Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
File: Pls0eWfOpnu2K2nSWazeS4-elBc.mft (raw, json)
Hash identifier: isLJGRQO497yKNfJtU5oSit1TTKjAS27LwU/U4Y+Qto=
Subject key identifier: 34:0B:E9:3D:4D:31:34:EB:1B:63:72:EC:BD:8C:0A:90:BA:0C:74:57
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 01992D48DF575248DFE666731032D345E1B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
Manifest number: 0B8E
Signing time: Tue 09 Sep 2025 07:02:54 +0000
Manifest this update: Tue 09 Sep 2025 07:02:54 +0000
Manifest next update: Wed 10 Sep 2025 07:02:54 +0000
Files and hashes: 1: Pls0eWfOpnu2K2nSWazeS4-elBc.crl (hash: 6R2leVYqTEbwcIyossVhMUMc4IvCg2ujszr7h+3uT20=)
2: yeykCTxRfXSLEqjo1MZ7zObmrks.roa (hash: 1vVWF5KJNfMy/yYL5Sp0YWKLB5R7wsPTTiR6VRMJgCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 07:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:48:df:57:52:48:df:e6:66:73:10:32:d3:45:e1:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Sep 9 07:02:54 2025 GMT
Not After : Sep 10 07:02:54 2025 GMT
Subject: CN=340be93d4d3134eb1b6372ecbd8c0a90ba0c7457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ba:42:da:60:16:93:81:9f:e5:61:eb:29:4d:
b2:3d:37:41:14:08:04:05:d6:80:2e:bc:6a:5c:62:
af:7f:5c:d2:f3:ea:39:ab:82:97:f7:b3:6a:7a:91:
38:04:3e:74:3b:be:fd:e3:61:70:ad:60:0f:ca:ca:
c9:4e:63:a8:21:e3:57:6c:40:d7:81:a6:20:56:9b:
85:15:6f:97:8c:a8:31:8d:18:2d:dc:87:d6:62:7e:
3e:fb:cc:07:a7:e8:e7:62:31:c7:9c:79:3a:4a:03:
3d:f1:21:c0:b1:1b:28:7a:d4:17:75:3a:94:50:92:
4b:35:28:0f:dc:1f:95:c6:02:f2:e6:76:46:47:48:
22:48:43:32:34:4b:e7:c4:8e:b5:9b:1b:b1:62:82:
cd:b8:76:a4:4e:db:54:99:7e:3d:33:c2:1f:ba:02:
52:8b:98:d6:59:53:f6:b3:d8:df:9c:f3:3e:e7:57:
38:46:f4:c5:81:8f:33:c7:76:b3:bb:7d:b5:5b:20:
67:21:df:07:bd:62:5c:6d:15:cb:1b:6b:82:68:12:
8e:5f:e9:06:9b:3c:d6:e6:59:69:70:21:86:33:6c:
57:19:08:e6:e9:74:6c:04:f1:ed:5e:ab:9d:d2:c6:
5a:17:1c:19:64:aa:fd:ad:30:fb:51:57:f7:63:e4:
8d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:0B:E9:3D:4D:31:34:EB:1B:63:72:EC:BD:8C:0A:90:BA:0C:74:57
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:8e:3a:e3:e4:16:bb:ab:c7:08:4f:f9:99:30:14:4a:25:4d:
7f:53:0a:af:37:96:fa:79:7a:b7:46:de:8c:45:f2:55:53:55:
08:81:e8:6f:1b:b6:fd:91:07:24:50:4b:b9:1f:aa:a7:aa:63:
12:fd:ef:bc:7a:8c:96:ee:dd:ac:f8:65:94:cd:2e:4e:15:37:
d8:b9:8d:51:e8:5a:f3:e9:27:4a:61:a1:9b:1b:86:f5:96:20:
d2:05:ba:bf:41:e3:61:9a:0c:e0:60:c2:84:f2:cc:9d:21:92:
6a:63:de:51:98:97:0d:32:c5:b4:08:14:53:88:0c:67:6c:6d:
ea:aa:3f:d3:8c:fe:99:6d:4f:86:a0:70:c6:56:0d:a2:b1:a3:
81:17:3f:46:00:d1:84:18:64:09:1b:bd:64:5f:87:45:52:33:
77:41:48:72:16:49:89:94:62:7e:b2:9f:65:a6:8a:d8:4e:e2:
03:11:7b:4e:9c:9f:28:56:0f:1d:ee:e2:59:e1:15:ee:1f:c6:
ca:0a:94:fc:ac:58:98:13:8e:d1:13:14:d6:f1:54:93:d0:1c:
2f:97:e7:e2:a4:3c:31:dd:6d:18:b9:60:3e:19:88:3a:65:85:
c6:0a:5e:ca:e0:3d:0b:33:2b:6c:a1:56:30:f0:8d:52:68:7d:
08:a2:c3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 10:33:08 2025 by rpki-client