Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: e/wokBTI4t/R7T5PyboITZhCwiD0NpGsUVJbM0BFMV0=
Subject key identifier: 01:3A:68:32:41:2A:91:C3:7F:1D:23:AB:FC:D7:3A:8B:2A:8D:8E:21
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 019874F4B860D207E80052FDEF10CB566CCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 0E9E
Signing time: Mon 04 Aug 2025 12:00:51 +0000
Manifest this update: Mon 04 Aug 2025 12:00:51 +0000
Manifest next update: Tue 05 Aug 2025 12:00:51 +0000
Files and hashes: 1: J60Pw4hyKKjQhqi1eSTzFtauoi0.roa (hash: Pts66hPVy/S0JFZfVc88DLunALgdL+k1upaL/I3M97g=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: S5phAnau0z80Dm0SQ/vk8AzOAc5NtBdCM31BYeqFKjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f4:b8:60:d2:07:e8:00:52:fd:ef:10:cb:56:6c:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Aug 4 12:00:51 2025 GMT
Not After : Aug 5 12:00:51 2025 GMT
Subject: CN=013a6832412a91c37f1d23abfcd73a8b2a8d8e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c6:4c:14:9a:8f:c8:0d:c1:0c:c1:69:51:e7:
f7:c5:55:e5:b7:3b:66:67:f5:57:69:4e:2b:25:db:
77:e7:94:cd:86:f5:db:2a:bf:9a:cf:1b:d7:67:f4:
7f:81:8e:7b:6f:5c:42:68:b7:f6:31:df:c8:f2:c5:
18:40:4d:79:c6:e4:09:bc:38:28:f0:dd:4e:6c:15:
0f:5c:81:df:73:b0:d8:b4:6b:03:c5:73:7b:b1:d1:
15:7d:79:b8:03:b0:3c:f3:38:33:4f:79:06:94:ed:
3b:a5:57:7f:3c:ff:10:74:3a:03:0c:bc:2a:30:9e:
ed:26:78:d0:55:96:22:8e:86:a7:c3:5f:5e:fa:db:
95:2d:88:ed:21:ef:a8:1f:06:55:ca:91:42:ee:eb:
56:d0:b1:b6:cd:24:db:68:e3:dc:e5:f7:2b:c6:85:
8a:3a:49:d3:12:44:65:24:b1:5d:00:33:d5:2d:60:
af:26:8c:b8:c4:fe:d5:48:c4:52:67:e3:f2:d8:d8:
40:3a:c0:34:a7:e7:11:37:27:7e:53:99:3f:9b:a7:
86:6e:d8:d3:af:73:eb:9b:40:4f:6e:37:0c:86:66:
1b:8e:25:91:ff:aa:64:1c:a2:56:47:c7:c6:76:5e:
b0:60:1d:54:a9:42:f3:fc:4b:79:ac:f6:98:26:2c:
08:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3A:68:32:41:2A:91:C3:7F:1D:23:AB:FC:D7:3A:8B:2A:8D:8E:21
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:6a:e0:89:cd:e3:e0:af:9c:1d:f6:b7:95:44:7e:87:45:30:
c2:2f:18:85:cb:41:41:f1:b3:dc:a4:94:b0:0c:92:ed:c2:f6:
e1:2e:c6:26:e1:22:5e:fe:4a:ac:b3:f6:57:a7:28:91:b8:31:
1a:f2:df:2f:8a:ad:d9:72:00:03:b2:59:0c:58:81:79:db:ce:
af:f6:71:dd:ff:b9:3a:a6:9e:7d:9a:6a:3a:3f:07:d6:d2:e6:
99:4f:d8:17:c8:3b:78:6a:ca:af:e6:5a:b7:9b:ad:01:48:32:
49:fe:a3:c2:94:f5:be:52:d3:87:4d:fd:df:01:bb:90:6f:2e:
1a:a7:d3:91:be:b8:40:14:71:a8:02:60:29:13:02:e2:ca:2c:
f8:9d:b4:3e:6a:ca:42:fd:29:68:ab:51:94:d3:2c:28:7d:83:
d9:c8:39:df:b3:3f:fd:40:ec:2f:d0:50:cd:15:3b:64:07:e7:
53:c1:b6:db:1b:66:c4:9e:45:af:e3:e3:90:6c:1a:e8:4e:3e:
07:a0:d3:48:66:0a:34:fa:16:68:9c:87:50:64:44:3b:99:bb:
3d:ec:2b:a6:4d:68:dd:b5:7a:f1:c0:c3:ef:3b:52:91:19:3d:
a8:b4:30:f6:5b:e7:3d:fa:4b:f7:69:11:ea:27:26:0a:77:31:
55:2a:cc:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 13:55:45 2025 by rpki-client