Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
File: PRgTEVbDK1enN4cYxgiq46mWXCs.mft (raw, json)
Hash identifier: KZFV5+ax6R+87lhWtYx/hTkMlzAuTPmg4lq8yQ6QGgU=
Subject key identifier: CD:36:89:18:03:60:7B:E9:29:3B:50:5A:59:C6:38:B6:F1:75:85:36
Authority key identifier: 3D:18:13:11:56:C3:2B:57:A7:37:87:18:C6:08:AA:E3:A9:96:5C:2B
Certificate issuer: /CN=3d18131156c32b57a7378718c608aae3a9965c2b
Certificate serial: 019923A0B4CA8F78569B6AF8208B44E3241E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 10:02:38 +0000
Manifest this update: Sun 07 Sep 2025 10:02:38 +0000
Manifest next update: Mon 08 Sep 2025 10:02:38 +0000
Files and hashes: 1: PRgTEVbDK1enN4cYxgiq46mWXCs.crl (hash: mbisNnggtp2mLL7R9HyvjbYjOCHfD6EJkcAWvuFJJfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:b4:ca:8f:78:56:9b:6a:f8:20:8b:44:e3:24:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d18131156c32b57a7378718c608aae3a9965c2b
Validity
Not Before: Sep 7 10:02:38 2025 GMT
Not After : Sep 8 10:02:38 2025 GMT
Subject: CN=cd36891803607be9293b505a59c638b6f1758536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:be:8d:ad:64:8c:d2:b1:f9:d0:e0:c1:fa:02:
5b:58:a5:4c:bf:2a:9f:0b:46:13:6e:8e:03:a0:39:
68:2d:b5:06:29:a4:d0:10:0d:c4:17:da:46:96:25:
15:00:d0:43:d1:72:e5:00:eb:99:8f:46:a7:04:ab:
0b:29:7d:4d:c8:6d:38:de:b2:55:59:0b:a0:ee:e0:
38:ba:32:f4:a3:2a:3a:fc:7d:e0:08:c5:f2:26:b5:
8f:7c:f8:44:76:ef:3f:de:c1:0e:37:da:bb:af:56:
41:66:03:1f:42:92:af:c1:53:9e:f1:ee:e3:90:e4:
c8:9e:d5:e7:69:c3:df:9e:e8:a2:04:29:3b:de:61:
25:9d:45:45:06:bc:7f:8b:52:a3:41:65:46:66:30:
8f:b3:20:47:28:79:c7:fa:75:8d:98:ef:5d:31:ff:
a6:e0:11:86:1c:91:c2:ab:6f:84:55:d3:db:a7:33:
03:5c:4f:d4:fe:2c:67:28:d2:4e:53:f7:b9:29:4a:
6f:22:54:af:55:c6:7e:ca:f3:a5:c0:39:d2:02:62:
46:2a:72:b4:15:3c:ae:1f:3f:59:ef:c8:a6:11:f5:
5a:82:02:bc:a7:65:0e:46:f8:3e:a1:05:44:a8:e6:
37:8b:f7:82:9a:b2:a3:e4:09:e9:f6:a8:f4:e8:df:
13:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:36:89:18:03:60:7B:E9:29:3B:50:5A:59:C6:38:B6:F1:75:85:36
X509v3 Authority Key Identifier:
keyid:3D:18:13:11:56:C3:2B:57:A7:37:87:18:C6:08:AA:E3:A9:96:5C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:e4:4a:34:7d:0a:cd:36:9b:0b:42:92:1d:28:1e:21:88:6a:
e6:61:52:e3:b9:a7:ac:90:25:69:89:a3:ff:e9:e1:31:ed:7e:
64:e1:1a:3c:f2:cd:78:ab:f8:a0:03:d6:78:a5:fc:a7:6d:0f:
40:20:4a:c9:fa:74:c9:63:73:e3:fe:e2:23:95:63:a6:34:c8:
57:8c:75:13:62:7e:71:9e:3f:7d:e6:d6:59:f5:08:f9:7a:b9:
c1:b6:80:56:ec:cf:5f:9c:60:4c:fb:19:ac:e0:77:e5:cb:86:
07:eb:6f:11:62:91:bb:36:c1:00:ad:82:89:cb:69:1a:7a:a6:
dc:ba:1b:3e:51:c1:8a:af:4a:94:05:4e:1f:82:f8:cb:de:05:
af:42:05:38:fb:27:48:b5:fd:e7:78:13:dc:59:71:72:40:c6:
88:88:5c:29:1b:65:91:a5:4f:5e:eb:ae:35:ad:54:2b:7c:d4:
fe:69:09:39:59:56:92:3e:41:1c:f6:92:4c:77:7b:9f:3c:eb:
c2:00:37:86:14:90:d7:63:4a:c0:b7:95:e3:14:01:f9:a3:33:
ab:51:2a:00:ab:9e:d0:a3:cf:0a:fe:52:3d:e4:32:40:95:cd:
5d:8c:7f:9a:0f:6b:30:25:66:5e:0a:2b:c1:cf:24:33:0f:3f:
0d:fa:59:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:46 2025 by rpki-client