Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
File: pHwKyKnV9ixJHUsXyyErUsDnVgc.mft (raw, json)
Hash identifier: KyzKeVEWI7cgoLHReC6jwED7Vc/ZUkmCt4ISU7eBxWY=
Subject key identifier: F1:35:9E:EF:90:82:73:5A:90:5C:FF:49:37:08:9C:B8:F3:44:48:44
Authority key identifier: A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
Certificate issuer: /CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Certificate serial: 019923A000BDFA5EE868E4F39432E8A01D6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
Manifest number: 12B5
Signing time: Sun 07 Sep 2025 10:01:52 +0000
Manifest this update: Sun 07 Sep 2025 10:01:52 +0000
Manifest next update: Mon 08 Sep 2025 10:01:52 +0000
Files and hashes: 1: fFbdm0OeWE1GYVnCMSWrkaX1IWg.roa (hash: H5NNOHLLRS0hsZTLRHxW4ce45JGvEraIddrEMS924Cg=)
2: pHwKyKnV9ixJHUsXyyErUsDnVgc.crl (hash: 2Ic95jNU3GAn6vjGNv2AsgirOHrl8t+9UoKtPRF26qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:00:bd:fa:5e:e8:68:e4:f3:94:32:e8:a0:1d:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Validity
Not Before: Sep 7 10:01:52 2025 GMT
Not After : Sep 8 10:01:52 2025 GMT
Subject: CN=f1359eef9082735a905cff4937089cb8f3444844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ef:80:57:00:bb:16:3f:e3:80:a1:28:a8:58:
90:e2:2d:9f:b5:04:6d:c8:10:aa:5e:5c:07:cd:f8:
bf:32:a3:48:04:c7:a3:26:d9:93:9a:60:d0:4c:57:
1d:18:9b:a6:ab:2e:df:9c:d8:26:e6:90:2a:e0:12:
f4:ae:a0:8c:24:67:44:5a:4c:ab:49:4c:7b:48:04:
c8:b7:91:12:a3:f5:11:7d:e6:f6:8e:4b:47:29:89:
ae:f8:06:e0:87:79:56:0b:ce:b6:c8:9e:f9:0e:2d:
0c:dd:71:58:db:ba:4e:80:14:d9:66:76:d9:03:74:
b3:a4:0b:e0:0c:d3:f6:e0:db:37:11:3f:b9:db:86:
a1:a5:89:b6:47:53:13:81:52:29:d2:3f:4f:09:07:
c8:43:c5:fa:34:4b:b4:7b:48:d3:1b:cb:37:ea:d4:
03:5f:ee:21:6e:2a:3d:fa:52:e3:d8:3f:cc:f4:5b:
ea:aa:aa:4b:b4:7f:81:e1:5e:e7:04:ac:75:9e:14:
b4:45:6a:5e:d9:4e:79:e3:97:88:bf:a7:8e:fc:5e:
0c:89:91:81:58:ea:92:3e:3c:6d:2a:e3:96:26:23:
ca:cf:49:cd:ed:e2:72:b7:1d:55:4a:fa:e2:d1:28:
4a:a1:35:ae:ae:67:c2:54:b2:12:7e:76:ab:45:99:
d0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:35:9E:EF:90:82:73:5A:90:5C:FF:49:37:08:9C:B8:F3:44:48:44
X509v3 Authority Key Identifier:
keyid:A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:0a:48:e9:58:39:5d:5b:e5:b0:dc:45:f2:92:6e:cb:5e:6a:
78:64:ea:ff:29:a0:9a:a7:a7:e7:96:93:4d:fa:71:a6:de:9b:
b3:84:9b:cd:71:22:41:98:3f:a9:7a:e8:45:11:72:42:a1:9d:
14:08:e6:96:88:dc:74:db:0b:5b:8b:9a:32:07:f7:1d:79:d6:
5d:0c:c7:e0:9e:74:a1:10:f1:34:b6:06:e7:e4:8c:59:2e:6e:
3f:c7:55:fd:36:21:88:fb:31:22:4a:aa:5b:44:15:98:26:9d:
94:45:b4:9d:e8:ac:0c:af:08:d2:f6:68:7a:fd:ff:e3:c0:d5:
91:64:4b:1e:b4:f3:c8:57:62:8d:20:61:9a:20:83:25:f6:17:
3d:27:69:99:18:69:fd:28:d0:2f:29:c4:33:8d:5f:41:c9:f3:
9b:7a:2a:a9:2e:06:86:7c:ac:54:84:dd:17:f5:a0:9b:39:9a:
ec:41:be:19:34:9e:6e:51:d0:e4:34:54:1b:0c:9d:a5:d7:b7:
63:30:77:b7:1d:63:a7:ca:3b:42:33:16:36:c2:ec:bc:23:81:
61:aa:99:47:72:c7:5d:2d:61:f4:e8:d0:6f:ef:e2:49:33:9c:
00:02:77:c8:78:59:15:c4:10:45:44:f7:e4:02:8c:82:77:46:
58:3e:94:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:25 2025 by rpki-client