Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
File: pl24nou2YPIetcSvO5rdUtV-uJ8.mft (raw, json)
Hash identifier: NAaGOO3ahFei7aB2H/4a1buFpN92flc18B52NwZxVU8=
Subject key identifier: 49:6C:E0:51:E6:29:6A:92:11:28:96:71:64:40:D7:69:77:72:CA:E5
Authority key identifier: A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F
Certificate issuer: /CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f
Certificate serial: 019A228A4E6A18D19534F9C53C05FB0BE7BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
Manifest number: 045F
Signing time: Sun 26 Oct 2025 22:01:20 +0000
Manifest this update: Sun 26 Oct 2025 22:01:20 +0000
Manifest next update: Mon 27 Oct 2025 22:01:20 +0000
Files and hashes: 1: dz9PyU4ctyXKZ49cHOyHFCLYwcU.roa (hash: 3Y8oozkK4fYw8w+acos4s7WtEJkSyImOIymISL/lshA=)
2: pl24nou2YPIetcSvO5rdUtV-uJ8.crl (hash: DBudJapMqxviYnXIMoPjE2PbLjbkp7okjGAhndYBEgU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 22:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:8a:4e:6a:18:d1:95:34:f9:c5:3c:05:fb:0b:e7:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f
Validity
Not Before: Oct 26 22:01:20 2025 GMT
Not After : Oct 27 22:01:20 2025 GMT
Subject: CN=496ce051e6296a92112896716440d7697772cae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:62:59:05:91:6e:d6:da:81:e6:93:7c:56:4f:
1c:b4:1c:6e:13:c5:ae:5b:d2:84:c5:3e:ae:15:23:
03:cb:31:81:51:ba:d9:e1:09:1a:a8:94:7f:55:1b:
36:a2:3f:48:f2:8b:f1:60:0a:0e:c7:1e:4c:a3:4d:
5b:3b:d6:97:12:15:e0:67:d5:1b:f6:b3:83:71:29:
de:0c:35:87:ba:e5:cb:e5:a1:34:be:b9:64:2b:30:
e2:52:08:7f:9b:11:b2:8d:4c:af:df:65:c3:fd:f6:
13:48:51:ba:ba:e3:59:19:02:c7:42:30:55:35:65:
8e:28:6e:fd:65:06:a5:00:46:90:72:4f:aa:e7:ac:
cc:9c:1a:ce:31:8d:65:40:f0:5a:16:b0:88:e7:15:
2e:5d:fa:69:c1:20:0d:d3:7f:28:89:e6:54:fb:7c:
b1:87:d1:aa:fe:f3:8a:9b:cf:3f:09:2d:06:d5:9f:
fd:fb:ca:65:f4:fb:47:90:d0:f3:b2:9e:b2:79:42:
20:5f:af:a0:d8:0a:7f:b6:ee:77:1e:7f:6b:10:b5:
1d:f5:62:ea:b7:a0:e6:b0:08:fb:4d:d9:6c:51:7a:
de:23:00:35:31:b2:eb:72:cb:d3:41:db:a4:78:f5:
84:e8:68:c1:92:35:a3:ba:69:c4:b9:ae:79:b9:f7:
19:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6C:E0:51:E6:29:6A:92:11:28:96:71:64:40:D7:69:77:72:CA:E5
X509v3 Authority Key Identifier:
keyid:A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:53:13:ff:18:1c:4a:dc:5f:76:01:04:cb:a0:42:7e:b4:14:
ea:2e:9d:e2:9b:83:51:7a:66:39:58:ac:8a:66:f0:b4:d7:3c:
e7:c8:51:d7:20:af:35:92:b0:65:bb:14:2c:2f:3a:af:fd:be:
a8:c2:6b:d3:3d:d5:9b:20:8a:46:5d:a0:1b:2e:89:c3:f0:56:
47:6c:f3:ac:c3:9c:f0:ac:46:db:72:bb:17:9d:88:77:c0:c3:
1f:ea:37:ce:9a:fa:8c:1c:06:77:9f:7b:09:4c:89:d2:40:13:
22:7d:28:5a:0b:fd:d2:4b:0f:95:bf:ca:9c:8e:82:62:11:6f:
45:ad:da:7d:c6:48:69:7b:bf:b0:59:4f:5e:82:03:1c:c6:db:
ed:b7:36:a0:9d:9e:dc:70:69:ab:48:6c:d7:9c:df:6f:9a:a5:
38:c8:cd:b5:75:77:7f:45:08:01:ed:03:cd:5b:68:7e:ae:80:
4c:14:80:10:6f:11:0c:f4:48:7f:14:6a:4f:f9:27:06:1b:3e:
9b:76:60:14:cd:05:47:df:c8:3d:70:6f:ae:71:ae:39:0c:bc:
b6:ce:36:b8:ff:e9:34:91:54:c4:93:5c:82:4d:23:61:12:8f:
bd:ba:65:04:c1:5a:d4:64:24:9e:43:d2:df:a3:ab:17:9a:51:
f7:e9:1f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 07:06:02 2025 by rpki-client