Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
File: pQnoZXbAZeFL--6PZSq2wnnM3hI.mft (raw, json)
Hash identifier: mo4zLZeMHOTQd6c+F08J7kxJw0rPcTHE/vgHg6eQ5kg=
Subject key identifier: 15:77:0D:D4:3B:98:F6:F2:6B:81:62:18:B4:DB:1D:71:CA:90:AD:79
Authority key identifier: A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
Certificate issuer: /CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Certificate serial: 0199247ABA0B9E5FF377DCD08C4F92DF44EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
Manifest number: 0FAF
Signing time: Sun 07 Sep 2025 14:00:46 +0000
Manifest this update: Sun 07 Sep 2025 14:00:46 +0000
Manifest next update: Mon 08 Sep 2025 14:00:46 +0000
Files and hashes: 1: eoOnLGiO6CFkl49Rw92BKVWZ1YY.roa (hash: 5KK2WxAAZ4SHFL6JTNlCRgBRKCCitoVvyQFa3VeriMw=)
2: pQnoZXbAZeFL--6PZSq2wnnM3hI.crl (hash: McpfBKGohR4B+0WSykzCCxyRbBYdkvFhu5F8gv2N6so=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:7a:ba:0b:9e:5f:f3:77:dc:d0:8c:4f:92:df:44:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a509e86576c065e14bfbee8f652ab6c279ccde12
Validity
Not Before: Sep 7 14:00:46 2025 GMT
Not After : Sep 8 14:00:46 2025 GMT
Subject: CN=15770dd43b98f6f26b816218b4db1d71ca90ad79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9d:30:55:42:83:46:68:5f:1c:a7:a6:24:47:
5d:20:6e:9c:83:96:13:8a:e6:19:d9:30:9d:c8:83:
2f:6a:02:32:66:31:59:9e:61:58:b2:20:ee:46:06:
14:da:5b:6a:a7:35:c8:31:d8:a8:c8:c1:81:9f:3e:
0c:1b:19:4c:32:e0:62:c9:7c:63:ea:02:2b:8b:12:
f4:3c:36:c2:89:f4:3f:1d:e7:99:1f:b9:fa:9b:9f:
5f:0d:9e:6a:c7:23:58:00:45:70:ae:07:ed:d6:2d:
60:be:1f:cd:19:07:4d:72:d5:e4:91:c1:9a:0a:a5:
c8:7d:ef:69:b7:2b:6c:26:b7:06:6d:67:8a:88:d3:
15:94:18:1c:6d:f3:e2:fd:06:4b:aa:41:dd:aa:02:
92:ba:b8:03:c3:ed:50:c9:1a:43:31:a5:9e:64:35:
23:3e:66:55:e5:02:5e:ed:ca:49:c5:af:86:37:c5:
16:0b:df:38:e2:14:86:19:1b:43:7e:a7:d5:24:80:
da:c0:37:e6:63:bc:44:82:b0:7b:ba:b3:8d:80:07:
7c:fd:8f:2f:a1:db:29:c4:96:2b:5a:1f:fb:e7:86:
bd:40:bb:78:99:06:1c:14:19:97:e6:f6:55:48:a0:
fb:64:ca:12:39:f5:cb:eb:21:cd:c9:8b:50:f7:e7:
88:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:77:0D:D4:3B:98:F6:F2:6B:81:62:18:B4:DB:1D:71:CA:90:AD:79
X509v3 Authority Key Identifier:
keyid:A5:09:E8:65:76:C0:65:E1:4B:FB:EE:8F:65:2A:B6:C2:79:CC:DE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQnoZXbAZeFL--6PZSq2wnnM3hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/014245-8685-4af3-9387-a0f5742b1b04/1/pQnoZXbAZeFL--6PZSq2wnnM3hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:dc:64:73:5a:1f:3e:34:4d:e8:7e:26:b4:0b:27:4f:57:a6:
44:68:da:51:26:23:f3:fa:41:92:4c:ba:24:30:b9:36:ea:6c:
9c:81:50:35:78:82:aa:ba:1c:a9:3e:fb:47:ef:65:93:ae:59:
16:d3:d2:87:79:7b:c7:3a:84:72:a9:eb:c5:8f:6c:7c:ab:b2:
9e:b4:0c:1f:32:5b:46:83:d4:e1:16:68:74:1c:f3:e8:01:4e:
c5:32:af:2e:18:43:37:ac:86:ab:26:c1:fa:bb:ac:9b:98:fa:
46:76:5c:66:80:20:42:db:2b:36:1e:9b:d3:17:fa:cf:f9:a6:
64:2d:57:7e:45:59:18:17:45:06:33:05:35:d9:dd:8e:7f:6b:
fd:e2:5a:72:a4:11:65:b6:0b:be:0f:a6:31:58:8d:5e:f6:88:
66:04:62:8d:0e:30:07:28:93:9c:e3:d0:5b:20:c6:6e:d6:02:
7f:74:f5:47:94:89:1f:1c:41:0b:67:93:34:3f:88:2e:e9:27:
49:a4:03:6f:74:46:bd:53:00:a6:10:9b:df:bd:fe:a5:d5:d0:
45:cb:01:0a:af:11:f1:24:1c:83:16:2c:75:2b:06:8b:80:fd:
ef:c5:38:2a:5a:fe:7f:fb:fc:50:db:e2:9b:ef:e0:d2:ba:5b:
25:d3:e8:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:07:03 2025 by rpki-client