Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
File: PxP6dbPOiUzEZAQaipX4WffBxNI.mft (raw, json)
Hash identifier: 17aM0PL9r8sGD7d7XxYImrkheQBGtZ2oOMGW+5Fic+0=
Subject key identifier: 2E:C6:92:FD:69:08:9B:DA:7E:2E:5B:5B:6F:7E:84:28:C2:AD:E2:79
Authority key identifier: 3F:13:FA:75:B3:CE:89:4C:C4:64:04:1A:8A:95:F8:59:F7:C1:C4:D2
Certificate issuer: /CN=3f13fa75b3ce894cc464041a8a95f859f7c1c4d2
Certificate serial: 019A725C492ACE0C4BE8FBFF4AB729BA96DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
Manifest number: 02A4
Signing time: Tue 11 Nov 2025 10:00:41 +0000
Manifest this update: Tue 11 Nov 2025 10:00:41 +0000
Manifest next update: Wed 12 Nov 2025 10:00:41 +0000
Files and hashes: 1: PxP6dbPOiUzEZAQaipX4WffBxNI.crl (hash: Y+biZjQdMaWx6PyI0iuHi3EmxHGVLDyAYJL270tEKSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:49:2a:ce:0c:4b:e8:fb:ff:4a:b7:29:ba:96:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f13fa75b3ce894cc464041a8a95f859f7c1c4d2
Validity
Not Before: Nov 11 10:00:41 2025 GMT
Not After : Nov 12 10:00:41 2025 GMT
Subject: CN=2ec692fd69089bda7e2e5b5b6f7e8428c2ade279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:af:92:2c:ab:2d:3f:c8:66:64:f1:c1:3e:07:
9a:9d:cc:0e:fd:8b:2a:cf:e5:8b:15:10:6f:6d:d4:
c5:9c:b6:8a:2b:e8:9c:73:40:80:9c:ef:b8:7b:eb:
16:4c:e9:9c:cb:94:0d:2e:e5:ce:94:e2:68:7d:00:
b2:97:27:13:2a:31:70:bd:0a:3c:84:e5:6c:0b:1e:
86:fb:fe:a5:2a:1a:33:1a:90:d9:99:98:01:99:91:
ef:2e:10:85:a7:c7:be:50:ac:74:f7:fd:18:62:75:
99:72:75:6e:01:41:a8:6a:51:02:25:32:d8:e9:56:
9f:b1:df:d6:5f:3e:e4:12:cb:83:c3:21:d6:7f:9a:
d9:11:19:c3:6c:91:e6:9d:53:db:0e:83:81:fa:4a:
0a:e8:9d:ed:f3:d9:85:2a:f4:bb:6f:74:b9:89:b3:
51:35:f1:94:01:20:f7:19:8f:50:00:42:d9:f7:8c:
c1:b9:28:77:b9:24:75:d5:4e:52:58:e9:5e:d2:7a:
20:e6:1d:01:74:af:85:af:e7:26:29:4f:51:b6:70:
e7:68:a4:20:5c:96:1b:69:c0:50:a3:2b:8c:fa:36:
2e:82:dc:3c:b9:de:fa:92:e9:2e:c8:68:8f:f7:7c:
31:d4:f2:a0:f2:74:be:04:e4:76:eb:a4:54:59:13:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C6:92:FD:69:08:9B:DA:7E:2E:5B:5B:6F:7E:84:28:C2:AD:E2:79
X509v3 Authority Key Identifier:
keyid:3F:13:FA:75:B3:CE:89:4C:C4:64:04:1A:8A:95:F8:59:F7:C1:C4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxP6dbPOiUzEZAQaipX4WffBxNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/82c263-4791-4223-8970-4ae7ad6ea285/1/PxP6dbPOiUzEZAQaipX4WffBxNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:40:5f:bc:42:de:bc:1b:38:75:15:07:91:b4:66:3b:bc:bf:
42:7a:a5:09:66:50:92:f8:a4:f2:14:d5:22:d2:3c:9d:82:5e:
22:a5:d6:9e:9f:4a:e2:18:f5:f1:94:38:9d:35:e2:72:6d:70:
b0:81:99:4c:8c:0f:87:56:47:fa:18:c2:bb:0c:3e:98:c5:84:
a9:7d:e3:36:27:9e:98:d4:d4:bd:ae:48:9b:f8:29:ab:68:49:
a7:6b:db:3e:c4:ca:4f:61:77:0a:c5:1e:ee:8d:e5:33:89:84:
64:62:66:83:30:cd:78:db:75:48:22:90:7e:53:99:6b:56:c2:
44:b4:9e:d4:41:92:35:75:f7:da:10:ed:a0:c9:a0:ab:ed:65:
30:7e:76:b6:43:fe:db:ec:68:2f:41:1c:5f:dc:18:31:06:e0:
39:e7:e5:5b:a2:6f:4d:c3:45:c9:d2:de:19:11:f7:de:45:04:
c8:bf:dd:34:30:e4:29:02:b1:9f:a0:9e:12:2b:8a:d4:a8:09:
ec:c4:92:ae:a4:af:a9:79:2f:7a:6c:88:f5:c0:83:fb:49:60:
81:f8:6d:d6:f9:ef:f3:57:53:18:91:07:ee:bc:be:64:78:02:
1a:a1:66:32:b9:3e:4b:f1:c7:16:9b:9b:e7:80:fb:a4:fc:d5:
12:6c:b3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:37 2025 by rpki-client