Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json)
Hash identifier: AXGSCI7C8Jn/oN1Ud46rR478EXJwqWnJ6EznhSH/8ZE=
Subject key identifier: 18:BC:80:31:A9:B3:C8:45:22:0F:69:92:0F:84:A7:8A:49:0C:A6:6D
Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947
Certificate serial: 01993726013542A71A6E50AC8634895077B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
Manifest number: 018F
Signing time: Thu 11 Sep 2025 05:01:01 +0000
Manifest this update: Thu 11 Sep 2025 05:01:01 +0000
Manifest next update: Fri 12 Sep 2025 05:01:01 +0000
Files and hashes: 1: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: lM3g121l122FVBYlPmBYaty+Gr4ORaFk9x+chuoCFhs=)
2: QmVb0SoXYnlMedY0w_3_iXHpV1g.roa (hash: a3gXOD/NjdWHnE6P9SQzEQhqDOtbuugfMMDorP0aI2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:26:01:35:42:a7:1a:6e:50:ac:86:34:89:50:77:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947
Validity
Not Before: Sep 11 05:01:01 2025 GMT
Not After : Sep 12 05:01:01 2025 GMT
Subject: CN=18bc8031a9b3c845220f69920f84a78a490ca66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:84:95:aa:5a:ce:b1:ae:0d:97:99:fe:f3:a5:
a8:e4:74:31:e2:24:9d:90:c0:7c:a2:30:95:7a:0e:
09:ca:d9:96:69:c4:c5:ab:17:3e:85:82:96:83:e4:
8a:b7:cd:e8:d5:b8:22:93:ca:60:f3:3d:e5:df:ae:
60:43:fe:1a:54:5b:6a:20:1a:f9:32:d3:5d:68:28:
4b:40:ee:77:19:26:d3:04:e0:82:d6:a4:67:5a:25:
43:f0:f4:95:ec:2f:d6:c5:27:03:38:86:5d:cb:0c:
ab:d5:fc:b3:80:09:9c:cb:24:5b:7c:58:cb:bb:d4:
ff:5d:05:3b:fc:aa:37:b8:98:ac:26:be:4d:c1:9f:
58:0e:76:2d:31:72:82:9d:6e:0b:f7:9a:e0:6a:85:
7b:56:b0:7b:17:43:9e:d1:0e:78:31:ca:9e:9c:06:
00:f2:33:d4:0a:44:12:fd:9f:b1:77:2f:9c:10:06:
d6:40:45:67:a0:73:b7:aa:42:49:0a:f8:85:71:5f:
64:95:d1:e6:65:57:04:38:e9:f4:4a:5d:17:51:eb:
f0:43:e4:9d:42:1a:6c:b6:47:08:a2:8f:c0:7f:8a:
90:f7:0a:c6:e4:4d:0e:86:54:fb:cb:f4:aa:0d:ff:
0d:d5:e3:5f:be:26:98:2b:5c:9c:67:58:ac:75:af:
ea:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BC:80:31:A9:B3:C8:45:22:0F:69:92:0F:84:A7:8A:49:0C:A6:6D
X509v3 Authority Key Identifier:
keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:62:1f:b5:dd:08:cf:03:c1:5d:9a:ab:98:aa:57:03:af:69:
1d:be:ce:9a:31:80:bf:22:56:60:6a:45:a7:6a:e6:4f:70:26:
28:a5:b9:29:fd:cf:51:88:41:ad:59:f3:ad:d8:06:7b:14:e8:
f5:ce:43:05:7c:f5:60:73:7b:28:fd:72:3f:74:73:60:ac:64:
bd:5f:82:38:39:f5:15:d2:3a:2f:7e:d7:ac:b0:0e:10:7f:3d:
c2:ec:23:c5:78:e0:e4:7d:3b:8c:1d:5a:cf:b0:d4:a7:ac:69:
ea:14:da:55:ad:a7:fc:43:b2:67:cb:d7:39:8c:5b:cb:af:43:
fd:fc:b1:c7:6f:50:14:72:cd:65:86:e4:47:61:f9:0f:2d:37:
e7:fd:7d:c4:2a:40:3f:1c:2f:e5:39:af:81:ba:ec:d1:15:6c:
b4:67:cb:dd:59:11:ee:08:e8:73:33:af:83:34:93:3f:e2:e0:
7b:d7:f1:00:9e:ae:d5:17:3e:1b:6a:92:55:17:1b:8c:3d:ed:
2d:da:7e:09:99:77:58:23:0a:94:1e:3f:69:41:90:3f:07:c5:
91:38:a9:b0:d0:ce:96:6a:fa:d5:31:f5:77:b4:26:70:36:0e:
8b:76:b3:b1:27:20:0a:81:ad:c0:b0:21:20:2e:78:f3:ce:22:
98:92:2b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 09:08:27 2025 by rpki-client