Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
File: pQE9aytVPeF23W7IHOe5AyU5y7o.mft (raw, json)
Hash identifier: b4Fzdlozv+tbuBYYypecvjEdK2PJjOCdahlZs+nPm/c=
Subject key identifier: 63:E6:65:12:7B:7E:82:DA:14:A5:83:DB:D5:B7:DB:AA:BA:11:4B:60
Authority key identifier: A5:01:3D:6B:2B:55:3D:E1:76:DD:6E:C8:1C:E7:B9:03:25:39:CB:BA
Certificate issuer: /CN=a5013d6b2b553de176dd6ec81ce7b9032539cbba
Certificate serial: 019A70DBE7C515B84AFB14513F0FC3ECDD22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQE9aytVPeF23W7IHOe5AyU5y7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
Manifest number: 98
Signing time: Tue 11 Nov 2025 03:00:51 +0000
Manifest this update: Tue 11 Nov 2025 03:00:51 +0000
Manifest next update: Wed 12 Nov 2025 03:00:51 +0000
Files and hashes: 1: DlI7IjfwL0SAh4dXLxQbkIVO2pw.roa (hash: RanqyjCq2uxoaIpK5XkfL6r6d2TC2HkVHoF8vRXcg9U=)
2: pQE9aytVPeF23W7IHOe5AyU5y7o.crl (hash: neMVAL9l0bnJS8kWpm1rZmaY86KpJirSmzQgnlsl2qw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQE9aytVPeF23W7IHOe5AyU5y7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:e7:c5:15:b8:4a:fb:14:51:3f:0f:c3:ec:dd:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5013d6b2b553de176dd6ec81ce7b9032539cbba
Validity
Not Before: Nov 11 03:00:51 2025 GMT
Not After : Nov 12 03:00:51 2025 GMT
Subject: CN=63e665127b7e82da14a583dbd5b7dbaaba114b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8c:fe:73:d7:ec:19:99:23:52:4c:d8:34:63:
b3:f0:d6:ff:29:8a:45:50:b6:f6:4c:69:8e:ea:b7:
e1:2d:47:33:2a:3e:4d:ec:7c:19:bf:6c:fe:e1:22:
e1:a1:cb:26:9d:d4:ed:28:da:cc:40:e6:31:81:47:
22:a1:c1:10:52:c3:04:95:33:76:e2:13:7b:72:42:
cc:7a:4d:24:47:91:fa:40:48:43:4c:15:2e:84:81:
2f:3c:39:36:01:87:d5:39:96:f6:5c:84:98:ac:4f:
bc:30:fa:35:dd:1e:4c:d7:58:85:d0:08:d3:cf:2d:
31:e8:0a:7b:84:51:c4:9b:46:39:8d:e7:db:bf:03:
90:ad:aa:ab:b2:2e:71:72:41:4d:9d:05:28:ea:2c:
e8:b9:ec:9d:81:38:ba:2d:e9:bd:34:73:d1:b6:d9:
a3:b8:48:89:fa:c9:0d:33:ed:46:15:18:b5:ef:0b:
0c:4e:b2:63:03:e3:0b:00:df:de:26:59:30:7c:3d:
38:46:09:c8:f6:ad:4f:24:3d:a4:d8:9d:1f:38:63:
5b:06:08:92:96:19:5b:f5:3c:eb:ac:2f:5f:66:85:
f5:a3:4b:9e:35:75:1a:6e:85:65:50:94:11:5e:1a:
a8:d2:4d:8c:f3:1c:31:40:be:9e:c9:38:99:3e:10:
2c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E6:65:12:7B:7E:82:DA:14:A5:83:DB:D5:B7:DB:AA:BA:11:4B:60
X509v3 Authority Key Identifier:
keyid:A5:01:3D:6B:2B:55:3D:E1:76:DD:6E:C8:1C:E7:B9:03:25:39:CB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQE9aytVPeF23W7IHOe5AyU5y7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5d4ae1-16e8-4fc4-a81a-13fd2ccf8790/1/pQE9aytVPeF23W7IHOe5AyU5y7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:7e:7c:8b:23:8d:23:07:73:a2:f0:e5:f0:1e:a1:4b:85:50:
88:f6:a5:43:8d:df:c3:37:26:31:d0:a7:95:5d:de:3f:38:fe:
76:90:96:85:6f:40:d4:bc:97:61:50:2e:8a:e0:2f:64:5e:2a:
99:8c:8d:f2:10:1b:95:c7:91:9c:99:20:be:67:f4:d9:92:f1:
71:39:1d:65:8f:78:4e:54:b7:b3:28:1e:ca:e4:4b:9d:17:53:
eb:85:87:5e:89:49:94:c8:45:34:a6:f1:df:e7:02:27:8f:be:
d5:51:ce:f3:73:bd:49:02:9c:de:5a:19:c3:a7:98:c2:48:be:
18:90:13:0d:96:02:d4:a7:ae:7e:ea:1e:95:2e:60:ec:bf:ff:
99:f9:b1:a0:ab:ca:79:4a:2c:06:1f:46:3d:93:15:4d:6a:21:
ad:84:81:ac:e0:ec:1a:fb:b6:5e:77:36:8a:5a:72:2d:66:3f:
35:b4:b4:46:68:0b:fa:8e:5d:58:af:94:27:0a:6a:26:ba:03:
f5:4f:81:2d:c8:fc:57:e3:2b:ae:1a:bc:f5:14:c5:10:b0:15:
31:98:1b:eb:ae:c2:a6:42:f4:ad:d1:12:24:24:df:df:fc:02:
4c:2b:51:92:86:81:d9:b5:1b:04:3c:00:cd:de:d4:9c:95:18:
6b:f0:18:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:24:54 2025 by rpki-client