Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json)
Hash identifier: v8I8xLU3FGTaad8Iq6JE6PX2Xb1yqdF3a5jKUzfjc4U=
Subject key identifier: 7E:08:4F:1B:B3:61:C0:1A:6F:2B:DB:70:EB:36:80:42:01:19:B1:95
Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593
Certificate serial: 0199221E31B9534252CC07E4638A3F1D0A8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
Manifest number: 150A
Signing time: Sun 07 Sep 2025 03:00:28 +0000
Manifest this update: Sun 07 Sep 2025 03:00:28 +0000
Manifest next update: Mon 08 Sep 2025 03:00:28 +0000
Files and hashes: 1: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: gI7O3kfN5upZ8z2YUxZ6cXDokFZxojpqveBmsbcptF0=)
2: ytlPgasGVjygeToAnL_7qGL6niY.roa (hash: 4pWkNfB/a5sc8sNCH66lYgOc8aQwiUY9Cf8vuGjBpFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:31:b9:53:42:52:cc:07:e4:63:8a:3f:1d:0a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593
Validity
Not Before: Sep 7 03:00:28 2025 GMT
Not After : Sep 8 03:00:28 2025 GMT
Subject: CN=7e084f1bb361c01a6f2bdb70eb3680420119b195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:46:a5:25:1f:1c:e7:92:d6:3a:51:cf:93:ca:
92:9a:73:f8:50:f8:cc:8b:cb:0d:76:28:5d:fd:8a:
6a:2a:17:84:4d:cf:f0:fa:07:80:98:f5:a4:ed:c9:
73:83:bc:40:f4:13:8c:3b:33:6f:5f:8a:19:94:12:
0b:c0:ac:5b:d2:2b:2b:d4:5a:d4:fc:67:17:74:63:
59:df:40:22:4a:4b:df:45:a2:be:9b:2c:2e:9a:a8:
a8:a7:e1:d7:3f:3e:2b:6e:d8:49:30:b6:2c:44:db:
7c:d9:01:89:17:04:18:6a:d2:19:0a:db:03:48:23:
12:c4:a5:98:15:91:2e:08:f5:cc:ae:3c:09:3d:1e:
81:8f:d2:7d:b8:55:8b:51:40:2b:bc:16:d5:66:c3:
b7:2a:b7:2d:4c:13:b0:8b:8e:02:b2:18:71:34:83:
3a:f9:3c:7d:1d:e7:57:0a:ed:af:34:96:5a:5f:78:
94:9f:b9:c3:1e:18:14:da:40:5b:c6:51:3d:5e:17:
6a:80:51:90:58:55:62:2d:9c:ea:12:8d:d8:c6:22:
f5:70:da:cd:d9:f4:83:33:fa:d0:1b:4d:44:38:23:
24:da:09:7b:d0:bb:bc:6a:e1:75:e2:bb:7e:38:5d:
c8:b6:ec:30:df:15:c0:a5:ae:55:30:da:51:f3:ed:
d7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:08:4F:1B:B3:61:C0:1A:6F:2B:DB:70:EB:36:80:42:01:19:B1:95
X509v3 Authority Key Identifier:
keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:25:80:63:dc:ad:3d:15:32:1c:26:37:21:c7:b9:d7:f9:cc:
50:d1:d1:c7:d2:ce:2b:9c:be:26:7b:ff:05:80:62:05:33:52:
a9:0d:fa:65:da:7b:90:3e:45:05:bf:8f:84:a7:09:51:7d:ab:
3c:63:94:3f:d6:6d:29:fa:01:b9:74:d1:e1:17:90:4c:7e:1c:
9b:4c:50:a6:e9:14:a5:9b:1b:04:21:55:d2:93:d6:01:74:ce:
f4:76:93:3a:9d:e8:33:ce:4f:29:f1:ba:a6:fe:e0:05:4c:b5:
03:3e:b2:91:62:a4:79:0b:1d:f0:22:58:ea:49:89:88:8a:6b:
b0:cb:99:d3:ea:73:65:4b:2c:c5:be:92:63:1b:4c:2f:16:0a:
0a:42:75:bc:b9:ac:90:97:59:cf:23:4f:8d:6f:c3:47:37:f1:
06:48:1d:56:b9:d2:ad:95:1d:63:6f:cd:e9:11:ae:7c:45:75:
a0:f5:c1:95:f1:f3:58:25:61:8c:79:ba:91:8d:71:88:c9:ff:
93:ab:26:09:f9:50:11:00:18:72:43:fe:ce:92:06:4a:7a:94:
55:d1:41:a8:a3:6d:2f:2e:74:e1:16:7c:06:b4:c8:1b:2d:e5:
0c:b2:4c:0d:76:07:ee:ec:6f:26:fd:2d:71:4c:a6:e8:3b:f3:
a1:d6:ad:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:00:37 2025 by rpki-client