Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
File: pxrCOk0-z8vKRROJaxeuToloKng.mft (raw, json)
Hash identifier: LqYBkZ0MqWaQfq3npBxGFtCG8iRfuPFl2a6Jdp6e350=
Subject key identifier: AD:3A:BD:9C:E0:B2:A2:50:6E:B2:C7:B1:F8:F1:31:0F:2F:A3:57:92
Authority key identifier: A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
Certificate issuer: /CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Certificate serial: 01992367C05D57D2A736D69782EB16B31B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
Manifest number: 43
Signing time: Sun 07 Sep 2025 09:00:25 +0000
Manifest this update: Sun 07 Sep 2025 09:00:25 +0000
Manifest next update: Mon 08 Sep 2025 09:00:25 +0000
Files and hashes: 1: MQtI7yBtmsDk4DKqPSGfWKdKyAo.roa (hash: +iNt+U/ElAwJwno5xdY5orBbnGETU96olMUGY0otCFs=)
2: pxrCOk0-z8vKRROJaxeuToloKng.crl (hash: G0nG/zrc0bQF898QO237Fn0b/IYnrQBJSzpeO52HQ/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:67:c0:5d:57:d2:a7:36:d6:97:82:eb:16:b3:1b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a71ac23a4d3ecfcbca4513896b17ae4e89682a78
Validity
Not Before: Sep 7 09:00:25 2025 GMT
Not After : Sep 8 09:00:25 2025 GMT
Subject: CN=ad3abd9ce0b2a2506eb2c7b1f8f1310f2fa35792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:bd:2f:29:84:79:07:f6:e0:9a:7d:91:a4:
30:a0:71:df:2a:5c:e7:3f:16:83:2c:e8:80:fa:3a:
e7:1e:25:75:75:9b:a9:b3:00:ba:da:24:86:a5:20:
19:20:2b:20:1b:a7:15:00:a7:e1:b9:e8:9a:e8:f8:
21:c2:fd:1f:d9:ef:1c:f5:8d:15:36:92:6d:3f:09:
21:0d:3c:42:77:55:56:fc:e3:c7:c7:c2:c0:ac:2e:
af:8f:c3:15:ff:87:81:5d:c0:10:2b:6d:d9:23:dd:
85:42:5c:95:39:06:d5:b0:e1:65:a5:24:5c:0d:0b:
70:94:d9:07:64:3a:ba:b2:35:44:b5:ad:bf:18:53:
3a:fc:be:5b:92:61:5b:9a:89:53:22:19:e3:6c:48:
cf:5f:49:3b:61:52:36:e0:1f:72:11:2d:82:14:dc:
c5:56:c4:81:e9:81:e6:56:f1:06:b0:b3:9f:c6:13:
9d:01:51:20:5a:c0:4b:5f:c9:45:bd:51:c7:be:58:
90:f8:83:a2:a3:14:11:91:cc:a4:ff:41:6a:16:ae:
fe:16:e8:1a:8b:48:c5:5a:4c:c1:da:f9:ad:11:3d:
40:44:97:f1:e0:fe:79:fb:8a:cd:d3:e4:ba:69:51:
f0:f2:22:1a:c5:10:1b:52:1b:9f:40:94:5b:79:0b:
8a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3A:BD:9C:E0:B2:A2:50:6E:B2:C7:B1:F8:F1:31:0F:2F:A3:57:92
X509v3 Authority Key Identifier:
keyid:A7:1A:C2:3A:4D:3E:CF:CB:CA:45:13:89:6B:17:AE:4E:89:68:2A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxrCOk0-z8vKRROJaxeuToloKng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/831cec-d965-400a-9899-fdbc5c6ae5aa/1/pxrCOk0-z8vKRROJaxeuToloKng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:63:c1:c7:7e:60:3d:b2:39:98:27:aa:99:2a:4e:6a:2e:1d:
66:89:ae:cd:d1:04:dd:1c:32:29:16:e6:81:df:2c:64:e4:3c:
47:72:18:8b:14:d9:5d:f8:aa:e6:9b:54:84:f1:26:46:da:3f:
96:64:5b:5f:83:0a:8b:a7:38:0c:0f:40:86:35:73:56:15:db:
90:24:87:21:74:f2:14:fe:8f:eb:6b:0c:cd:d7:b2:be:7e:af:
29:90:e3:9c:25:2d:7f:90:4b:64:fe:b5:87:33:89:27:2a:b3:
30:be:02:7e:28:4b:61:ff:bd:80:69:59:59:43:b1:12:13:aa:
66:f2:1f:67:90:4b:6d:49:27:52:0e:9a:f9:d9:98:09:1e:24:
5d:0f:41:b3:b8:37:55:43:19:b5:40:1d:45:82:3c:2f:4c:69:
76:54:fe:42:0f:c5:20:db:90:74:4d:49:07:83:38:83:46:c0:
2e:e1:25:3b:31:01:da:2b:f9:1c:08:37:c1:1e:6d:fa:5b:34:
0c:e1:1d:03:71:1e:34:38:e7:ba:1f:ff:6f:87:9f:d2:d4:d9:
55:f4:b9:42:79:6f:32:85:cd:e1:a1:bf:9f:31:af:1e:ce:9f:
98:b3:d7:d1:72:a5:b8:c1:55:e3:b3:34:a6:71:40:17:65:c9:
aa:21:cb:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:00:37 2025 by rpki-client