Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
File: pxTGIdV85C4lCT7OhXvbh146zqo.mft (raw, json)
Hash identifier: r2Z4uguX+lqeAznKoPvrrhXx+I/q9MnA1XhT39TfNvM=
Subject key identifier: FB:96:2B:EA:B3:3F:DA:C8:F6:74:93:54:66:13:EC:85:B1:91:E3:E0
Authority key identifier: A7:14:C6:21:D5:7C:E4:2E:25:09:3E:CE:85:7B:DB:87:5E:3A:CE:AA
Certificate issuer: /CN=a714c621d57ce42e25093ece857bdb875e3aceaa
Certificate serial: 0198820BD3896D1F06975F1A9A3D90252C80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxTGIdV85C4lCT7OhXvbh146zqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
Manifest number: 02EB
Signing time: Thu 07 Aug 2025 01:01:09 +0000
Manifest this update: Thu 07 Aug 2025 01:01:09 +0000
Manifest next update: Fri 08 Aug 2025 01:01:09 +0000
Files and hashes: 1: pxTGIdV85C4lCT7OhXvbh146zqo.crl (hash: pH5bQiDyNil0L3LFWz4IsUqQWsHIgfZdl4KWB+qRZfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxTGIdV85C4lCT7OhXvbh146zqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:d3:89:6d:1f:06:97:5f:1a:9a:3d:90:25:2c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a714c621d57ce42e25093ece857bdb875e3aceaa
Validity
Not Before: Aug 7 01:01:09 2025 GMT
Not After : Aug 8 01:01:09 2025 GMT
Subject: CN=fb962beab33fdac8f67493546613ec85b191e3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:76:a7:bd:46:5e:82:2f:65:be:a3:0c:30:26:
4c:1d:4f:ef:e6:f2:51:f5:00:ed:f4:65:87:2b:a6:
3d:75:f0:c2:a7:7c:a0:33:d6:9a:58:fa:de:29:ff:
83:6d:4f:c3:83:ce:e5:ba:00:92:8c:8f:3e:b9:d1:
f9:59:7a:1b:6a:40:89:4a:22:cf:03:95:e3:cc:79:
a1:b9:72:8c:f2:a5:fb:9d:69:c4:c8:f4:fa:ba:47:
4b:fe:a9:ac:35:79:0b:63:b6:7b:8d:0f:b1:09:f1:
53:1b:4f:91:a7:fa:a2:b6:09:c0:89:1e:aa:6b:60:
38:ca:fa:4d:91:9b:05:59:df:ad:2e:d8:63:f8:f5:
39:28:06:74:c6:c9:36:66:e9:03:35:42:13:9f:d8:
00:69:92:93:4a:42:67:35:55:05:16:22:ba:ae:c0:
04:b4:84:94:ac:2c:e1:ee:a2:96:f7:7b:8b:f6:99:
d2:87:a9:18:1f:a9:0b:5a:90:fe:45:97:b0:5d:d7:
91:a1:63:f0:6a:b0:90:c0:a5:6c:66:88:3a:90:70:
83:7b:ee:c1:fe:e1:db:d0:34:28:10:2f:3b:6b:e0:
88:70:d5:07:bf:7b:5e:a1:a5:73:d9:01:c5:e9:c9:
0c:ed:17:2d:0b:7d:4c:c1:3c:ad:52:98:97:90:2b:
4d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:96:2B:EA:B3:3F:DA:C8:F6:74:93:54:66:13:EC:85:B1:91:E3:E0
X509v3 Authority Key Identifier:
keyid:A7:14:C6:21:D5:7C:E4:2E:25:09:3E:CE:85:7B:DB:87:5E:3A:CE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxTGIdV85C4lCT7OhXvbh146zqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0d2819-7c42-4a9a-8c8b-18055d2c44be/1/pxTGIdV85C4lCT7OhXvbh146zqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:99:a4:bf:68:21:d7:f9:09:5d:b7:bd:11:72:1f:1c:b3:e3:
50:e7:52:d7:f7:d3:e2:1c:80:71:93:13:24:87:47:8d:bc:ef:
49:56:e9:9a:9d:49:d2:ef:83:23:fc:1e:35:24:6c:a8:d8:30:
91:a3:a0:3a:4c:09:82:5b:63:45:a3:45:6f:f2:5b:95:7c:21:
b1:18:32:fd:94:37:2b:48:46:91:34:3b:c4:cd:36:69:39:a5:
2b:69:8b:1b:e0:c8:6f:23:33:51:10:2f:75:db:34:d6:ec:ef:
3e:ce:3b:7a:bf:c9:8a:46:0a:91:a3:e8:96:bf:d7:28:7c:8c:
54:95:c7:b0:a7:cd:21:0a:41:0b:ed:85:be:6f:e9:28:65:d6:
1d:0c:9f:c7:86:d6:9a:5f:bb:ef:bd:ca:a0:7d:98:b1:6b:15:
eb:ba:58:26:20:63:dc:fb:91:25:4d:16:33:4b:93:ff:96:51:
d9:b1:3b:c0:58:2c:8e:ff:68:e5:9d:45:1b:65:d4:1e:81:c8:
1e:64:ba:bd:c2:7f:e2:62:1a:40:f4:e3:46:13:17:3e:96:af:
e8:a1:f5:18:3a:27:88:0b:51:45:77:6c:f4:ad:64:62:5d:1e:
44:23:44:34:af:1b:1b:ed:d8:40:c6:a5:d2:b8:d2:bd:c1:25:
d4:e6:56:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiCC9OJbR8Gl18amj2QJSyAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3MTRjNjIxZDU3Y2U0MmUyNTA5M2VjZTg1N2JkYjg3NWUz
YWNlYWEwHhcNMjUwODA3MDEwMTA5WhcNMjUwODA4MDEwMTA5WjAzMTEwLwYDVQQD
EyhmYjk2MmJlYWIzM2ZkYWM4ZjY3NDkzNTQ2NjEzZWM4NWIxOTFlM2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXanvUZegi9lvqMMMCZMHU/v5vJR
9QDt9GWHK6Y9dfDCp3ygM9aaWPreKf+DbU/Dg87lugCSjI8+udH5WXobakCJSiLP
A5XjzHmhuXKM8qX7nWnEyPT6ukdL/qmsNXkLY7Z7jQ+xCfFTG0+Rp/qitgnAiR6q
a2A4yvpNkZsFWd+tLthj+PU5KAZ0xsk2ZukDNUITn9gAaZKTSkJnNVUFFiK6rsAE
tISUrCzh7qKW93uL9pnSh6kYH6kLWpD+RZewXdeRoWPwarCQwKVsZog6kHCDe+7B
/uHb0DQoEC87a+CIcNUHv3teoaVz2QHF6ckM7RctC31MwTytUpiXkCtNpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPuWK+qzP9rI9nSTVGYT7IWxkePgMB8GA1UdIwQY
MBaAFKcUxiHVfOQuJQk+zoV724deOs6qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHhUR0lkVjg1QzRsQ1Q3T2hYdmJoMTQ2enFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8wZDI4MTktN2M0Mi00YTlhLThjOGIt
MTgwNTVkMmM0NGJlLzEvcHhUR0lkVjg1QzRsQ1Q3T2hYdmJoMTQ2enFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS8wZDI4MTktN2M0Mi00YTlhLThjOGItMTgwNTVkMmM0NGJl
LzEvcHhUR0lkVjg1QzRsQ1Q3T2hYdmJoMTQ2enFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT5mkv2gh
1/kJXbe9EXIfHLPjUOdS1/fT4hyAcZMTJIdHjbzvSVbpmp1J0u+DI/weNSRsqNgw
kaOgOkwJgltjRaNFb/JblXwhsRgy/ZQ3K0hGkTQ7xM02aTmlK2mLG+DIbyMzURAv
dds01uzvPs47er/JikYKkaPolr/XKHyMVJXHsKfNIQpBC+2Fvm/pKGXWHQyfx4bW
ml+7773KoH2YsWsV67pYJiBj3PuRJU0WM0uT/5ZR2bE7wFgsjv9o5Z1FG2XUHoHI
HmS6vcJ/4mIaQPTjRhMXPpav6KH1GDoniAtRRXds9K1kYl0eRCNENK8bG+3YQMal
0rjSvcEl1OZWZw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:26:41 2025 by rpki-client