate serial: 019A4DE1BDA8A2F97A09FC7D3FC6C46D5427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
Manifest number: 0B14
Signing time: Tue 04 Nov 2025 08:00:31 +0000
Manifest this update: Tue 04 Nov 2025 08:00:31 +0000
Manifest next update: Wed 05 Nov 2025 08:00:31 +0000
Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=)
2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=)
3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: o1H+67hweljPCmoKycYX+JC+DJ4nuy+GHt7N4zTA56c=)
4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=)
5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:bd:a8:a2:f9:7a:09:fc:7d:3f:c6:c4:6d:54:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec
Validity
Not Before: Nov 4 08:00:31 2025 GMT
Not After : Nov 5 08:00:31 2025 GMT
Subject: CN=8f163a6921915256bc46adb6ca67dbd5d1be18fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e7:b3:25:09:63:e4:ce:09:34:9b:d3:e9:c6:
47:25:27:17:2e:7f:e8:c2:89:de:76:e6:cf:1d:b0:
0d:34:44:57:44:48:c5:53:e8:c9:8c:92:4d:6e:f4:
59:4d:d9:33:e9:8f:4e:72:1f:52:ba:ef:8e:45:5c:
de:c0:a2:b3:4e:62:a0:31:53:38:24:b6:d6:88:9e:
fd:c2:40:fa:f8:25:3b:54:35:90:23:71:76:33:46:
6f:d8:cf:a4:10:e4:f8:c6:42:45:d3:ed:9f:5d:8a:
da:4e:6b:14:2a:33:cd:ea:2c:71:07:ef:3e:b5:97:
91:ec:74:06:12:92:5d:23:c9:d5:fa:8a:c0:9d:8e:
b3:58:c5:45:50:f7:44:c1:b8:a1:34:ec:2b:bc:c7:
84:b8:22:c9:d6:29:fa:ed:84:80:87:be:21:c6:b5:
11:80:22:bf:05:2d:d3:ec:a1:2e:f9:fc:f1:1e:b9:
d5:cc:94:ea:0f:c9:bc:36:f4:41:37:ca:b1:de:15:
65:86:ac:1e:f9:9d:77:42:5b:cc:28:9e:f6:d6:0e:
6f:7c:d4:43:01:de:9b:7a:e2:bb:12:4b:28:7e:6f:
6a:01:09:eb:b9:41:a2:12:2c:c2:d6:ba:e3:33:7f:
96:e4:e3:eb:45:74:82:f5:9f:b7:9a:94:78:37:53:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:16:3A:69:21:91:52:56:BC:46:AD:B6:CA:67:DB:D5:D1:BE:18:FC
X509v3 Authority Key Identifier:
keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:fa:d2:c1:a5:4e:fd:a4:90:9c:16:a8:98:99:bb:b9:fa:19:
cb:1d:63:13:e8:7f:88:e8:ac:e8:ce:17:cd:ee:fd:12:d5:8c:
5d:fc:46:5b:d2:f2:e0:87:8c:e2:54:eb:ce:b3:2d:6d:32:98:
58:ae:87:be:62:f5:5b:46:71:1b:fd:40:f6:10:40:98:e7:76:
ef:81:ae:a5:a8:15:ea:fa:cd:ca:a9:65:14:d1:bb:f3:fa:31:
05:83:74:fb:ed:15:c3:55:56:89:7a:c8:d6:66:46:2d:2f:68:
4b:ed:cf:58:1e:03:5e:52:d2:ef:d8:3e:7c:20:d2:cf:02:87:
ee:2f:46:87:c4:71:22:18:e6:62:d6:31:08:df:a3:c5:f5:07:
2f:8e:e4:7b:af:0b:7c:52:71:2b:fa:65:82:91:9b:16:6f:16:
48:dd:d7:31:e2:90:23:2a:2d:34:f7:69:f3:ad:ca:0b:04:27:
a1:87:2b:5a:3e:19:b7:da:de:7b:8d:1f:60:2f:c6:ea:e1:e6:
ea:e8:0c:24:5a:a4:8a:90:6b:66:f3:c4:35:01:8f:50:55:ef:
49:49:59:41:94:23:36:46:35:61:af:88:0b:7f:83:35:fe:a9:
10:bc:71:da:85:1c:25:88:8e:b1:2b:1a:85:32:60:58:4e:ed:
eb:ca:64:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:49:35 2025 by rpki-client