Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
File: pnac0wPoTc03o3XW52tgKfzDZ7Q.mft (raw, json)
Hash identifier: BrojejsJvw9JCRSPJ3XzF6EplTvlivpn5MxmuxhqNcU=
Subject key identifier: A6:6E:75:AF:9A:65:85:EA:B5:1B:F2:5A:99:C7:CC:AF:53:1D:7D:DF
Authority key identifier: A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
Certificate issuer: /CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Certificate serial: 019A4F2B6E849DC3447151EE69EF411BD09C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
Manifest number: 98
Signing time: Tue 04 Nov 2025 14:00:37 +0000
Manifest this update: Tue 04 Nov 2025 14:00:37 +0000
Manifest next update: Wed 05 Nov 2025 14:00:37 +0000
Files and hashes: 1: EE9b_IGVAxMVGIMQVaokUb3eWtk.roa (hash: v5264EvTSTGFV4n/KSp3fqpJgAmsmpyri2CC0Ruz9ng=)
2: pnac0wPoTc03o3XW52tgKfzDZ7Q.crl (hash: Tv9SiXQElB6tLHzZe5rcwBZID0wu5SeQ5DiiXekJBng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:6e:84:9d:c3:44:71:51:ee:69:ef:41:1b:d0:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6769cd303e84dcd37a375d6e76b6029fcc367b4
Validity
Not Before: Nov 4 14:00:37 2025 GMT
Not After : Nov 5 14:00:37 2025 GMT
Subject: CN=a66e75af9a6585eab51bf25a99c7ccaf531d7ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:12:4a:ed:15:a7:58:ff:fd:ba:f2:13:09:
48:1b:47:9a:ee:83:8e:58:5b:eb:e4:f5:c7:fc:00:
02:a0:ec:43:db:ee:d6:60:7e:b1:f1:a4:4c:0d:7c:
c6:5d:fd:e3:85:10:ee:53:85:6a:ec:ab:05:bc:fc:
d9:2b:ab:cc:23:83:f1:0f:7c:7a:f6:8c:fe:69:20:
60:02:17:a1:48:7a:4d:0a:8d:13:8a:e9:aa:2b:5e:
9a:f1:ff:b3:0d:66:61:84:4e:75:65:90:8d:23:2b:
81:56:b1:c0:fe:61:3d:e7:1c:64:3a:0c:af:92:f0:
47:3b:61:9a:66:53:63:16:6f:4c:42:7f:6b:f8:a5:
69:85:fc:c4:66:7f:2f:e6:50:2c:29:a5:98:68:11:
eb:14:82:c1:e1:7c:fd:26:a0:ae:5a:ca:df:20:ef:
96:98:a0:2e:a1:0c:4c:00:99:d5:f4:f4:82:6e:21:
4a:9b:c7:48:f1:b6:6a:78:d3:4b:12:ae:a8:eb:f6:
7f:b2:4c:c8:c1:09:64:9e:62:68:5c:ee:62:72:2e:
43:88:9c:18:a5:f6:b3:7a:71:f1:89:a4:fc:eb:16:
43:a8:f2:b9:27:53:06:7b:66:79:00:2f:c5:74:2a:
31:04:47:f5:24:3f:f7:28:88:a7:f9:77:dc:74:44:
66:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6E:75:AF:9A:65:85:EA:B5:1B:F2:5A:99:C7:CC:AF:53:1D:7D:DF
X509v3 Authority Key Identifier:
keyid:A6:76:9C:D3:03:E8:4D:CD:37:A3:75:D6:E7:6B:60:29:FC:C3:67:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnac0wPoTc03o3XW52tgKfzDZ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0237bc-9d5d-4db4-af9b-97a7b9327787/1/pnac0wPoTc03o3XW52tgKfzDZ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:4a:3e:a2:88:b3:5e:39:06:47:03:7c:28:1a:24:ed:ab:b7:
4a:5c:a9:17:f4:b9:31:59:bd:79:6c:1f:c6:da:7f:9b:25:d7:
e3:c8:a7:d9:7a:8f:8b:0e:5d:47:99:df:ec:94:a8:03:b4:e6:
2e:bc:71:e9:4f:81:9e:8d:02:ec:75:b0:43:5e:44:eb:fe:7c:
88:55:a7:11:69:10:04:60:e5:a9:92:5d:6c:59:01:8a:a5:56:
9d:96:0a:53:5f:25:e7:f6:77:c0:d3:bb:ce:0f:71:cd:f8:cf:
21:c8:f1:89:51:bd:d2:58:9d:86:e7:c6:16:a8:0e:e4:78:a7:
a3:74:8b:3e:dc:19:00:fd:36:4f:5f:6a:c1:54:e5:66:e4:87:
07:73:3b:d1:8c:f3:45:21:6b:fe:bc:b7:b1:51:b0:0f:03:3f:
80:22:da:5b:49:00:a6:e0:d0:c7:91:59:18:e5:a6:85:6f:03:
ce:a4:a1:7d:74:f1:c8:f9:93:25:ef:88:40:66:76:fd:f2:0a:
33:9f:03:90:ab:9e:49:ad:5b:0a:39:15:18:79:9a:66:f3:4a:
53:98:71:14:3d:f5:e0:9e:e9:4c:11:7b:dd:ce:1a:d9:82:a5:
24:49:7f:66:b0:7b:ee:ff:cf:e6:22:98:38:c6:57:21:2b:ff:
34:b3:8b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:03:02 2025 by rpki-client