Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json)
Hash identifier: jGEFyYSGlXWnWjKrmFlNu8E9tz3MKT4rvfohaCACkYQ=
Subject key identifier: 86:EB:5C:13:5B:7E:97:1F:A7:35:7F:85:E7:E3:FA:D2:EE:DB:20:6A
Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Certificate serial: 019849D318C556C61389FE756E90E278A93D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
Manifest number: 1601
Signing time: Sun 27 Jul 2025 03:00:27 +0000
Manifest this update: Sun 27 Jul 2025 03:00:27 +0000
Manifest next update: Mon 28 Jul 2025 03:00:27 +0000
Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=)
2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: LbKsNV449WR3QgGYqnbqrGMTcdtwweVVlgo/iHgbYMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d3:18:c5:56:c6:13:89:fe:75:6e:90:e2:78:a9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e
Validity
Not Before: Jul 27 03:00:27 2025 GMT
Not After : Jul 28 03:00:27 2025 GMT
Subject: CN=86eb5c135b7e971fa7357f85e7e3fad2eedb206a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:49:79:a1:f6:03:d4:54:e4:c2:8b:cc:e5:e1:
aa:e5:7a:85:a6:b5:47:fe:85:db:28:58:4a:12:8d:
7e:aa:7c:d7:cf:40:93:67:31:36:98:77:ab:de:14:
76:b7:b5:dc:10:f7:48:57:db:a6:d8:6b:45:58:a9:
bc:97:2b:39:fc:dc:a2:db:4d:21:cb:c9:a0:1e:57:
ab:00:dc:be:65:a7:46:b7:32:34:e5:46:ec:7c:aa:
5e:11:ed:f5:5f:c2:94:2a:36:5a:d6:e0:f3:23:bd:
77:a0:ad:60:e0:b2:51:e3:cb:c0:32:e7:6a:9c:df:
79:5c:9e:e7:5b:50:fb:19:5b:ea:ae:59:56:d6:f9:
89:70:63:43:14:1a:fa:4d:80:08:61:e0:79:f0:8a:
7b:a0:47:7d:5a:01:1e:70:f8:3d:2e:da:7e:cd:6f:
10:90:0b:bc:71:76:53:55:d1:c2:72:80:a7:ff:e0:
11:85:e1:88:cf:b2:87:73:32:3d:ff:6c:a5:dd:4a:
74:79:11:d9:cb:ac:c7:08:28:93:cc:44:96:5a:23:
ed:39:27:17:e1:96:b4:10:df:ce:2d:43:0e:c6:be:
1f:3d:50:68:43:d6:2e:37:ef:3e:1a:4a:e8:11:73:
9b:d4:3a:bc:e6:6c:6b:c4:c9:39:35:0d:db:8a:49:
f2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EB:5C:13:5B:7E:97:1F:A7:35:7F:85:E7:E3:FA:D2:EE:DB:20:6A
X509v3 Authority Key Identifier:
keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:5e:dd:ab:90:cf:82:cb:2f:0a:eb:39:eb:a2:12:74:77:e8:
89:87:0d:ff:5d:01:88:2b:3e:5a:7d:71:2b:fe:d5:16:64:ab:
b9:1a:ea:16:e9:66:a2:f3:1d:b3:9c:65:7f:5d:54:51:d4:71:
0b:cf:22:30:61:35:1c:99:28:f1:a7:2b:8c:ee:84:36:d9:8a:
08:81:42:1c:69:23:e2:85:e2:07:41:c6:bd:99:ef:42:3d:b8:
ab:d9:ce:a5:15:d6:cf:7e:e0:8f:52:51:9d:5d:d0:a2:b2:bb:
4e:0c:0a:ca:8c:18:f2:e0:a0:68:7a:77:fe:63:86:5d:08:e6:
ba:c5:92:ee:a1:99:44:d6:f0:4d:85:0a:a8:96:19:5c:10:a4:
0e:90:79:90:a9:97:fd:b8:79:a3:6a:39:5f:e2:9d:84:b9:1b:
97:c4:55:18:e7:7e:09:ab:86:21:4c:f9:43:b2:35:48:6c:91:
8f:c4:3e:8b:b0:99:9b:a0:f1:34:1b:58:da:93:83:7e:63:f5:
d9:3e:0a:09:cc:08:af:87:27:3a:1e:4d:f2:3b:d4:b9:54:86:
eb:fc:c7:3c:7b:b2:1a:44:61:75:4e:04:64:2c:5a:16:45:7a:
50:66:6f:b6:c5:de:e1:f9:b8:1f:2f:25:11:53:57:9e:1f:3c:
e6:0c:32:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:31:36 2025 by rpki-client