Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
File: PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft (raw, json)
Hash identifier: c9haiOwJywUlJmN7T46eOhEytXMlHoGJqh6ieJFWN2E=
Subject key identifier: 7C:FE:ED:B8:6A:BB:0F:97:B9:35:A6:29:3C:D1:92:39:AA:23:9F:46
Authority key identifier: 3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
Certificate issuer: /CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Certificate serial: 019A71B82183765D34519D78C8D3B0F86451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
Manifest number: 08B2
Signing time: Tue 11 Nov 2025 07:01:23 +0000
Manifest this update: Tue 11 Nov 2025 07:01:23 +0000
Manifest next update: Wed 12 Nov 2025 07:01:23 +0000
Files and hashes: 1: FNcoFmyMsrmKFW3pVuTLoiKb9Y0.roa (hash: L2M1ZIYqNE7da9VzHmMG0LiaV1K9e8NQgXmk4Xn6knE=)
2: PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl (hash: wPvxJ8lX2tHaJ557LJGqfc+CO1yKYWLP2/2/a/Th1CY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:21:83:76:5d:34:51:9d:78:c8:d3:b0:f8:64:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea99f00000beeb9f1b2854ba50ec7b88126dba9
Validity
Not Before: Nov 11 07:01:23 2025 GMT
Not After : Nov 12 07:01:23 2025 GMT
Subject: CN=7cfeedb86abb0f97b935a6293cd19239aa239f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fc:39:db:04:7f:4f:5b:fb:2a:9f:24:07:d3:
36:ff:07:b4:6a:69:3e:95:2b:3c:dd:7d:a9:aa:0c:
40:6f:b4:2d:84:2f:3f:b5:25:b2:7f:44:80:39:97:
d7:8d:a9:28:4e:1c:11:86:ae:38:66:be:fb:86:4b:
38:a6:19:e5:65:aa:d5:35:9f:ed:a0:8d:0d:0a:25:
d3:a5:84:db:3d:17:ac:e6:64:3d:d1:ff:0b:ad:7d:
f2:41:54:ed:63:16:78:6b:3f:23:b4:95:27:a2:b4:
c0:71:75:80:92:a1:cb:41:a0:d2:f7:98:e7:f3:94:
c9:01:75:88:55:23:e2:b7:20:d8:e1:4d:cf:e3:c6:
c3:26:52:11:fc:90:fe:a8:56:75:da:6c:cf:c7:53:
30:13:64:f7:0b:22:19:95:c5:d1:b6:ee:35:11:16:
e6:62:54:3f:29:bf:36:c4:60:47:59:60:e5:d2:b0:
a8:08:5e:fc:2e:e1:13:d8:54:a2:e8:78:94:9d:9a:
7d:14:f4:92:50:8d:6e:d5:47:dd:38:b0:5c:0a:6f:
c8:13:70:b8:49:ec:32:e8:30:af:8e:1b:30:aa:45:
2b:21:59:5b:c6:76:63:58:88:15:17:21:a1:13:a2:
f8:5b:d2:9e:7c:c1:48:cd:01:c8:18:ef:71:03:10:
fd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FE:ED:B8:6A:BB:0F:97:B9:35:A6:29:3C:D1:92:39:AA:23:9F:46
X509v3 Authority Key Identifier:
keyid:3E:A9:9F:00:00:0B:EE:B9:F1:B2:85:4B:A5:0E:C7:B8:81:26:DB:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqmfAAAL7rnxsoVLpQ7HuIEm26k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/581e68-4d45-40eb-89d9-8816fba8be12/1/PqmfAAAL7rnxsoVLpQ7HuIEm26k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:6c:6c:fd:af:ef:05:c2:67:95:b7:8b:65:c5:bb:79:b9:28:
d9:68:b9:49:97:08:18:a2:d0:14:57:f0:71:fd:c4:da:2a:0d:
0e:88:e7:45:22:20:e6:d4:d1:53:55:02:77:1f:8a:a4:09:99:
3a:3d:46:fe:40:6d:8d:49:0e:e2:10:96:2d:a9:46:72:3c:ca:
bd:ed:5d:c0:5f:bb:4a:e3:4f:8e:ec:ec:b6:53:c1:72:2a:8b:
2e:e3:e4:e0:f1:d1:2c:b1:76:44:2a:4e:f1:7a:76:16:76:4e:
48:06:e8:4b:4e:05:c0:1d:b0:49:76:a3:9a:d1:51:53:19:db:
b8:c8:c1:97:2d:46:52:c0:1e:d3:79:e3:ff:55:05:65:44:66:
8f:b8:e4:cd:3f:48:64:81:fa:8d:19:6d:10:70:4c:e3:16:b0:
9c:57:1d:30:e0:83:3f:c0:74:91:28:40:3f:2b:dc:c4:d9:c2:
dd:28:cd:c5:4b:15:e2:7a:ff:40:f3:26:20:57:44:66:48:86:
03:aa:73:f8:b8:03:2a:94:d8:c4:72:0f:5b:e2:13:6a:f5:cf:
88:de:90:f3:79:b5:66:40:7a:94:bd:a5:6e:84:be:ea:5c:68:
2a:ca:0f:81:29:3a:be:19:14:71:c1:56:4a:cd:83:7e:2b:43:
5e:6f:33:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:28:11 2025 by rpki-client