Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
File: pCNxKB3-GQctEzndBIKyqvrVQs4.mft (raw, json)
Hash identifier: Oy7fgoUUwvz0a2s0vyPKQTazHrCjzexf58hCy6o+lS4=
Subject key identifier: A4:BE:AB:5C:2D:64:9A:ED:24:E3:4F:24:A5:98:57:64:26:43:24:2D
Authority key identifier: A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
Certificate issuer: /CN=a42371281dfe19072d1339dd0482b2aafad542ce
Certificate serial: 019A56ADFCCB0339E047A26F71D1A44F68B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
Manifest number: 09EB
Signing time: Thu 06 Nov 2025 01:00:34 +0000
Manifest this update: Thu 06 Nov 2025 01:00:34 +0000
Manifest next update: Fri 07 Nov 2025 01:00:34 +0000
Files and hashes: 1: pCNxKB3-GQctEzndBIKyqvrVQs4.crl (hash: 4unXOPy5dGjJZPR8Mu5+B97wrfJQzXcIIUf0vuchxv0=)
2: rWk5sIUEQt5GM5tD9jvlVGxlmoc.roa (hash: bdSHmybqlxfqe2LDlmT/vhR2hatifsBsFgj+STLVUXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ad:fc:cb:03:39:e0:47:a2:6f:71:d1:a4:4f:68:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a42371281dfe19072d1339dd0482b2aafad542ce
Validity
Not Before: Nov 6 01:00:34 2025 GMT
Not After : Nov 7 01:00:34 2025 GMT
Subject: CN=a4beab5c2d649aed24e34f24a59857642643242d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cc:20:fc:e2:44:94:d2:60:e2:3c:ab:82:26:
4a:28:bd:85:86:3b:05:b7:18:72:64:8e:66:f6:a3:
36:b0:ed:95:77:6b:c5:75:bf:10:2d:43:f7:6b:97:
a7:65:20:10:66:2a:9a:b5:e4:cc:24:1b:27:2e:db:
8b:69:c7:da:79:47:1b:30:83:fb:35:0d:e4:83:cc:
30:99:cb:22:5f:ac:f3:88:14:1a:dc:49:67:f9:31:
6f:82:e8:f5:9c:ac:eb:e0:b2:5a:9a:45:81:7e:a0:
ae:88:a6:8c:f0:bb:6d:d3:f6:d8:e3:10:23:bb:b4:
ac:ca:57:34:f7:78:f3:95:5e:90:44:b6:1f:bc:61:
9e:1d:78:f7:1a:a4:b7:b2:3a:81:ba:bd:ec:68:7c:
e8:97:93:48:dc:02:41:ec:4b:d4:17:4b:52:6d:fa:
e2:7b:23:53:59:a8:df:24:8b:4c:ec:bf:8d:c3:d1:
30:fc:dd:81:d2:11:5d:ce:d6:e5:25:fa:d5:8f:27:
05:ad:7c:83:61:fd:54:5d:f5:33:67:9e:f6:c7:be:
d3:52:88:84:9a:cc:be:0d:7b:51:5f:21:6a:51:e2:
3e:8b:42:c7:98:2e:b6:c2:33:2a:7d:8c:6b:d7:97:
0f:52:50:e6:2b:db:5a:51:e0:03:81:f1:c6:fc:50:
13:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BE:AB:5C:2D:64:9A:ED:24:E3:4F:24:A5:98:57:64:26:43:24:2D
X509v3 Authority Key Identifier:
keyid:A4:23:71:28:1D:FE:19:07:2D:13:39:DD:04:82:B2:AA:FA:D5:42:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pCNxKB3-GQctEzndBIKyqvrVQs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a43a05-603f-4607-bc68-99060e2458ec/1/pCNxKB3-GQctEzndBIKyqvrVQs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:2b:bd:d9:71:85:e4:f2:88:7e:e3:44:a6:d0:32:ed:20:49:
54:d5:88:ef:fa:01:51:5c:55:e5:bd:08:ff:2f:cf:15:27:d6:
54:bc:f6:21:a2:d0:6b:1f:b3:6d:fd:b5:6e:3a:73:95:fb:03:
66:5f:96:e1:2a:ed:40:d2:b4:75:19:2d:14:e0:04:5e:ae:da:
7a:f7:f6:36:a9:18:b0:8a:c6:ad:ad:08:75:72:77:09:0a:d7:
0f:75:d9:67:c9:6e:48:4b:1c:56:43:a1:c4:61:25:38:01:b2:
6d:b6:40:bf:3b:7a:9f:b6:bc:a7:c3:ca:d7:b3:93:ba:04:85:
2e:48:84:eb:7f:36:e0:83:33:f3:36:90:0a:c0:9e:88:4c:f2:
4d:77:bd:51:a3:14:40:81:ba:ea:9d:05:d6:cc:75:b2:ac:58:
f7:4b:5d:1a:c5:7e:30:eb:29:7b:e9:20:ad:0b:e2:1d:c2:af:
6e:3f:84:ed:bf:a2:14:f0:86:9b:5e:d7:60:9d:58:8f:25:01:
06:07:7a:f4:53:e1:0f:dd:e6:c9:be:42:80:cc:3a:f3:dc:0a:
17:52:58:16:77:1a:54:26:68:6a:7e:1d:7d:36:59:05:d6:46:
86:1f:cc:d4:cb:1e:12:27:e0:a0:03:ee:52:16:93:33:83:35:
1e:f6:5e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 04:32:41 2025 by rpki-client