Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
File: PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft (raw, json)
Hash identifier: vNgyj/FaAQJsAQ9JfWR5Ad1/IZm2wugPOdj15cyC0ac=
Subject key identifier: D6:56:4B:C4:20:3F:14:52:00:61:5D:66:7E:26:02:F1:9D:37:60:6A
Authority key identifier: 3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
Certificate issuer: /CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Certificate serial: 019921B15E0CD7847FEF1A48B81CDA0DB516
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 01:01:35 +0000
Manifest this update: Sun 07 Sep 2025 01:01:35 +0000
Manifest next update: Mon 08 Sep 2025 01:01:35 +0000
Files and hashes: 1: PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl (hash: tcxmjjq+1HUMTfP93rYctnPqNotTFK9Vlg3yjf9E1lw=)
2: baHbcRR9kf1ghjeGFAS82cVbM5E.roa (hash: ryV49aEsL3mdbzWN2VnZ4BiiOTM51N9BlYGHQV8L9fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:5e:0c:d7:84:7f:ef:1a:48:b8:1c:da:0d:b5:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0ef4358adb040f333d9361a4261ea0e50d38ab
Validity
Not Before: Sep 7 01:01:35 2025 GMT
Not After : Sep 8 01:01:35 2025 GMT
Subject: CN=d6564bc4203f145200615d667e2602f19d37606a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:33:b3:66:1c:b7:32:12:e0:45:35:77:f1:96:
4a:ba:83:e2:94:43:6c:10:e3:68:20:fb:4b:7b:54:
0f:ad:d4:fb:82:80:d1:5e:9e:1b:48:85:41:de:19:
d7:05:36:62:70:6d:1e:1b:c4:fe:91:19:fe:54:19:
ac:90:67:d9:6f:4e:21:31:67:b0:df:e4:cb:bf:34:
4d:de:ed:eb:89:30:10:ee:91:91:a0:48:fe:63:76:
85:4e:84:59:87:a3:72:cf:a9:f3:b9:c9:75:d6:9c:
2c:38:1e:1e:d4:89:ab:86:20:91:0c:5c:e5:bb:54:
3b:78:ae:26:4e:94:8b:1e:62:9c:a4:c1:d6:bb:b5:
a0:b0:da:bc:5d:94:e9:9a:a7:eb:d1:b4:87:4e:43:
65:f9:13:d8:b8:62:96:5a:9e:3b:cb:20:5c:65:87:
ba:44:20:91:43:4f:1f:c0:e9:4c:1e:9e:83:b0:4b:
89:20:b8:a9:19:21:fc:c3:aa:78:01:1f:32:34:e9:
9e:86:46:50:ef:57:1a:46:d4:dd:6e:d9:53:55:5c:
af:a2:19:19:c9:12:cc:75:72:ea:e4:52:f9:f3:4d:
21:76:85:87:c8:59:2d:d6:b7:82:f7:78:6d:91:75:
cf:7e:d5:4d:ee:3c:c5:3f:58:1d:7b:03:89:95:1e:
cf:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:56:4B:C4:20:3F:14:52:00:61:5D:66:7E:26:02:F1:9D:37:60:6A
X509v3 Authority Key Identifier:
keyid:3D:0E:F4:35:8A:DB:04:0F:33:3D:93:61:A4:26:1E:A0:E5:0D:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQ70NYrbBA8zPZNhpCYeoOUNOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f946ef-9619-4bdd-9f47-d2bc96a98a18/1/PQ70NYrbBA8zPZNhpCYeoOUNOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:f6:04:91:0f:ea:1a:06:50:a0:c8:b5:b4:49:d8:73:0d:ca:
be:05:f8:3c:5b:79:dc:e4:4c:4b:d0:01:71:2e:2a:91:4f:aa:
eb:14:ab:cc:76:79:31:14:55:15:d9:29:39:b1:6e:88:57:93:
bd:ca:06:d8:42:43:44:bc:bd:bf:98:43:8b:8d:c6:16:11:31:
16:b4:0c:20:20:8d:83:9c:9d:2b:46:2a:a9:b4:aa:83:3c:5b:
81:2a:dc:60:cd:5f:dd:0d:82:35:74:0f:5e:65:90:94:32:2a:
00:e0:33:cc:f1:91:ef:52:22:6d:b7:3b:f1:71:50:6a:fe:2c:
aa:7a:78:13:8d:fa:a2:9a:38:f3:92:aa:b6:7c:15:20:1d:cf:
6f:27:1e:6e:82:5f:ad:7f:e1:47:92:8e:71:b2:6e:47:a6:18:
f8:6f:f7:4b:01:26:a8:97:dd:32:d2:b2:9d:ab:82:81:a4:51:
03:e5:37:ee:23:0c:3b:4f:72:b9:15:64:7d:94:b4:8a:18:08:
d8:6d:08:38:6f:aa:91:c0:42:1a:f0:18:bc:88:30:7e:18:67:
1e:43:fb:51:a0:6b:69:84:a3:25:e3:65:f0:75:ba:eb:5d:ee:
a5:e9:5b:6d:14:96:e3:39:a7:27:c8:60:0d:b9:50:d6:f5:cb:
87:e6:20:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:25 2025 by rpki-client