Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: SdaWseLjtGPkDkiIhaCHksuDKtk6XH8CIduBw0vusGA=
Subject key identifier: 6C:29:3B:1F:EF:36:69:DA:9B:90:D0:51:85:39:75:83:AC:69:14:28
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 019A72941218548990D8D80B5D3ADE0E7842
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 16AD
Signing time: Tue 11 Nov 2025 11:01:37 +0000
Manifest this update: Tue 11 Nov 2025 11:01:37 +0000
Manifest next update: Wed 12 Nov 2025 11:01:37 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: r4mkFRVXsBmpWsABlSoQLw1PQlwamJjEXEuUTyXqgBg=)
2: ZFcvFlhDWryyoXWXMpIDlrIOANM.roa (hash: vf4LDljSHDeogKMO6SAS7Y9xTDtYGGINc31+p97CZuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:94:12:18:54:89:90:d8:d8:0b:5d:3a:de:0e:78:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Nov 11 11:01:37 2025 GMT
Not After : Nov 12 11:01:37 2025 GMT
Subject: CN=6c293b1fef3669da9b90d05185397583ac691428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:ae:81:13:28:f7:90:fb:f8:d5:0c:88:d9:
7c:7c:29:f9:0f:7d:41:32:ab:6d:07:5c:ae:4a:33:
6c:7c:2b:b5:16:86:dd:fd:54:cf:18:e9:79:5a:1b:
f2:e6:77:b2:36:94:85:3a:07:49:23:18:60:fb:06:
42:65:75:e9:f0:fd:a2:d5:04:63:e8:bb:7f:37:00:
66:4b:e7:69:0a:fc:3e:03:18:29:af:b4:10:59:db:
9a:07:5d:02:af:e0:2d:ad:2e:85:cc:6b:f0:de:2f:
1f:1b:68:5c:29:d2:d5:22:60:f1:e1:87:f6:31:78:
51:50:55:33:f2:2e:84:09:26:86:30:54:31:2d:d2:
9e:f8:68:df:76:89:e2:92:a3:df:44:ce:9e:ab:3b:
06:00:bb:93:48:d4:52:c2:bc:87:43:83:9f:42:5c:
3b:73:33:b8:da:37:39:7f:92:d9:01:4d:fb:36:6b:
fb:d5:0d:b3:ae:9b:ca:08:50:ba:3b:2e:ae:b4:03:
2b:a3:0f:91:c2:88:47:c1:89:57:40:26:ed:07:fe:
f7:88:3f:9d:d5:5f:92:cc:d6:cc:55:4b:0f:c1:c0:
e9:5a:e5:80:f7:05:2f:e4:80:52:fd:96:3c:24:f4:
fb:5d:2a:93:da:c1:65:c0:f0:5f:f3:b7:cf:af:e4:
23:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:29:3B:1F:EF:36:69:DA:9B:90:D0:51:85:39:75:83:AC:69:14:28
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:3c:9c:58:16:ea:8e:a1:1e:f8:ed:b0:06:83:04:81:fc:17:
9d:2b:fa:0e:49:6a:99:0a:2f:b8:a9:da:24:b4:8b:c7:07:35:
d3:a4:25:a4:f1:e6:e0:93:d6:54:c9:95:44:dc:c9:9f:32:4d:
31:40:65:91:b7:19:ba:5d:59:57:7c:a9:c3:4b:a4:95:72:da:
65:69:38:03:9d:66:3c:d8:61:ce:83:4c:a3:3e:ad:71:08:ac:
e7:e1:64:80:4d:b1:dc:ae:d6:70:f0:ce:51:c7:cf:99:9d:7f:
bb:02:d3:ea:38:87:d4:ca:2a:f7:dd:5f:31:a0:a8:91:82:a0:
53:45:b6:11:69:7e:4e:1e:97:b6:cb:12:2d:af:db:47:d1:4e:
2a:fb:71:53:60:3c:4d:d7:ec:fc:a0:ac:18:1b:c6:8b:50:a6:
75:a9:1d:01:75:c6:5b:ae:32:8c:71:e7:ed:3a:8a:e2:aa:68:
2a:9f:1d:76:e2:78:fb:38:eb:3a:2e:b6:7a:e1:05:0a:59:8d:
d3:fa:54:e0:9f:a0:48:c5:be:5a:00:8f:f8:c8:5c:27:3d:21:
81:0a:1d:80:7e:21:53:54:43:14:b9:ec:35:db:0e:85:40:f0:
13:90:34:e6:f5:72:27:6d:2a:a7:04:dd:40:d8:f1:18:eb:26:
81:c0:2d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:00:54 2025 by rpki-client