Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File: PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier: /Q06PeSnSK75bSkwdDNvAQvMu7o+aE4UcAW5k6cH/4Y=
Subject key identifier: A8:CD:09:73:1C:2A:70:78:53:00:F5:79:D8:59:FD:ED:B0:59:3A:17
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 019922FA4EDCEABB136D51F98B0A16C0702A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number: 1145
Signing time: Sun 07 Sep 2025 07:00:53 +0000
Manifest this update: Sun 07 Sep 2025 07:00:53 +0000
Manifest next update: Mon 08 Sep 2025 07:00:53 +0000
Files and hashes: 1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: CaqeSKgvTaFyt+Yb0UFyoLU6zWSM2Xsedi34r6FLei4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:4e:dc:ea:bb:13:6d:51:f9:8b:0a:16:c0:70:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Sep 7 07:00:53 2025 GMT
Not After : Sep 8 07:00:53 2025 GMT
Subject: CN=a8cd09731c2a70785300f579d859fdedb0593a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:58:d2:18:e1:a8:cc:35:7b:88:78:c0:f9:e2:
d2:36:ec:39:b1:dd:e9:09:9d:5b:b1:9e:a0:a2:ae:
f2:67:42:c8:77:3c:73:95:7d:96:4e:3b:be:f9:81:
7a:51:3f:4b:1b:6d:64:08:af:eb:6a:19:7a:06:4c:
29:de:9e:91:76:82:32:a5:0f:ee:6e:31:75:16:6e:
ca:1c:9d:c2:e0:fc:49:87:27:d4:94:ff:bd:61:49:
43:d7:7b:38:4f:7f:f7:0c:eb:19:3f:0a:12:70:52:
ff:e9:7a:92:e9:2f:fd:b8:bd:b2:3e:bc:1b:a4:20:
2e:f5:4d:f8:90:0f:78:9c:30:71:7c:30:90:09:a6:
60:55:e5:65:3e:ca:ee:87:9c:6c:e4:45:11:ba:2c:
c1:a8:2d:c6:77:ae:9a:4b:a7:7c:89:23:25:4f:26:
15:9b:3e:20:78:71:3d:1e:d5:87:7a:b5:f6:e1:27:
90:9d:51:ff:e2:66:03:0b:0c:7e:ac:87:da:6f:a4:
9a:63:c1:78:8c:75:3b:88:5d:ec:29:fd:f9:99:b0:
b5:ad:07:d4:ed:17:ee:c6:ce:9e:8d:51:2a:f4:44:
7c:d6:fb:5a:60:72:4e:66:dd:6b:af:ef:18:98:ed:
33:47:c9:e1:08:81:92:8f:01:48:6a:03:91:1b:48:
43:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CD:09:73:1C:2A:70:78:53:00:F5:79:D8:59:FD:ED:B0:59:3A:17
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:4f:40:a2:e4:a8:39:13:d6:2d:5e:a4:eb:26:31:b2:fd:52:
b5:b1:c3:23:20:20:8a:c8:3f:16:0b:74:f0:ef:9b:36:fc:bf:
af:ea:25:9f:d5:dd:de:b7:be:8e:05:ba:4e:a6:21:9c:15:6e:
f7:76:05:99:a7:39:a2:77:72:3f:b4:10:7d:d7:71:60:16:46:
a3:89:b2:f1:e0:55:1b:6e:f6:0d:f1:17:21:48:37:2f:ca:19:
1c:ce:dc:dd:12:5f:1b:fc:71:53:ff:e2:02:06:28:0a:f3:2e:
b1:53:c7:65:53:aa:29:09:12:f2:66:fd:7f:22:60:45:7d:21:
27:1e:c7:b8:8f:df:3d:34:35:19:cc:33:9f:95:e3:34:10:48:
5a:b9:08:d5:3e:ee:b7:e6:78:74:08:5e:d6:02:4f:8b:97:b1:
4c:62:58:3f:3d:1b:fb:3a:27:2e:03:4f:5f:b9:10:06:f5:32:
76:de:a5:8c:69:fd:6b:6a:83:3d:c0:61:d1:e1:82:59:6c:1e:
d3:3e:b4:cb:64:f3:3c:aa:49:00:4a:c2:a6:67:03:ca:74:dc:
b6:7d:1c:98:29:20:e7:fd:e2:e6:2c:b6:87:53:cd:7c:e4:73:
9d:85:45:75:95:5b:f1:ec:b9:70:38:06:58:94:d5:7d:79:51:
48:72:54:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:59 2025 by rpki-client