Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
File: PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft (raw, json)
Hash identifier: xjU+NNBQIbvJU8/6ALkiAtGOV7Hx0GlVX2HEafYEXMA=
Subject key identifier: 9F:20:62:34:DC:CF:08:18:83:F5:C7:5F:7A:5A:B6:18:83:6D:A7:10
Authority key identifier: 3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
Certificate issuer: /CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Certificate serial: 019A71EEA5EE472F80F75A737EF0EBA30090
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
Manifest number: 0D31
Signing time: Tue 11 Nov 2025 08:00:56 +0000
Manifest this update: Tue 11 Nov 2025 08:00:56 +0000
Manifest next update: Wed 12 Nov 2025 08:00:56 +0000
Files and hashes: 1: PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl (hash: pyYwJgoegEwTijMN68vfLd8AdumGc4xRhsqpQwoO8Nk=)
2: dJvnPDYPLo4Sslu_Zmnf2lx_js4.roa (hash: 5Msv4aPMo6ReE0YmQsW6vQo0j0v5HFcFjEhrex1AtOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:a5:ee:47:2f:80:f7:5a:73:7e:f0:eb:a3:00:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Validity
Not Before: Nov 11 08:00:56 2025 GMT
Not After : Nov 12 08:00:56 2025 GMT
Subject: CN=9f206234dccf081883f5c75f7a5ab618836da710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b2:56:d6:ac:b3:bb:ae:75:59:e1:08:08:c1:
7d:dc:10:e3:7e:31:29:3b:d2:7e:15:ea:ac:d0:e3:
58:19:c8:9c:2c:43:46:32:99:2a:68:56:54:64:17:
f0:e7:03:fb:84:bb:d1:5c:2d:b8:60:07:6f:62:72:
cc:1b:5e:c7:da:3b:cc:ff:e6:c4:7d:dd:77:0d:46:
49:f4:e8:4f:a5:50:00:99:f1:2b:cd:85:60:3f:f4:
ae:f3:d6:73:77:d1:00:e6:5b:cc:e3:ea:cc:40:26:
bf:75:f5:bd:ea:5d:a0:13:11:71:ee:e5:17:e3:23:
28:0e:2b:cb:6e:ea:9e:f6:cd:7b:e8:78:58:e9:cd:
b6:19:3c:bb:5b:81:e0:40:a1:fb:f4:c2:78:87:62:
04:0e:6f:ee:d8:1d:3b:4b:f8:3e:bb:fe:7d:cb:d0:
f1:17:cc:a7:f0:39:df:23:63:50:34:e6:65:a9:17:
b8:0b:30:28:a4:87:fe:14:2a:ec:27:8b:a5:c1:4a:
c8:4f:58:5e:ca:b5:0c:4d:17:69:91:ca:2b:77:7a:
ac:28:ec:b4:3a:f7:3b:9f:a4:14:2c:64:96:88:a1:
95:56:07:ea:5d:65:de:6c:63:de:d0:24:46:d0:ec:
5b:21:bd:51:16:1d:9e:40:b2:88:c8:58:12:58:d4:
55:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:20:62:34:DC:CF:08:18:83:F5:C7:5F:7A:5A:B6:18:83:6D:A7:10
X509v3 Authority Key Identifier:
keyid:3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:e7:c0:e9:21:88:82:65:67:1e:ab:6d:8c:20:38:7c:09:81:
01:23:a8:1d:03:b7:23:d8:e0:c6:bb:16:d3:dc:75:d8:97:77:
67:0d:d3:d5:1f:a6:d6:95:df:18:5d:c5:7f:de:02:31:bd:b0:
e5:0f:4f:95:08:03:39:24:0b:f0:ae:0e:3c:49:19:be:a5:b6:
85:f3:3a:36:8d:a4:57:f1:60:fd:b5:50:b7:5d:6c:56:ed:37:
7a:56:5f:3e:2a:af:33:f3:ee:f2:64:d2:2c:2d:3c:00:74:e7:
32:38:d5:33:62:fc:bc:65:28:92:6e:91:5f:19:1a:ca:38:9f:
38:8c:66:c0:bc:b5:92:6f:d9:d7:08:c9:78:4d:fe:86:49:0b:
d0:cc:88:38:32:f7:9c:d3:45:25:6d:d6:86:44:e1:31:0c:4d:
fb:f0:68:cf:00:8e:c9:e5:5d:a8:fd:27:6d:25:9c:7f:21:4a:
a8:33:8b:64:38:79:a1:a5:04:19:af:f5:8b:26:88:2f:88:7f:
c5:a0:53:55:e3:81:75:47:dd:71:0e:35:ca:bb:bf:20:db:c9:
6f:5e:f5:82:ac:12:1f:f1:8f:51:51:41:2b:b3:e1:b0:9a:3c:
ba:5f:ab:c4:5f:cd:8d:d0:5e:5f:a2:6f:df:d2:7b:6b:ed:99:
06:7e:ce:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:15:13 2025 by rpki-client