Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json)
Hash identifier: kV8vo+hRS0jjT6InFucicJWo7pDByU5tEEu2FVXs/oI=
Subject key identifier: 5E:7F:08:F0:A4:EF:70:53:84:B5:0E:19:B5:46:6C:7C:5D:74:08:01
Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c
Certificate serial: 019A706DE1BDCBE832D078C87C5E0D7B62CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
Manifest number: 1441
Signing time: Tue 11 Nov 2025 01:00:40 +0000
Manifest this update: Tue 11 Nov 2025 01:00:40 +0000
Manifest next update: Wed 12 Nov 2025 01:00:40 +0000
Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: 3tnA3LBHcslE7bgFHtCXVCmfpEtSztOUs2xrnrlVtto=)
2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6d:e1:bd:cb:e8:32:d0:78:c8:7c:5e:0d:7b:62:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c
Validity
Not Before: Nov 11 01:00:40 2025 GMT
Not After : Nov 12 01:00:40 2025 GMT
Subject: CN=5e7f08f0a4ef705384b50e19b5466c7c5d740801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:3f:40:35:ab:00:43:67:0b:0a:78:0a:43:60:
18:0b:73:72:90:76:0b:59:00:ee:ae:9b:22:40:3c:
e9:3f:8c:c2:b1:f0:a3:de:d1:c9:46:cf:a1:d0:65:
19:21:33:db:c6:64:e2:a5:21:70:6d:93:c5:9b:12:
1f:e3:ce:c2:3b:a5:e3:b0:12:f6:83:07:d4:e5:35:
1f:fd:4f:b5:2b:20:31:2d:9c:a9:1a:1e:74:e4:37:
5b:58:1f:c8:9a:1a:aa:2c:60:d1:e3:21:28:22:1e:
d1:90:38:0a:01:42:0d:b7:96:52:a6:18:ed:80:6d:
d4:61:fa:53:31:77:2d:91:06:ee:df:7a:0a:a3:22:
6c:64:3c:ab:87:36:a7:a0:fb:b6:02:b0:08:ee:96:
82:7d:60:c0:03:96:78:63:db:60:bb:cd:16:d1:71:
6c:8c:53:b7:3c:ec:5c:c6:b7:9e:03:01:d1:79:2d:
e5:61:57:32:2f:26:a0:5a:18:b2:77:81:7f:d3:39:
ed:92:83:70:82:81:b9:90:c7:14:3c:54:5e:c2:66:
c6:6d:86:85:8c:9e:d5:c1:f4:64:35:ef:f7:f3:43:
42:46:08:b2:dd:51:7b:7b:ae:b9:a3:6b:fd:ba:2e:
17:46:dc:c5:b2:35:84:ce:15:dc:60:51:ac:4a:69:
60:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7F:08:F0:A4:EF:70:53:84:B5:0E:19:B5:46:6C:7C:5D:74:08:01
X509v3 Authority Key Identifier:
keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:9b:01:7f:8a:e4:a8:3c:d4:0e:6b:11:c8:b9:44:6a:f2:ba:
bf:aa:80:2d:58:fe:c7:c5:45:58:5d:ad:00:d8:c7:2c:29:aa:
05:0e:1f:47:eb:e3:7f:f0:a5:91:97:b0:dc:8b:b7:cd:ae:bd:
32:ec:50:1d:ef:3f:e3:15:26:f2:d8:95:e9:67:4f:b7:57:8f:
5f:82:f8:06:e1:e7:28:87:10:42:ab:15:16:23:75:33:6a:4f:
91:3a:04:e2:0c:01:fe:26:8c:27:8d:bb:50:62:2f:7c:3e:70:
50:0d:54:9e:c7:2c:56:2f:b3:48:ad:1c:aa:69:b7:30:43:ba:
81:76:b4:f6:25:50:57:7e:ad:a9:82:e6:b4:5c:f9:12:6f:fa:
67:ee:5c:92:e8:d8:40:a7:48:6f:a4:f7:15:ff:77:a6:61:c3:
41:81:4d:66:3e:a5:d8:c6:23:8d:c7:02:91:f6:fa:f5:57:24:
16:35:7b:d0:c4:17:e3:49:48:a9:2f:7d:31:bd:af:f4:f8:cf:
b6:fc:b5:5d:7c:6f:e9:24:0f:b7:88:be:ee:7d:ee:9e:fa:0a:
b6:ad:36:7e:d7:9f:9f:d6:7c:e4:2f:b1:4f:3c:ae:22:5e:73:
e9:84:2a:a0:ba:e9:fa:ba:bb:d8:d9:39:ce:07:72:3e:7c:ea:
90:7c:d7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:06 2025 by rpki-client