Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: O7sP0ZGj54HzvF/RqMJ3KQEpHW3J/6Ug1x9hiDGgwSc=
Subject key identifier: 62:2B:EE:C1:69:29:08:05:83:2C:B0:E8:34:89:51:C6:1A:36:1C:AA
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 019A240A4CAB91F710DE29E35C9F41E34040
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 1688
Signing time: Mon 27 Oct 2025 05:00:46 +0000
Manifest this update: Mon 27 Oct 2025 05:00:46 +0000
Manifest next update: Tue 28 Oct 2025 05:00:46 +0000
Files and hashes: 1: ET0yOb6N2KPn9sEOeciwveLzfFQ.roa (hash: 5UaUVXzPjnKQ9N0meCwxNszuKgkyrbDITbh3/+eJ6rg=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: Mbu1q15872Lgxz4MNLVxXVaVLmac4yydljzKn7sw56o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:4c:ab:91:f7:10:de:29:e3:5c:9f:41:e3:40:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Oct 27 05:00:46 2025 GMT
Not After : Oct 28 05:00:46 2025 GMT
Subject: CN=622beec169290805832cb0e8348951c61a361caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a3:c3:13:1c:02:d2:8d:3b:b7:e3:50:cb:e4:
53:55:94:23:e5:1f:bd:d1:b8:94:89:76:20:2f:76:
c8:52:43:3d:12:b4:f0:28:af:46:dc:ee:a9:80:e4:
72:1b:7d:a5:9e:54:0b:8a:af:03:e2:1f:63:2d:dd:
8e:1f:fb:68:47:49:f5:91:81:e3:91:13:8e:94:49:
0f:d2:87:9b:8f:3b:33:0f:9e:6e:62:53:47:06:99:
36:ef:c0:35:69:af:5c:4d:3b:79:88:52:98:8a:13:
27:a4:37:f2:5b:d9:68:b5:2a:12:1a:d2:3c:be:0e:
b0:63:ad:a7:d6:50:dc:e6:b1:81:82:3a:ec:40:42:
ca:8f:49:d2:ec:79:c6:f7:fc:bb:17:50:3e:fc:0b:
fe:d2:0c:f6:61:a6:43:6f:02:47:ce:9d:71:25:1f:
4f:a5:8f:08:f2:6a:60:ef:fd:a1:86:3b:37:77:97:
6e:4b:dd:fd:7b:f5:bd:37:74:de:64:35:af:91:ef:
8e:95:89:a6:bc:fe:91:24:bd:27:2f:65:34:43:f4:
3c:ef:0d:74:9b:a5:d8:64:86:01:eb:6a:51:f2:a3:
f6:16:04:a0:7d:93:55:6a:11:7b:74:ce:91:95:01:
54:82:ba:64:ba:3c:7a:30:bf:b8:5c:65:95:c5:80:
86:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:2B:EE:C1:69:29:08:05:83:2C:B0:E8:34:89:51:C6:1A:36:1C:AA
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2d:74:2c:e9:35:1b:63:c2:cc:db:4f:93:6a:2f:e1:0d:8c:
41:30:03:6f:5d:b5:d0:a6:89:22:e3:f4:19:18:15:78:d9:9f:
69:03:9c:fc:0b:10:7b:22:02:8b:14:e4:d1:48:37:cd:3c:8c:
c3:3f:c1:54:21:85:fb:a8:26:f4:2a:7b:98:18:c7:43:ed:b2:
4b:4f:94:50:69:23:88:48:e0:0a:0e:4a:7e:55:0c:0e:45:80:
9e:88:75:a6:46:3e:02:c8:26:23:df:ab:d9:5c:aa:68:60:ee:
6d:23:0f:9d:0f:0f:42:ed:95:11:9c:cd:46:7a:7b:00:8e:8e:
77:54:6f:13:06:91:97:e4:bf:8f:77:ac:80:70:a5:0d:05:fa:
c0:2d:b6:db:be:74:4a:bc:05:40:43:c2:ca:19:f1:ac:f1:16:
33:b3:87:f8:ed:45:91:4b:68:4c:48:db:84:56:b7:53:b1:f0:
5a:af:b6:43:8e:66:7d:b2:69:d1:74:91:b9:d6:e6:60:d0:3c:
f4:0d:88:f8:b0:1a:c2:89:2c:fa:a9:db:31:82:06:30:cb:9c:
ac:8e:fc:26:94:29:34:fc:51:51:6b:11:fb:cd:f9:2d:18:c9:
f5:b9:e4:82:42:07:41:f5:8f:70:bf:2b:02:3d:46:19:12:b6:
f4:e4:e3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:31:10 2025 by rpki-client