Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json)
Hash identifier: J5TJ211Zk73jVVmYCSYspiF4O6fWFTk1Hg1ZJ8M5OYU=
Subject key identifier: 29:CF:00:7C:4E:99:20:60:5D:B8:CD:02:06:39:BE:B9:62:EF:32:D0
Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Certificate serial: 0199221E775F9BB8020863D508FFF552DDB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
Manifest number: 0476
Signing time: Sun 07 Sep 2025 03:00:45 +0000
Manifest this update: Sun 07 Sep 2025 03:00:45 +0000
Manifest next update: Mon 08 Sep 2025 03:00:45 +0000
Files and hashes: 1: 0-NbRqc8zQ3-jTIYZOwXbybz260.roa (hash: F4aAH1P/CqccbM0rJQ6/jB1mC+tQi8oCbtTD8Uif+I8=)
2: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: m88+LxesT/qfEf0DP8MJDn8e2O5ap0u8sXXb80FqKmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:77:5f:9b:b8:02:08:63:d5:08:ff:f5:52:dd:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444
Validity
Not Before: Sep 7 03:00:45 2025 GMT
Not After : Sep 8 03:00:45 2025 GMT
Subject: CN=29cf007c4e9920605db8cd020639beb962ef32d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3c:aa:7c:6b:73:29:58:ee:62:0a:db:a2:d4:
12:03:62:79:0c:e5:be:11:c9:5a:89:35:09:8c:65:
dc:87:db:d9:3a:d4:29:d4:4a:ba:48:2b:22:9c:e0:
1f:d7:de:15:0b:28:12:39:9b:94:09:3f:ec:2d:7b:
2b:7a:78:23:5f:7b:24:3b:8a:0c:27:f7:0b:ac:2c:
c0:03:4d:5e:ac:86:5b:c4:93:88:91:93:4f:a1:98:
17:07:19:eb:b2:57:e3:58:54:44:1d:23:59:a6:3d:
f1:7e:47:0a:97:a8:80:5b:42:0c:fc:60:17:5d:bc:
7b:6a:54:94:22:49:d3:7a:a8:56:d6:54:81:c1:72:
92:1e:8d:26:ee:5d:81:ba:c0:19:43:2b:18:49:e5:
13:d4:c6:08:3a:18:4f:cc:ae:12:ba:7b:9d:f4:68:
18:23:71:20:59:14:0c:06:69:63:f1:be:a1:9b:ac:
e8:31:f6:f1:1c:ec:9f:91:44:da:17:68:d9:b2:05:
6e:6c:7b:be:17:a1:24:6c:e9:60:d3:95:4b:a0:a6:
a4:0f:67:00:db:af:47:f4:90:5b:17:77:36:2e:63:
68:f7:21:fc:ec:05:7a:f3:62:be:4a:e5:79:69:ca:
b6:d5:9c:96:7f:39:95:b1:0c:5d:cd:e0:b1:2c:f8:
bb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CF:00:7C:4E:99:20:60:5D:B8:CD:02:06:39:BE:B9:62:EF:32:D0
X509v3 Authority Key Identifier:
keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:e6:3f:9a:8d:a1:8b:b5:7c:6f:b7:24:d6:ff:35:34:c5:34:
72:eb:f7:c6:d3:2c:92:a5:60:e5:92:41:60:d5:b2:f6:b5:64:
d6:e7:7c:97:07:cf:9a:c0:9c:a8:88:e2:13:e5:bd:e9:6d:5e:
05:b5:61:36:04:a0:95:f1:f3:70:c1:fc:da:d7:0c:35:8f:99:
71:9f:47:4e:b0:30:2c:1d:a7:f0:02:53:c9:18:81:c6:3c:28:
43:5c:2b:86:ae:d4:83:1a:16:fd:e6:b1:ef:e3:8a:64:23:d1:
88:d2:ab:98:95:43:67:cc:6e:fb:6f:84:ce:8b:16:2b:dc:84:
d7:99:e9:00:1b:bd:15:3d:4f:b9:35:12:51:37:44:bc:b3:16:
aa:09:d0:b9:f2:36:95:1a:b1:df:3f:cb:d7:9e:ae:2d:9a:78:
6c:9d:60:21:6f:b2:12:2a:04:bd:ec:04:12:59:0d:0f:92:a8:
f9:9b:44:61:b7:fe:d7:4d:24:56:c1:fd:99:65:3a:69:f8:7c:
f3:34:74:19:d8:55:7f:8c:95:86:4d:66:81:da:cb:f3:dc:ee:
5e:38:83:52:35:18:a9:1e:23:c4:33:16:9e:99:81:20:5a:62:
67:b6:92:f3:57:e5:ef:c9:4e:84:cd:84:db:c9:5a:14:88:ab:
76:9a:2f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:49:49 2025 by rpki-client