Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: ibZmIW+aUh+qgDFT+xZc9O9mlXJlUJpsuCO3NyXRhko=
Subject key identifier: 25:67:A0:DC:C0:52:6F:8A:42:1B:12:85:56:2B:28:0D:C6:88:8B:7B
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 019A266670A297CC0EDCD841FA421C81F1AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 020B
Signing time: Mon 27 Oct 2025 16:00:38 +0000
Manifest this update: Mon 27 Oct 2025 16:00:38 +0000
Manifest next update: Tue 28 Oct 2025 16:00:38 +0000
Files and hashes: 1: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: LPMYLC3A7hxWCLGotP04StseBqtuWDHtYiimcOJ8fr4=)
2: QmVb0SoXYnlMedY0w_3_iXHpV1g.roa (hash: a3gXOD/NjdWHnE6P9SQzEQhqDOtbuugfMMDorP0aI2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:66:70:a2:97:cc:0e:dc:d8:41:fa:42:1c:81:f1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Oct 27 16:00:38 2025 GMT
Not After : Oct 28 16:00:38 2025 GMT
Subject: CN=2567a0dcc0526f8a421b1285562b280dc6888b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d7:08:1e:55:dd:a2:0a:5d:e0:70:55:16:d2:
5b:b9:9e:aa:de:fb:74:ec:2e:30:6c:a2:37:e9:a3:
4a:e2:24:69:fa:06:33:47:dd:96:0d:2b:4d:fe:85:
04:26:cc:c7:f4:3e:2a:78:94:90:7c:b3:54:af:e8:
1c:75:fa:26:44:7f:03:b1:cc:38:ab:e9:7e:b8:15:
70:fc:8e:68:06:cc:77:44:e4:c7:a2:c3:23:6b:02:
32:05:06:40:08:c8:d7:01:09:58:47:e8:aa:44:7b:
a5:63:a0:95:80:e3:8d:d3:54:a8:e0:60:74:19:87:
38:12:b9:49:9e:8a:06:ae:c0:15:93:6d:ce:99:6b:
b9:cc:0f:36:1f:ec:7c:1e:81:44:23:1f:b8:fc:0b:
00:29:0d:e4:88:07:f7:2b:de:e8:c6:15:5e:27:c4:
ce:35:24:ef:bf:15:8e:f0:72:92:1d:9b:5b:06:5e:
3c:fb:7f:2f:c7:f7:59:30:ee:5f:2a:b2:9a:8d:f4:
c5:59:1c:6a:dd:6f:5b:c6:1e:9f:ce:5b:c5:c9:56:
b8:db:6d:73:3b:19:b9:7b:e0:4e:9d:39:46:be:4e:
db:29:a8:27:67:1e:32:1b:0b:0b:16:c1:0a:8b:0f:
ac:de:a6:20:82:c9:d5:e8:e1:67:83:d8:58:bb:38:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:67:A0:DC:C0:52:6F:8A:42:1B:12:85:56:2B:28:0D:C6:88:8B:7B
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:4c:e6:66:02:6f:ce:78:a9:82:10:e3:a5:3f:22:67:e2:cc:
09:32:9e:cd:43:a1:a7:f8:6f:ad:a4:57:3f:35:74:21:5a:d8:
2b:21:a5:6e:e8:3a:1c:cd:94:6c:7a:db:14:10:e1:13:63:44:
61:66:a1:f9:d7:fb:f0:98:fd:87:e3:73:70:30:10:c5:be:c2:
8f:59:f4:6d:cf:e2:94:31:58:f3:7a:d6:3b:97:84:0e:19:f3:
86:9a:1b:7d:6d:1f:ab:01:1a:ce:cc:0e:15:73:c6:f0:c2:e0:
cb:39:28:71:f3:47:73:be:60:8d:e2:04:b5:e9:77:ee:ec:64:
e2:ca:83:7d:2b:10:aa:23:fd:f8:86:dc:63:fe:7a:ba:6c:91:
c5:72:75:40:bf:66:ae:cf:27:ca:8a:80:cf:6a:74:c2:3b:c3:
ba:17:94:f0:6c:d6:c3:60:26:07:50:74:d4:d8:d5:a0:8f:91:
c8:ad:f4:4a:71:8b:a1:a1:07:ec:2f:3e:c4:d0:f5:fb:b6:8b:
8e:4c:62:c6:89:97:67:b0:26:54:8a:a0:15:1e:36:01:ce:ad:
bc:e5:b2:8c:68:6e:c8:63:66:29:68:b6:c3:a5:d4:a3:bc:42:
a4:cb:54:17:08:50:54:6d:fa:78:ce:9f:9e:7a:94:d5:54:2d:
ac:33:ca:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 19:49:12 2025 by rpki-client