Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
File: pnUQ3cUswCV-TCVS9b1XVURUxgs.mft (raw, json)
Hash identifier: shU7tDSgkC9b+QWTQHVHC5Plw/Wx7t5Q4881AfV0d1w=
Subject key identifier: 8B:20:CF:E8:CA:60:BD:8B:E3:51:C7:D5:14:70:5F:18:22:DC:3A:EB
Authority key identifier: A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B
Certificate issuer: /CN=a67510ddc52cc0257e4c2552f5bd57554454c60b
Certificate serial: 01992255161D73C0782A21AC86C4E688CD95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
Manifest number: 05EF
Signing time: Sun 07 Sep 2025 04:00:25 +0000
Manifest this update: Sun 07 Sep 2025 04:00:25 +0000
Manifest next update: Mon 08 Sep 2025 04:00:25 +0000
Files and hashes: 1: pnUQ3cUswCV-TCVS9b1XVURUxgs.crl (hash: uGyyGA6Fqy6lClIQYicHgTUp4njgZqkvBjJ7/z0H4pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:16:1d:73:c0:78:2a:21:ac:86:c4:e6:88:cd:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a67510ddc52cc0257e4c2552f5bd57554454c60b
Validity
Not Before: Sep 7 04:00:25 2025 GMT
Not After : Sep 8 04:00:25 2025 GMT
Subject: CN=8b20cfe8ca60bd8be351c7d514705f1822dc3aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:57:75:66:bf:7f:f5:5f:7d:5d:ea:ea:db:44:
1f:31:73:6d:dc:d4:d6:97:be:dd:da:f8:c2:66:ce:
8a:df:fe:1f:e4:2a:d5:8e:4b:dc:95:b3:6f:23:b3:
32:33:d4:28:82:4b:66:da:56:dd:c0:b9:20:b9:7e:
91:bd:5f:a9:4a:62:db:11:11:1f:4b:09:7b:c0:16:
92:fc:26:6f:a1:10:08:0d:e5:26:6b:0e:15:9d:9f:
fd:e7:4e:53:41:91:d8:fa:10:9f:04:c9:5d:aa:82:
e1:6b:27:fa:57:9d:d7:45:1b:ab:63:19:54:b4:6a:
05:4a:17:c1:7e:da:3b:74:40:92:c3:ae:ac:0d:64:
b6:6f:b2:0a:39:4b:c3:b7:78:fd:56:6c:c5:f3:dd:
02:51:1f:7d:50:c2:7f:2d:2b:f4:f7:8f:db:34:73:
1f:3f:3d:a9:6f:fc:45:2f:76:d4:fb:a0:c2:5c:4f:
7e:15:49:17:d1:df:7f:f8:94:53:58:8d:9f:dd:c3:
d4:7c:2a:f9:92:50:53:8d:8a:e8:9a:85:ab:d1:0a:
49:6a:2c:b6:65:06:cf:3e:05:69:70:56:09:d5:12:
29:8e:95:77:f5:e0:9b:01:1b:d0:a6:ab:b1:62:9d:
55:20:19:e5:e8:70:88:fe:c8:a4:6e:72:dc:ad:de:
dd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:20:CF:E8:CA:60:BD:8B:E3:51:C7:D5:14:70:5F:18:22:DC:3A:EB
X509v3 Authority Key Identifier:
keyid:A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:64:d1:94:44:e2:2b:45:60:4e:f3:7c:39:c3:ad:6b:97:c2:
2b:9d:3a:11:dd:cd:81:ff:0f:00:41:b1:58:28:fe:bd:d9:7a:
67:b1:1b:b6:f5:ce:e3:b8:ed:0e:e6:f4:e8:67:81:da:75:3c:
d8:c6:26:02:6d:83:3a:13:a2:15:00:08:3e:21:c7:49:1a:5c:
8c:3a:da:ed:88:cf:2e:01:0b:3b:a3:ea:bb:27:e1:b6:4e:a1:
c2:6f:a9:4e:13:61:53:bc:f7:a3:2b:0a:42:e9:18:d3:7d:d3:
4f:80:de:ff:65:f6:72:55:2f:cb:b4:41:41:82:bb:58:fe:88:
f8:0d:75:4a:03:44:41:d8:87:17:a2:80:b9:14:1d:36:7d:41:
69:a7:2a:36:db:66:17:9d:40:bf:59:df:4c:4b:17:db:32:6b:
bd:b3:4d:ed:60:e7:99:2c:f6:b6:b2:13:a5:f1:e0:60:4b:35:
63:09:bd:1c:d1:c4:87:8c:a0:df:0b:47:a7:f3:f0:72:a6:ec:
60:80:47:5b:d6:91:12:a7:60:63:de:47:d2:56:75:c5:e8:26:
01:c2:5d:7b:f9:43:82:b9:60:f9:26:77:57:31:6d:3f:fc:17:
3e:cf:b4:f3:3e:21:06:f9:5a:5d:2c:86:e0:82:36:c1:eb:a9:
de:15:e2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:18 2025 by rpki-client