Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
File: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft (raw, json)
Hash identifier: bYi3XMkT4eosR380qYf7JahW/kSBDpqsZCTpYR8KL6Q=
Subject key identifier: 20:1E:35:C4:0F:F5:EB:B6:4C:28:D9:F1:56:A7:D8:B9:3A:33:81:C6
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 019A0592A0F2C0876EADEC388AA41DC0DCA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
Manifest number: 0ADA
Signing time: Tue 21 Oct 2025 07:01:26 +0000
Manifest this update: Tue 21 Oct 2025 07:01:26 +0000
Manifest next update: Wed 22 Oct 2025 07:01:26 +0000
Files and hashes: 1: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl (hash: mpk2KJyKyrRTJf6ThmDorEbXBG3XIhHQSZCzdyGChjs=)
2: po_LVWpbKXE3R88IVy-uZ3WJPNw.roa (hash: K+p2Dato5TDcm+bOMSRlFPytRWT6WZtTR14LVyHGo2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 07:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:05:92:a0:f2:c0:87:6e:ad:ec:38:8a:a4:1d:c0:dc:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Oct 21 07:01:26 2025 GMT
Not After : Oct 22 07:01:26 2025 GMT
Subject: CN=201e35c40ff5ebb64c28d9f156a7d8b93a3381c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:85:7c:55:ac:7d:f1:94:dd:db:c2:4c:06:36:
f8:36:68:e0:b9:a0:de:4b:7d:82:23:a1:e9:19:a4:
90:0c:ef:71:1c:25:1b:82:a4:01:72:68:16:e1:45:
c3:d8:99:ee:ed:89:1d:db:9a:65:a8:f2:e5:d4:2d:
bd:b6:ec:88:1b:d7:22:9f:80:53:8f:bc:25:2d:23:
1e:8f:71:57:27:cd:00:a3:52:2f:6a:0d:27:fb:b5:
3d:f8:44:84:de:46:55:5e:2d:13:35:22:85:a9:e4:
f7:df:bf:f3:aa:1c:ed:d2:c4:de:3c:ff:6b:e7:9a:
d0:1e:36:5f:38:46:38:54:1f:7d:ea:b4:2f:b8:75:
24:99:fa:b7:67:f2:39:62:5a:78:d6:e1:44:72:80:
4a:75:58:18:79:91:b5:a2:78:73:7d:45:33:b0:28:
77:11:af:1f:70:96:c5:69:43:22:95:3a:58:f9:45:
03:6e:91:af:2e:0d:02:7b:61:44:13:56:62:1c:83:
e3:2d:f8:d7:07:d3:f9:20:f2:80:b9:33:74:b0:72:
2f:2e:aa:fc:e6:bf:10:82:cc:ee:a3:4d:d4:01:46:
94:fb:88:f3:b1:b4:77:f0:3b:6e:4d:99:c1:a8:f4:
07:e8:62:13:0d:14:03:8e:fb:ea:e5:31:a3:ff:fe:
1f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1E:35:C4:0F:F5:EB:B6:4C:28:D9:F1:56:A7:D8:B9:3A:33:81:C6
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:b4:8d:cc:16:ac:5b:4c:64:e5:cb:0d:01:6b:47:1f:f3:f5:
ca:ed:4e:fd:4b:b0:50:c1:3b:0e:04:4c:c6:44:ef:e8:1d:4f:
eb:a7:93:c1:74:df:05:38:d4:f2:87:1d:12:69:18:4a:25:ce:
b4:a6:a9:c9:61:ce:f4:29:06:dc:a7:a7:cf:2e:4a:9f:d2:60:
76:24:6e:81:0b:2e:90:99:a2:94:29:15:e7:19:54:f8:f0:ac:
8b:1e:bb:4d:09:a4:6b:de:29:9f:dc:d6:b3:e5:71:78:a7:0f:
90:d9:fe:02:58:7f:46:8d:3a:70:64:aa:ac:12:43:bb:47:f1:
dd:ae:d3:91:ce:dd:53:65:d5:13:25:9d:a0:69:0c:37:55:9c:
1c:19:f0:42:e1:74:a2:2b:8f:ad:d3:b7:43:11:fc:b4:c1:de:
65:b9:0d:bb:1d:f3:fc:92:fb:24:d4:95:fa:fd:75:95:1e:43:
10:5d:6d:0f:d6:c6:f9:1d:c7:45:f8:20:80:26:2a:5b:d5:c1:
18:73:25:65:8d:90:5b:3b:c8:7a:cc:c2:68:02:b3:7f:f3:76:
56:92:e2:39:24:7e:40:16:fb:08:14:35:35:1a:9c:a8:2a:56:
5d:b8:7c:7f:53:2e:3a:6d:44:06:42:df:44:d7:34:9b:90:eb:
81:dc:6a:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 13:22:58 2025 by rpki-client