Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
File: pHwKyKnV9ixJHUsXyyErUsDnVgc.mft (raw, json)
Hash identifier: /lQS8VeTF2WGbMj5ZvcvSNImkUr2rI0kZHUcEN6Sb08=
Subject key identifier: 17:FC:07:E1:B1:81:68:8F:16:9A:90:40:FC:21:87:4F:1B:78:E6:B6
Authority key identifier: A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
Certificate issuer: /CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Certificate serial: 019A71B859D1B3EF2700299B3898442E89A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
Manifest number: 1362
Signing time: Tue 11 Nov 2025 07:01:38 +0000
Manifest this update: Tue 11 Nov 2025 07:01:38 +0000
Manifest next update: Wed 12 Nov 2025 07:01:38 +0000
Files and hashes: 1: fFbdm0OeWE1GYVnCMSWrkaX1IWg.roa (hash: H5NNOHLLRS0hsZTLRHxW4ce45JGvEraIddrEMS924Cg=)
2: pHwKyKnV9ixJHUsXyyErUsDnVgc.crl (hash: oeRkdyHP4iMID3Yb7As7sWq0XVyvPevUc+9MbOqCdp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:59:d1:b3:ef:27:00:29:9b:38:98:44:2e:89:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a47c0ac8a9d5f62c491d4b17cb212b52c0e75607
Validity
Not Before: Nov 11 07:01:38 2025 GMT
Not After : Nov 12 07:01:38 2025 GMT
Subject: CN=17fc07e1b181688f169a9040fc21874f1b78e6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d2:63:7f:df:60:1a:db:78:3a:cd:4f:81:4d:
4c:ee:6e:f4:23:02:99:a8:dc:fa:57:cf:da:b6:c2:
26:e3:03:b8:2e:d0:f2:9a:87:a7:64:b7:30:6d:5f:
65:a9:ca:36:29:92:08:7e:07:2a:72:e8:23:26:50:
dc:d7:eb:03:92:47:a5:5d:51:6f:72:3f:02:4a:28:
35:4b:38:1f:62:d2:cf:02:9d:3e:d8:79:b8:c3:92:
47:27:5a:96:11:92:4d:59:88:e5:d1:92:4d:f5:41:
fb:1e:36:0a:e6:5a:f4:3d:1a:72:32:30:54:d7:bc:
ee:56:89:c5:fa:6e:37:d9:68:5c:44:76:45:1a:44:
84:ca:77:13:39:a3:fd:63:bf:f2:a0:a7:b0:05:26:
2f:3e:46:1c:f3:4d:03:c1:33:b9:ca:7a:24:3a:a1:
2c:fa:4d:31:c3:d2:01:c6:9c:1c:38:5f:02:7c:fb:
0c:6f:e8:a8:fb:1e:db:1e:9c:b4:89:12:3a:40:57:
ba:77:33:a7:ec:1e:c0:1c:f2:9e:20:be:20:43:36:
46:d9:2a:9e:90:a1:64:2f:01:ec:a6:23:c7:ce:1e:
85:65:8f:38:03:2e:1a:f8:77:34:41:14:56:92:c4:
9c:56:7f:18:71:a4:ac:7b:23:80:38:c4:69:b3:f7:
99:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FC:07:E1:B1:81:68:8F:16:9A:90:40:FC:21:87:4F:1B:78:E6:B6
X509v3 Authority Key Identifier:
keyid:A4:7C:0A:C8:A9:D5:F6:2C:49:1D:4B:17:CB:21:2B:52:C0:E7:56:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHwKyKnV9ixJHUsXyyErUsDnVgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/25c91d-5a05-46a2-9a79-420cc251e5eb/1/pHwKyKnV9ixJHUsXyyErUsDnVgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:5f:b9:7b:a4:0f:e9:e5:2a:7c:31:4b:9c:c9:ef:2a:8d:cc:
42:f6:6c:3e:a4:61:3a:c1:b3:b4:5c:60:a7:cb:7b:ad:e5:9e:
75:9a:cc:1a:81:9d:a6:f9:52:53:43:e4:79:d2:0c:6b:f7:74:
5c:4c:3c:8a:c8:e4:0a:cc:b2:0e:e5:1b:27:b8:de:4d:db:44:
bf:f9:19:94:07:91:9e:e0:40:4f:7a:d7:ab:98:d7:24:61:5a:
b2:9f:c1:c6:fb:4b:78:88:22:0a:9f:2e:06:3c:1d:1a:da:f6:
b2:06:3f:71:50:ae:25:a8:a3:0e:24:93:17:2d:4a:14:26:82:
77:d4:a6:0b:93:aa:df:c6:0c:57:ad:f2:4e:67:4f:1b:81:23:
d9:1e:76:6b:d0:fd:23:c2:5f:a8:72:58:84:24:cf:45:b5:60:
96:37:c8:a2:f9:73:92:be:f6:c0:31:7f:59:7a:f7:9b:86:97:
e5:ac:b2:36:98:c6:63:21:2f:0c:f9:aa:5e:80:2f:fc:09:a9:
ac:a5:79:58:79:d0:c1:67:fb:d0:2e:89:fb:c9:de:09:b6:3e:
04:dc:2f:e8:53:1d:52:60:46:93:ec:dc:6e:ab:13:6b:dc:c5:
df:58:3e:25:a9:0a:fd:d7:c7:b5:29:26:ef:b0:d1:ba:14:41:
42:19:6c:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuFnRs+8nACmbOJhELompMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0N2MwYWM4YTlkNWY2MmM0OTFkNGIxN2NiMjEyYjUyYzBl
NzU2MDcwHhcNMjUxMTExMDcwMTM4WhcNMjUxMTEyMDcwMTM4WjAzMTEwLwYDVQQD
EygxN2ZjMDdlMWIxODE2ODhmMTY5YTkwNDBmYzIxODc0ZjFiNzhlNmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldJjf99gGtt4Os1PgU1M7m70IwKZ
qNz6V8/atsIm4wO4LtDymoenZLcwbV9lqco2KZIIfgcqcugjJlDc1+sDkkelXVFv
cj8CSig1SzgfYtLPAp0+2Hm4w5JHJ1qWEZJNWYjl0ZJN9UH7HjYK5lr0PRpyMjBU
17zuVonF+m432WhcRHZFGkSEyncTOaP9Y7/yoKewBSYvPkYc800DwTO5ynokOqEs
+k0xw9IBxpwcOF8CfPsMb+io+x7bHpy0iRI6QFe6dzOn7B7AHPKeIL4gQzZG2Sqe
kKFkLwHspiPHzh6FZY84Ay4a+Hc0QRRWksScVn8YcaSseyOAOMRps/eZCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBf8B+GxgWiPFpqQQPwhh08beOa2MB8GA1UdIwQY
MBaAFKR8Csip1fYsSR1LF8shK1LA51YHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEh3S3lLblY5aXhKSFVzWHl5RXJVc0RuVmdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yNWM5MWQtNWEwNS00NmEyLTlhNzkt
NDIwY2MyNTFlNWViLzEvcEh3S3lLblY5aXhKSFVzWHl5RXJVc0RuVmdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8yNWM5MWQtNWEwNS00NmEyLTlhNzktNDIwY2MyNTFlNWVi
LzEvcEh3S3lLblY5aXhKSFVzWHl5RXJVc0RuVmdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY1+5e6QP
6eUqfDFLnMnvKo3MQvZsPqRhOsGztFxgp8t7reWedZrMGoGdpvlSU0PkedIMa/d0
XEw8isjkCsyyDuUbJ7jeTdtEv/kZlAeRnuBAT3rXq5jXJGFasp/BxvtLeIgiCp8u
BjwdGtr2sgY/cVCuJaijDiSTFy1KFCaCd9SmC5Oq38YMV63yTmdPG4Ej2R52a9D9
I8JfqHJYhCTPRbVgljfIovlzkr72wDF/WXr3m4aX5ayyNpjGYyEvDPmqXoAv/Amp
rKV5WHnQwWf70C6J+8neCbY+BNwv6FMdUmBGk+zcbqsTa9zF31g+JakK/dfHtSkm
77DRuhRBQhlscw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:54:20 2025 by rpki-client