Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
File: to-PMlFKGD6Xejx982Rz1WJgxKQ.mft (raw, json)
Hash identifier: 47hRphvb0HawbU832RCtiajp+O0pMQNwYbtrR/f8jis=
Subject key identifier: 58:78:11:05:AB:6B:B6:86:6C:05:BF:82:46:D0:76:95:89:6A:26:ED
Authority key identifier: B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
Certificate issuer: /CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Certificate serial: 0198941246701AF61068902632E0E0DA5684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
Manifest number: 0A89
Signing time: Sun 10 Aug 2025 13:01:22 +0000
Manifest this update: Sun 10 Aug 2025 13:01:22 +0000
Manifest next update: Mon 11 Aug 2025 13:01:22 +0000
Files and hashes: 1: tQOCxRT0aCE_1_qk1kC7RdCFOSc.roa (hash: n1WxYWjnXTsr8gKXroY5cgEaMb8X/+3xuLpCg/Qcbnk=)
2: to-PMlFKGD6Xejx982Rz1WJgxKQ.crl (hash: PS07rltFE4IngvYoq3/ITKeunRgxx2M5dYtYUPDUNmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:12:46:70:1a:f6:10:68:90:26:32:e0:e0:da:56:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68f8f32514a183e977a3c7df36473d56260c4a4
Validity
Not Before: Aug 10 13:01:22 2025 GMT
Not After : Aug 11 13:01:22 2025 GMT
Subject: CN=58781105ab6bb6866c05bf8246d07695896a26ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:31:eb:89:e4:1f:61:27:40:2a:ba:d8:2e:9d:
9e:af:7d:3a:79:59:c6:66:a5:13:e5:62:90:0d:50:
51:9a:73:b4:77:bb:0f:66:9c:65:91:be:41:fa:7a:
6a:81:24:cf:54:59:25:f7:45:cd:85:9d:65:85:c4:
40:cf:dc:1c:b0:2e:6c:d5:91:07:b2:e5:fb:ed:02:
27:e1:5b:75:da:94:9a:26:4d:15:75:cb:d6:c8:10:
9b:4b:6b:94:39:a4:84:92:95:4f:3e:55:86:ef:77:
ae:f3:a7:a8:9d:fe:97:e4:6f:84:ab:62:e6:67:11:
08:1f:69:04:30:c0:39:a1:01:93:6b:8c:d0:c2:ea:
43:f9:7d:ec:56:a1:3c:34:19:78:2e:5e:08:93:ce:
ac:c6:9a:05:84:8d:9d:4f:e8:40:26:4c:f8:6f:8e:
77:8c:14:89:84:c5:f7:0b:f5:9f:5a:d8:59:f3:8a:
21:90:96:e5:1b:4e:49:5d:e7:a4:00:65:81:94:a5:
56:4c:da:b7:68:f3:3d:f5:11:cd:31:b3:a8:9c:95:
97:a8:5d:38:07:e0:d6:08:35:31:85:d0:46:86:7a:
35:6d:88:9b:37:06:ba:83:d2:f5:70:19:fb:0b:af:
68:b8:e8:1c:f0:1a:48:bc:0a:45:df:d1:87:26:57:
fa:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:78:11:05:AB:6B:B6:86:6C:05:BF:82:46:D0:76:95:89:6A:26:ED
X509v3 Authority Key Identifier:
keyid:B6:8F:8F:32:51:4A:18:3E:97:7A:3C:7D:F3:64:73:D5:62:60:C4:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-PMlFKGD6Xejx982Rz1WJgxKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/3887e4-b598-45e3-8d85-2210ed9d0861/1/to-PMlFKGD6Xejx982Rz1WJgxKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:7a:ea:17:cd:a2:df:3d:2c:e5:c2:a1:2d:ea:a8:9a:81:52:
75:66:ad:65:fd:3f:9d:78:2c:65:5e:7e:cf:a4:7a:2d:75:3f:
0f:c6:6c:13:36:85:0c:b3:2a:10:7e:a4:6a:7d:60:1f:e5:80:
4b:c4:e2:2f:46:2a:b9:ee:9e:8d:b1:e6:7f:8b:cb:82:9f:1b:
b4:fe:f7:bd:b4:e0:a5:41:5d:0b:f6:aa:5a:00:92:1d:34:32:
37:c8:23:48:d2:c2:8e:64:64:d3:37:dd:f1:67:70:a5:4e:cb:
d0:ca:08:ae:03:bd:80:ed:ca:fe:0f:1b:3d:b0:59:07:e6:bd:
3d:17:1b:61:f9:04:9f:70:de:ae:3d:e8:14:ff:a1:76:64:43:
3a:f0:80:4c:92:fc:c8:da:44:d9:9a:bb:68:0f:9e:1e:12:e2:
3c:19:3a:42:15:45:d4:a2:4a:55:52:6b:5f:59:ee:c6:40:77:
4f:d7:9d:2b:41:a7:60:7f:ad:e8:3e:68:4f:50:03:5f:f0:7c:
d3:dd:63:63:0d:5a:33:21:db:66:26:8d:a6:45:52:d1:5d:e1:
d7:90:75:9b:2d:15:8d:b3:18:8c:7c:21:06:89:f1:87:22:ed:
e1:1a:6d:0f:4d:73:66:5d:31:84:02:12:eb:aa:3c:24:6b:4a:
36:ba:b6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 19:50:39 2025 by rpki-client