Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: 64Xt7xJgBdT/HK3BWyYvdhKWjx3CmrS3mICK09BsXEw=
Subject key identifier: 06:D6:A6:70:C6:53:7F:1D:EA:B4:4F:9D:AB:8E:43:F9:59:46:3C:F3
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 019A72266B9D13C7B50726FFFDCF083B72E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 15B8
Signing time: Tue 11 Nov 2025 09:01:51 +0000
Manifest this update: Tue 11 Nov 2025 09:01:51 +0000
Manifest next update: Wed 12 Nov 2025 09:01:51 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: uSlgh4L+eQ+8lWk2wKsyN4fb7V0wxYdPlYD5uawqHds=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:6b:9d:13:c7:b5:07:26:ff:fd:cf:08:3b:72:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: Nov 11 09:01:51 2025 GMT
Not After : Nov 12 09:01:51 2025 GMT
Subject: CN=06d6a670c6537f1deab44f9dab8e43f959463cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:07:b2:87:90:9f:a9:5c:3e:d8:ea:4c:f8:58:
c6:86:c0:dc:99:6b:e2:22:2a:d7:7d:d9:1c:fc:ea:
c6:c5:2c:ee:f6:79:60:59:cb:44:d9:73:84:81:bf:
45:bd:c2:7e:76:8b:11:c1:b3:cd:11:b6:8a:12:52:
7a:07:e5:67:38:1d:2e:a8:4e:a1:d1:69:36:ee:c1:
0c:aa:43:59:91:69:8f:0d:ec:88:45:52:9d:81:5b:
25:9c:28:cd:95:2b:eb:56:45:c5:6e:0a:f0:4b:88:
c7:ff:f1:b8:3a:ae:6d:62:58:18:4d:64:ca:f1:6e:
cc:68:cb:c4:88:52:de:fb:fe:57:5a:06:c4:af:f6:
78:95:b1:26:32:67:8e:8b:7b:c2:89:f4:fc:dd:81:
d9:4a:d7:f8:71:6a:fb:4c:a4:45:b8:f6:ea:6e:82:
3f:18:5d:f5:09:6e:31:3b:ef:ee:46:e2:13:5d:17:
4d:48:bf:16:68:8e:5d:d6:50:05:f3:44:bb:91:d9:
e3:68:3f:19:b7:bf:3e:7a:82:2b:63:8f:43:e2:42:
5a:b6:a4:3f:2e:45:89:6f:6d:5b:0a:53:cc:54:68:
a9:4f:59:67:1d:4b:05:54:af:a2:3e:19:51:2b:79:
9f:17:44:58:c9:86:e1:2b:67:9a:e1:94:c3:a5:1f:
37:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D6:A6:70:C6:53:7F:1D:EA:B4:4F:9D:AB:8E:43:F9:59:46:3C:F3
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:7d:31:9c:de:04:92:a1:1b:0b:18:e1:fa:79:56:fd:7a:c5:
02:b7:c2:0c:49:26:06:3e:01:6f:08:7e:8a:ab:b7:85:98:d8:
a8:89:40:17:4e:ca:2e:88:a9:24:cd:57:03:6d:37:81:00:38:
3e:72:f7:10:61:f2:ab:ef:47:b6:03:e2:77:54:17:75:ac:4d:
21:22:00:bc:d2:1d:44:9d:c4:86:23:7d:e6:89:01:7a:3a:ce:
38:64:22:4d:44:3b:db:de:4d:52:c8:4b:c8:44:2a:03:b6:2e:
e0:01:76:c5:df:93:98:25:28:f9:e5:5c:d4:6e:20:46:f5:32:
44:18:36:bd:90:f5:a0:bf:8a:9f:cb:e8:8b:17:2d:56:cc:e7:
62:a0:9a:1e:f3:e7:4a:1d:63:77:cf:67:8e:e5:e8:17:e0:3e:
67:3c:f5:35:62:9b:1c:2f:13:bb:b1:cd:c8:cd:04:30:87:05:
f3:08:31:a0:68:e7:f0:ff:43:28:f6:45:5a:f4:fd:c5:e3:25:
b2:14:f4:f0:14:13:8c:40:db:18:dc:ee:66:f6:8e:f7:3c:6f:
c5:d9:06:c2:83:f9:31:b8:ab:50:50:27:17:b3:86:83:f1:73:
4c:3d:06:eb:56:c4:36:72:f9:9c:aa:eb:6f:37:78:db:01:ac:
40:e6:64:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:44:44 2025 by rpki-client