Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
File: PRgTEVbDK1enN4cYxgiq46mWXCs.mft (raw, json)
Hash identifier: NfV932AuzqW9SV/7g+c1kUj9L5YnDMfD3O9cXEerTNY=
Subject key identifier: 07:0E:E3:F0:39:D3:50:92:CA:AE:FB:BB:C3:0A:A2:AB:DB:81:F6:EE
Authority key identifier: 3D:18:13:11:56:C3:2B:57:A7:37:87:18:C6:08:AA:E3:A9:96:5C:2B
Certificate issuer: /CN=3d18131156c32b57a7378718c608aae3a9965c2b
Certificate serial: 019A71B870A1E0F415F0B9AD99AE68856925
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
Manifest number: 171A
Signing time: Tue 11 Nov 2025 07:01:44 +0000
Manifest this update: Tue 11 Nov 2025 07:01:44 +0000
Manifest next update: Wed 12 Nov 2025 07:01:44 +0000
Files and hashes: 1: PRgTEVbDK1enN4cYxgiq46mWXCs.crl (hash: j2sh1arronfnISQ64G0229lhjlgFLfQavrsbG7NgckE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:70:a1:e0:f4:15:f0:b9:ad:99:ae:68:85:69:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d18131156c32b57a7378718c608aae3a9965c2b
Validity
Not Before: Nov 11 07:01:44 2025 GMT
Not After : Nov 12 07:01:44 2025 GMT
Subject: CN=070ee3f039d35092caaefbbbc30aa2abdb81f6ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:88:27:34:47:51:bc:66:8e:66:e1:b3:75:4c:
3e:9b:96:5b:b6:40:88:04:36:c6:ed:d4:5f:f4:9c:
a1:0e:8b:7f:92:6b:ad:e8:7d:9f:ba:21:65:4c:57:
f7:a3:dd:89:83:67:20:10:a9:f8:2a:32:4e:d3:65:
4f:bb:9c:26:08:36:48:00:8a:50:ca:e5:b0:4e:7b:
10:77:a5:7f:c9:cc:7e:29:21:d2:a3:f2:1f:7f:cf:
14:5a:d4:79:da:4b:c6:cc:3e:bb:7d:10:80:5c:74:
79:45:3b:5d:c0:07:b3:03:18:4b:32:9c:ab:7e:c1:
2b:78:2b:28:85:00:bc:38:39:9b:e2:e0:fd:fd:f9:
bf:96:9b:95:89:35:b0:97:a4:15:20:5d:fa:14:90:
60:f1:62:0d:8b:5f:89:97:87:ae:b9:d7:c1:e8:b5:
5d:66:e5:a6:01:62:6b:0f:e8:74:92:21:d4:a2:f9:
15:79:f7:19:43:ad:e0:05:34:64:9c:40:80:26:14:
a3:99:b5:08:53:23:ea:c3:62:5d:49:1c:a1:e3:29:
52:ef:d8:43:6d:62:55:d9:db:76:f5:f3:60:a7:08:
f0:a8:78:c0:e0:63:3f:ed:53:f8:26:bc:5e:0f:82:
76:89:79:22:52:0c:8d:0f:3d:cf:16:b2:14:bf:4e:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:0E:E3:F0:39:D3:50:92:CA:AE:FB:BB:C3:0A:A2:AB:DB:81:F6:EE
X509v3 Authority Key Identifier:
keyid:3D:18:13:11:56:C3:2B:57:A7:37:87:18:C6:08:AA:E3:A9:96:5C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:9a:08:84:07:14:5e:3a:c3:18:d1:f8:9d:ec:33:f6:16:31:
59:b8:af:85:ff:2f:1f:bb:95:e2:6e:6e:85:25:3b:6c:24:9d:
ef:ad:52:4a:91:a3:29:4e:61:54:b6:60:f8:96:3d:27:91:bb:
e4:d5:3c:5a:cb:63:2f:94:43:57:59:ac:5b:7a:e5:09:24:f1:
ae:04:e2:90:a4:74:bf:47:7e:70:26:4f:b8:1c:e5:f4:01:03:
80:e0:dd:df:7f:ec:cb:16:de:05:7b:c3:8c:bb:a7:2c:3d:b7:
c6:b8:47:a9:1c:a3:23:4d:9c:4c:b0:48:4e:60:d3:ac:15:2a:
53:27:59:fb:00:68:31:87:1a:92:32:fe:d6:03:84:be:57:00:
60:fb:43:2d:77:95:ab:16:f8:f9:5e:c5:43:be:6e:2c:03:70:
0f:8d:0c:b1:0a:72:45:48:a7:e9:09:83:1e:59:08:23:97:b9:
50:5f:ab:a5:8d:83:1c:2d:8d:dc:33:90:ce:53:3b:05:69:82:
f3:31:8a:6b:6c:41:06:89:37:8c:b2:80:f0:a2:d3:43:c9:d8:
22:51:b1:af:55:38:dd:84:7a:fe:bb:11:74:6e:65:ed:27:ff:
de:3e:b2:df:ed:e4:b9:f6:a7:48:11:7c:ad:33:91:4b:99:bf:
0e:4f:50:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:55 2025 by rpki-client