Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
File: PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft (raw, json)
Hash identifier: llG1IM2+/PPZH1ND6C3CxrAO6F/MSJ+AoSAMFhC3Kps=
Subject key identifier: C3:BE:7B:D4:7F:77:5C:89:C4:3A:4B:B2:78:8F:F3:6B:1A:32:F8:50
Authority key identifier: 3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
Certificate issuer: /CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Certificate serial: 019921E7B5DC6456E66496CA59E542D3EE45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
Manifest number: 0804
Signing time: Sun 07 Sep 2025 02:00:57 +0000
Manifest this update: Sun 07 Sep 2025 02:00:57 +0000
Manifest next update: Mon 08 Sep 2025 02:00:57 +0000
Files and hashes: 1: FNcoFmyMsrmKFW3pVuTLoiKb9Y0.roa (hash: L2M1ZIYqNE7da9VzHmMG0LiaV1K9e8NQgXmk4Xn6knE=)
2: PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl (hash: EtnH+XrW3Dumj72/Eu8vipqsGx9NETuTAYJjHNjPzJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:b5:dc:64:56:e6:64:96:ca:59:e5:42:d3:ee:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Validity
Not Before: Sep 7 02:00:57 2025 GMT
Not After : Sep 8 02:00:57 2025 GMT
Subject: CN=c3be7bd47f775c89c43a4bb2788ff36b1a32f850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7d:65:72:8c:6e:a2:5b:c6:d3:94:eb:51:66:
f8:83:39:51:8f:8e:fe:1a:ca:53:4b:a9:38:79:57:
a3:08:fc:86:94:e8:9c:31:db:fc:14:a2:33:af:7e:
ed:bb:55:18:ae:e6:f3:9b:81:95:8d:af:12:93:54:
cb:12:bd:78:52:3c:24:e3:7b:b1:5a:db:bf:21:a7:
8a:d7:96:d0:e2:fe:42:cc:e6:43:79:85:2a:af:35:
05:23:49:34:38:38:39:18:d0:05:b6:03:77:d8:e2:
76:5a:76:61:a5:fa:72:3d:2d:f7:fe:af:40:97:90:
ca:1a:62:93:e6:00:35:fb:63:50:be:e4:cd:55:10:
d1:02:a6:42:d1:f4:bc:64:6c:bb:59:d5:70:89:89:
78:46:e4:8d:b4:e6:bb:ff:62:e1:af:74:4c:99:35:
09:c7:d1:cf:52:86:4d:51:46:63:10:04:d7:6f:74:
03:7f:ec:f8:bc:90:42:9a:0d:c7:22:fd:18:7b:bf:
b7:8e:65:a5:07:72:51:ce:17:f4:3a:b8:03:34:75:
58:37:12:d6:ba:8f:6a:e2:2e:d5:74:bb:8a:aa:f5:
6e:b2:69:44:78:4c:8e:23:fa:99:96:8d:45:c8:6b:
7d:62:4a:4a:95:4b:52:14:ce:25:b9:a3:ef:47:72:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BE:7B:D4:7F:77:5C:89:C4:3A:4B:B2:78:8F:F3:6B:1A:32:F8:50
X509v3 Authority Key Identifier:
keyid:3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:e2:b0:d6:fa:20:e1:11:ac:ee:64:a9:83:32:98:d4:36:4a:
b5:7b:29:ed:17:fe:7c:93:35:6e:cf:e8:41:77:b6:f2:4e:08:
68:cc:0a:fe:1c:94:94:3e:98:7a:52:cb:79:87:d5:40:6c:eb:
d3:77:b0:9b:f0:0e:da:cf:fd:24:43:f4:ef:ac:a8:96:d6:f1:
03:1b:87:63:1f:73:20:91:60:37:80:07:a8:e2:8d:fc:d6:87:
e8:1f:f7:84:6b:6f:d5:bd:04:dc:5c:9c:3c:23:49:a3:61:f2:
c2:4c:53:a9:fc:00:7a:42:1e:cd:d8:60:5c:89:a5:12:6d:8f:
04:03:06:fb:1b:0d:31:5e:6a:c3:b0:cb:fa:d5:7b:0c:f2:fd:
d8:62:84:f7:25:4f:66:bd:03:7c:dd:0e:e0:fe:9d:84:15:7c:
5f:4b:59:35:57:dd:ab:1e:7e:6d:b1:8d:14:7f:ab:45:9e:b8:
60:2c:57:0f:1d:bc:7e:48:f0:05:91:3f:7b:fb:a3:2c:a8:cf:
c7:d6:05:d7:b1:db:2e:70:39:99:63:d6:b5:69:09:58:c1:f5:
ca:66:51:ac:6b:3c:11:d9:3d:34:5e:49:be:82:f7:ef:73:14:
dd:94:e7:e7:77:e3:40:33:3e:f8:b2:03:69:24:bf:f0:da:76:
dd:bd:65:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:45 2025 by rpki-client