Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
File: PqU6yajcRG-34BE7aLOOlwwZ98w.mft (raw, json)
Hash identifier: os6B13NN8jjDYkkiLsPsTksSbCj/bYynjoaWMpTNcho=
Subject key identifier: F0:21:20:2A:3D:BA:0D:18:15:27:F0:D8:D0:71:EE:2C:52:39:0A:56
Authority key identifier: 3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
Certificate issuer: /CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Certificate serial: 019922C3BCF5F8E419BD5DB47D7B9418F16E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
Manifest number: 15FF
Signing time: Sun 07 Sep 2025 06:01:17 +0000
Manifest this update: Sun 07 Sep 2025 06:01:17 +0000
Manifest next update: Mon 08 Sep 2025 06:01:17 +0000
Files and hashes: 1: PqU6yajcRG-34BE7aLOOlwwZ98w.crl (hash: G4noKZGjcafxvhmSeWyWRDR/n/s3eE4g9zVBhk6pEMg=)
2: ZFcvFlhDWryyoXWXMpIDlrIOANM.roa (hash: vf4LDljSHDeogKMO6SAS7Y9xTDtYGGINc31+p97CZuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:bc:f5:f8:e4:19:bd:5d:b4:7d:7b:94:18:f1:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea53ac9a8dc446fb7e0113b68b38e970c19f7cc
Validity
Not Before: Sep 7 06:01:17 2025 GMT
Not After : Sep 8 06:01:17 2025 GMT
Subject: CN=f021202a3dba0d181527f0d8d071ee2c52390a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4a:32:ca:fa:73:24:e9:af:8d:88:78:93:61:
6b:d2:03:6e:be:54:9b:ae:88:d2:73:79:ff:2c:2a:
9a:da:87:1a:a0:58:d3:e4:8e:26:a2:b7:56:23:ea:
b7:f0:ae:bc:2d:30:65:36:a3:ed:3a:c7:b5:7b:99:
fa:22:b6:0c:6b:89:72:4e:87:7c:4b:1a:e0:89:a8:
02:44:8b:38:39:0e:a1:11:e6:e5:2f:a4:f2:ba:2a:
75:e0:c6:db:c6:d1:95:25:14:3d:44:37:81:2a:b5:
bf:da:02:87:11:01:4e:6e:59:85:2a:23:ba:66:96:
a7:87:d8:be:dd:0e:87:b0:e2:4e:2e:d8:18:49:f8:
22:3f:d1:55:3f:cd:ec:96:b4:e6:19:85:dc:e8:83:
a0:cd:44:d0:46:21:5f:cf:f2:6f:48:32:0f:ef:45:
f6:44:2c:64:26:d6:30:92:6d:bb:7b:04:d8:d7:9d:
56:f9:3e:3b:57:d2:e4:34:0a:64:7d:2a:15:39:95:
5a:d6:54:ad:e8:ad:8a:3e:ed:20:5c:79:9e:f9:85:
1c:e2:53:b5:da:04:10:c9:3e:4b:17:c9:5a:29:c3:
fb:6e:38:9c:ad:8d:68:ef:91:05:4f:d8:c8:96:b9:
23:db:93:ea:43:4b:b1:91:b4:99:fa:84:d3:bb:e6:
ac:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:21:20:2A:3D:BA:0D:18:15:27:F0:D8:D0:71:EE:2C:52:39:0A:56
X509v3 Authority Key Identifier:
keyid:3E:A5:3A:C9:A8:DC:44:6F:B7:E0:11:3B:68:B3:8E:97:0C:19:F7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqU6yajcRG-34BE7aLOOlwwZ98w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/e73cb5-8bfc-4139-9a27-351c21192c65/1/PqU6yajcRG-34BE7aLOOlwwZ98w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:bd:f2:8f:6e:43:4f:a8:0c:5b:5f:68:78:cf:8a:8b:27:7c:
f0:09:cc:bb:09:21:ef:16:c3:a3:41:63:68:0f:07:5e:e6:e0:
5e:34:a9:be:44:d9:f9:e2:0b:d1:05:58:3e:69:cd:01:39:d4:
c5:4e:d6:b1:4f:85:5c:dc:74:a5:82:90:e4:db:c1:a3:d3:9a:
87:af:39:7e:e1:a3:95:fa:e1:44:12:b3:95:ba:7b:cc:82:b6:
6e:26:1a:ce:b2:d7:82:fc:07:db:0e:c7:32:e0:fa:3d:5a:7b:
78:27:85:76:e5:00:4f:bf:9f:86:97:6c:28:ab:79:59:97:ff:
2e:cd:62:5a:de:6e:d0:08:27:24:58:37:ce:bf:9b:d1:b5:9b:
b3:28:ae:25:ae:5b:39:d3:ba:e8:ee:2d:be:ee:d7:6e:c0:58:
62:7c:03:36:58:3c:d1:a0:aa:39:be:1c:55:c8:28:fe:5e:47:
eb:ef:50:30:74:78:be:e0:dd:fc:b6:05:07:66:f1:0b:3f:ce:
3d:02:d7:dc:ba:30:48:94:0e:fd:ee:a3:d8:b0:b8:b2:41:1d:
6e:09:d2:f8:b0:69:eb:63:fb:3d:0a:14:fc:ca:7c:0e:8d:93:
83:75:1b:c0:a9:71:91:8a:bf:5d:8b:aa:1e:d3:7e:e9:65:05:
4d:c4:af:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:52 2025 by rpki-client