Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json)
Hash identifier: iUSdENDmgb+t++EGKHxc9C+2mWzFcAv0WyhtYFRJi7E=
Subject key identifier: 26:80:81:20:9A:72:48:00:EC:EE:8B:F8:BB:0B:6F:FE:21:5E:EF:64
Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2
Certificate serial: 019A150656ABA20EABE98A1CA9F94538C861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
Manifest number: 1384
Signing time: Fri 24 Oct 2025 07:02:08 +0000
Manifest this update: Fri 24 Oct 2025 07:02:08 +0000
Manifest next update: Sat 25 Oct 2025 07:02:08 +0000
Files and hashes: 1: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: Jbf1JbiOwODM99ClwQrA6XQKwgyhGtz36+SzFoF1D5Q=)
2: f4uXUqTz6EMLfxnYPkQ3ht2dRz0.roa (hash: WwKae4E8mCPYphGvXV9B/QCbohcENp4wZ1ekmYvPPps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 07:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:06:56:ab:a2:0e:ab:e9:8a:1c:a9:f9:45:38:c8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2
Validity
Not Before: Oct 24 07:02:08 2025 GMT
Not After : Oct 25 07:02:08 2025 GMT
Subject: CN=268081209a724800ecee8bf8bb0b6ffe215eef64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:df:a2:99:c7:41:60:8a:62:59:54:40:1a:9a:
bc:4d:0c:0b:53:c6:3a:ae:18:67:43:28:50:eb:93:
81:53:a1:cd:52:2c:dc:74:19:c1:ab:c9:f5:d8:da:
74:2c:f5:07:b1:1e:7e:ed:a2:88:f1:c5:79:70:33:
4d:5b:27:6a:3d:5b:e6:74:98:b5:66:9e:88:82:ea:
4c:cc:80:11:ea:ff:15:ca:74:98:1e:74:f0:17:57:
a3:5c:74:ce:d2:39:49:36:3b:48:91:66:15:a3:cf:
e9:d7:14:36:1a:8d:8c:ee:dd:74:12:eb:bc:8b:f4:
12:73:49:43:69:53:68:6e:bd:04:76:3b:c4:f6:69:
fe:c8:47:c5:5d:f5:88:ad:7a:30:4d:ce:bc:56:30:
2e:56:44:82:bb:29:62:bd:24:ec:93:57:55:51:c4:
a0:89:d3:9b:79:d9:d4:8f:61:46:76:27:ae:0d:7b:
c2:e4:b4:d8:9a:e7:02:d2:5d:93:c1:7c:13:f6:76:
94:70:71:c1:9b:9d:a8:23:fc:91:17:48:d6:a6:05:
f5:4b:91:ed:80:67:a4:d2:a1:10:bc:cb:af:20:59:
7a:6e:a0:db:d3:10:3b:e4:d6:26:06:aa:0a:c8:32:
b1:bb:de:8b:a6:df:ad:46:0a:38:61:06:d4:df:90:
0d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:80:81:20:9A:72:48:00:EC:EE:8B:F8:BB:0B:6F:FE:21:5E:EF:64
X509v3 Authority Key Identifier:
keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:2c:02:8d:2c:10:66:ec:ea:e4:71:94:44:19:67:eb:9a:0f:
0f:a9:41:b2:d7:eb:0d:f2:58:4f:52:17:92:e8:b7:d4:10:51:
72:02:35:cd:91:08:18:66:b3:17:cc:e0:8f:ff:2a:35:59:24:
d3:9a:cd:24:97:f0:df:93:34:a7:1b:22:57:9f:97:78:b5:76:
f3:13:9f:91:79:e6:7c:da:94:3e:d7:b9:ec:bd:46:55:19:4a:
77:67:4e:d6:1e:fb:95:cd:57:a2:62:a9:39:9b:b6:af:d5:59:
64:b9:5e:5b:69:04:5b:c7:ec:f8:8e:14:69:b6:84:bf:1a:79:
b0:39:4f:9d:5f:a1:80:5f:fb:b9:ef:fe:47:52:92:42:e9:ea:
eb:45:a3:e8:f8:c8:48:db:fc:25:d0:b1:de:56:8d:09:00:80:
b3:43:f5:5a:c2:37:db:bc:9f:f9:35:b6:4a:9b:fa:57:f9:61:
fa:ee:14:a9:98:f5:df:b2:11:99:66:e4:a1:77:2f:36:35:64:
2c:c3:cc:82:0b:ec:ff:f7:8b:26:db:78:15:07:74:59:0a:0f:
01:b2:2a:8f:2f:6a:09:43:9a:f9:dd:1b:f4:4b:1c:82:93:42:
32:30:2f:9e:72:8a:61:66:58:5f:ab:b0:0b:d9:70:75:fa:11:
e0:51:fa:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:46:03 2025 by rpki-client