Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: ItAPKU3El8gK7zf3EYN+oRpaOtg2xsxcRHHyChxDRqw=
Subject key identifier: 94:51:D8:89:43:12:99:C6:D7:7B:61:FD:1E:74:CF:F2:4E:F2:58:D3
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 01992443C2568E7A036CC46B8B518DEEDAF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 1395
Signing time: Sun 07 Sep 2025 13:00:44 +0000
Manifest this update: Sun 07 Sep 2025 13:00:44 +0000
Manifest next update: Mon 08 Sep 2025 13:00:44 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: H21wvd3gPuA+Nj95F8fp2eisv3W2+5VIW3C4iNpCXTc=)
2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:43:c2:56:8e:7a:03:6c:c4:6b:8b:51:8d:ee:da:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Sep 7 13:00:44 2025 GMT
Not After : Sep 8 13:00:44 2025 GMT
Subject: CN=9451d889431299c6d77b61fd1e74cff24ef258d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e1:2c:10:ef:99:f7:a9:b2:76:b5:23:ac:4b:
c9:e9:7e:14:77:34:60:7d:59:f6:d5:ed:2e:41:a3:
e3:54:4f:f4:e6:30:51:05:40:fc:24:e1:59:c8:4c:
d8:c7:76:b0:34:a0:d3:2f:97:4f:92:45:1d:ba:d7:
ed:99:b0:e6:6f:fc:5b:69:83:ae:98:db:f2:67:fd:
64:b3:9a:c6:67:7c:b0:d7:33:a2:bf:b1:a6:8d:c1:
9f:fb:17:1a:e7:9f:07:f7:e3:40:81:b0:44:42:3a:
70:65:b2:22:0b:86:30:f5:33:cf:e4:b1:b9:1a:60:
42:70:3e:59:45:e4:2c:70:d6:c9:ef:0b:b5:0c:67:
a3:2c:c8:67:66:49:41:05:ed:fd:f2:8b:d7:a9:1a:
7e:1d:94:10:96:c5:2b:c4:d0:91:0e:26:f6:bc:f2:
d8:d6:3a:18:88:5f:50:b4:68:b4:c5:86:2b:5f:76:
ac:74:a4:21:18:0f:9c:05:e2:3d:01:23:b4:1e:8c:
6c:fe:03:74:a6:9f:07:78:6c:61:c5:ec:4a:95:e7:
cc:2a:ad:a5:4a:a0:95:a1:52:e9:08:26:26:43:f5:
75:c4:68:82:9f:de:db:8f:ba:70:b9:e8:9c:10:26:
da:bc:c2:fd:4d:55:4c:9d:c2:04:c0:95:90:1e:cf:
63:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:51:D8:89:43:12:99:C6:D7:7B:61:FD:1E:74:CF:F2:4E:F2:58:D3
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:31:ac:c2:e5:c6:ec:05:75:2d:61:de:ac:7a:75:d1:ac:94:
d5:4b:90:a9:92:c7:54:26:64:ab:df:5c:ec:ee:50:ce:a0:fb:
1f:2a:e9:e2:4c:f3:7c:f9:2c:42:66:81:1e:b9:49:cb:80:91:
23:1b:6e:e8:d9:e2:bf:cb:c6:df:f6:52:26:72:77:3d:6d:78:
4d:b4:8b:35:af:12:74:19:ce:16:f8:b3:3b:d0:35:c5:52:e5:
42:b1:5a:9e:ce:df:0d:08:a8:07:2a:9b:65:05:11:cf:00:fe:
8a:20:39:fb:a9:ae:15:42:09:89:b2:fc:e9:17:47:62:e0:a9:
25:4e:d7:21:0d:a5:1e:32:c3:fc:8f:51:f2:e3:74:45:5d:0d:
11:46:d7:4f:85:4a:47:3f:02:fc:ad:e0:d2:d2:69:02:ce:68:
b8:76:b7:c0:cf:3d:0a:4c:54:21:bb:5b:25:44:8b:8b:5a:03:
3b:1b:0f:09:f5:1a:1f:e8:8e:d3:c9:76:5c:2d:ff:77:d9:29:
7b:e8:ac:78:6c:87:0e:43:e9:92:b6:c6:ed:c3:a9:f5:59:9f:
c0:b3:69:36:24:2f:b4:5e:3b:62:de:8a:b8:ba:56:1e:7f:e0:
69:2c:1d:4f:4a:c0:1f:e2:11:9f:76:c9:1e:3d:ed:89:89:b2:
0d:54:8c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:35:45 2025 by rpki-client