Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json)
Hash identifier: Hgyk3+N6Su+mwiSBiaiJyP8YdWdWfYdlHGO8sLFnMxs=
Subject key identifier: C8:3A:DE:AC:C4:D5:04:FE:29:67:67:78:C2:20:FF:16:8E:34:5E:55
Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Certificate serial: 01992FD9FF36E5DE8D7B130B596FE4CA2938
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
Manifest number: 144F
Signing time: Tue 09 Sep 2025 19:00:39 +0000
Manifest this update: Tue 09 Sep 2025 19:00:39 +0000
Manifest next update: Wed 10 Sep 2025 19:00:39 +0000
Files and hashes: 1: 3nrrtsZJ-IpATR6f6X0fXP8P3Ds.roa (hash: dHLYJp8vBdcpEI62KQkymjAsJXGywGpijB0UQKFJ6p4=)
2: b3rpvlrUc4F3iSwCht-ScFiNdQU.roa (hash: IxL38OMcTHb5h0kfUl/vgqGG9zstz9MS/9BQOovbMEE=)
3: o-IAHNtlfJTe0lrMjkAn3EfKWfQ.roa (hash: 4yZoP16QAdZ03Ygf8PchIKIjGuMurg8hghXjeARQmNw=)
4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: Z4f5ui7nZI8uWFeUAj/WTBxqLs6ZTzDGx4OOMr15tIY=)
5: z9pY0mNZw1275Un36HrGri4KO4o.roa (hash: YWMIyf15z9zL0EObbho/vFT6JF3XUpar4rPteqovYLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 19:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:d9:ff:36:e5:de:8d:7b:13:0b:59:6f:e4:ca:29:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba
Validity
Not Before: Sep 9 19:00:39 2025 GMT
Not After : Sep 10 19:00:39 2025 GMT
Subject: CN=c83adeacc4d504fe29676778c220ff168e345e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5f:f6:b3:8f:30:aa:bb:7a:56:80:14:8e:bc:
c3:12:57:64:b6:c3:cc:4c:4f:5e:7b:80:aa:73:d8:
2a:e4:d8:b6:6b:81:03:53:d3:c0:a3:d8:3e:2a:d5:
2b:d3:2b:1c:4e:eb:1e:d0:bc:94:97:c9:0e:2a:6e:
dd:e8:a2:ba:84:8b:09:9c:06:de:34:37:e0:e4:39:
c0:44:0b:60:00:76:c1:4d:4a:96:e1:2d:b7:8e:e8:
77:a7:8b:f1:c4:d7:ea:70:e8:f0:70:b5:8a:6f:f4:
9c:42:53:1c:19:fa:1c:6a:96:6a:84:60:d5:aa:90:
95:bb:fe:60:af:db:1f:5e:fb:69:53:7c:92:fb:8e:
54:30:da:74:bd:4c:c6:ea:60:dc:5c:b9:a1:32:39:
93:b4:27:21:76:51:fe:c4:ea:3b:be:0a:73:7a:54:
67:ed:b7:88:44:ae:4d:2c:c1:d4:a0:cf:3d:44:e1:
38:00:ce:44:62:ed:fc:66:c6:4b:76:85:79:00:3e:
d9:c7:8f:0d:08:63:aa:37:1f:cb:93:4e:8a:2e:7c:
23:ea:fd:d6:0e:81:2c:d8:e4:6d:3e:0a:53:ad:71:
32:69:04:8e:46:f4:9c:43:91:a6:8d:8a:66:8c:f3:
fa:c0:1d:b5:fa:36:e5:ae:45:12:d9:ea:b8:91:e2:
4e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3A:DE:AC:C4:D5:04:FE:29:67:67:78:C2:20:FF:16:8E:34:5E:55
X509v3 Authority Key Identifier:
keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:9f:d0:b8:b5:50:f6:ad:b7:d6:93:3b:6b:28:be:53:66:7c:
aa:ad:94:0c:6c:e9:41:3c:c0:3e:91:13:d4:02:c8:1e:6b:92:
89:6e:cb:29:cf:75:2b:0d:7c:24:01:56:46:a2:6d:29:ac:a5:
4a:9a:6f:ff:6e:ec:08:4f:d8:a2:4f:f2:f1:f9:41:a8:d6:e7:
9a:7d:0b:9a:c5:77:08:92:0d:a4:64:6d:6f:89:e6:72:2d:c5:
74:47:aa:90:1f:66:d2:c8:f1:95:12:6a:e6:7f:78:97:e5:40:
56:fe:40:55:5a:2c:16:42:71:8d:75:b6:ab:8d:4f:25:8e:6e:
af:48:f1:c4:f0:bb:fa:5a:da:35:9c:3d:45:dd:fa:a9:e6:bb:
aa:d6:43:01:6d:c3:9d:b8:40:65:89:6f:e0:84:09:1b:6f:fd:
4f:6c:ff:f8:64:2b:ea:c7:4b:63:29:4f:30:f3:03:e6:f8:a5:
e6:12:1c:a8:f5:5d:a6:b5:f7:ed:1d:15:bd:5b:00:dc:b2:47:
8b:73:e7:20:49:e1:2c:eb:86:e0:23:68:f4:72:02:cc:1a:a4:
cd:34:6f:02:da:c2:a7:af:a6:47:5d:53:26:b0:34:a0:59:be:
69:4f:fd:7f:55:f7:a4:c0:c9:7d:40:8d:e4:af:58:b4:3d:c8:
23:ba:4c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:54:04 2025 by rpki-client