Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: J3ESt7ewdIJheD+NPNXeENE91oGnteo/gsaFVUY+4/4=
Subject key identifier: C6:9B:8A:0F:75:C8:F4:A0:07:3B:B5:E4:3F:15:8D:0A:D3:FF:95:F4
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 01992255215E57B009B7011E857D3E3EF043
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0C80
Signing time: Sun 07 Sep 2025 04:00:28 +0000
Manifest this update: Sun 07 Sep 2025 04:00:28 +0000
Manifest next update: Mon 08 Sep 2025 04:00:28 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: VNiDWimhayMd5PhBoESx8/AWWrwcu7lTqE+Qin5WUmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:21:5e:57:b0:09:b7:01:1e:85:7d:3e:3e:f0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Sep 7 04:00:28 2025 GMT
Not After : Sep 8 04:00:28 2025 GMT
Subject: CN=c69b8a0f75c8f4a0073bb5e43f158d0ad3ff95f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:05:57:fb:e4:ef:da:3e:ac:3b:f3:1a:65:ff:
b3:7f:ea:f1:2b:90:9a:3c:68:00:82:6e:c5:4d:01:
31:ac:c5:aa:3d:81:0c:5c:22:23:56:d6:ae:0a:9b:
ef:4a:0d:01:aa:26:32:95:ce:9d:2d:d3:d4:81:dc:
25:ba:e6:bf:ea:4f:cf:db:78:61:65:bd:45:3b:a5:
6a:4c:c7:4b:79:1b:bd:c9:06:13:41:d4:a1:04:9c:
32:ca:2f:0d:34:db:6f:f1:d4:d7:68:28:5b:44:c7:
91:3c:74:96:08:07:c3:7c:e6:57:c9:b1:74:5a:41:
08:04:18:04:0e:da:d3:33:3f:d1:c3:d6:54:d5:41:
4e:96:0c:44:d6:1b:ea:51:4a:81:f5:8f:f6:34:a8:
be:24:17:9f:53:4b:c6:5f:00:52:67:e1:17:ac:bc:
4f:05:c7:bc:af:62:e8:4b:9e:b1:f3:e7:01:13:47:
7c:7a:c8:c5:43:53:c7:60:a4:46:87:94:15:cb:5f:
03:6e:99:11:98:39:a8:fd:f5:66:3a:81:fc:fc:3d:
73:94:95:e0:c2:4a:ea:fa:f0:01:ce:bb:0c:b5:25:
1f:f5:a0:43:92:01:87:5f:96:e3:f5:10:b3:ea:18:
9b:8b:16:20:c0:ad:1e:43:b1:af:08:1b:bd:46:db:
f8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:9B:8A:0F:75:C8:F4:A0:07:3B:B5:E4:3F:15:8D:0A:D3:FF:95:F4
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:a2:fe:e8:5d:68:5e:f0:40:39:f9:d2:11:3c:ae:c3:4f:0c:
13:4e:d9:ff:9d:9e:3f:30:f5:62:af:6d:1d:8e:17:76:54:b4:
ef:5b:13:72:02:d4:f1:20:eb:79:7d:68:b9:da:23:40:40:fd:
61:c3:13:d6:42:fa:a6:7c:30:8a:b7:e7:09:4b:7e:c1:93:a6:
55:b6:e1:fb:cb:b4:c2:cd:28:1b:33:fd:de:aa:50:42:2b:67:
bd:f5:a0:2f:36:97:ec:21:39:62:58:56:55:66:c6:11:ed:57:
3b:f2:34:f5:41:40:65:0a:ea:51:ad:0f:b2:44:ed:b0:1b:7a:
29:10:46:6a:dd:4a:8c:bd:8e:1f:e2:4a:95:ae:58:f0:f9:20:
69:87:ef:d6:b3:bf:f8:67:0a:42:d2:5c:2d:7b:4c:63:a1:41:
fd:97:69:32:2b:9e:ab:40:88:78:03:2c:cc:a0:1f:20:cb:03:
69:1d:17:f2:cb:20:15:8a:e7:87:e9:d7:01:c7:7c:a1:90:27:
eb:77:be:79:b0:5a:07:8b:71:d8:de:93:56:d2:be:66:a1:54:
aa:f9:54:64:d1:2b:74:2b:b2:12:82:c0:10:f1:2a:fe:7d:c5:
b2:37:5a:55:e7:af:b8:eb:eb:d4:01:53:42:51:49:e2:c8:64:
2f:7e:3b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:08 2025 by rpki-client