Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: szaqGFdHCn56iXo3Sg7iTu6Ja6Y1Ibo+O0fOswXDHrE=
Subject key identifier: 12:78:9B:C0:86:9E:64:6A:35:0E:E2:AE:32:17:7D:BB:5A:07:C8:D7
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 019922C38256FE859DE9DA5C083D36B1A94E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 0EF8
Signing time: Sun 07 Sep 2025 06:01:02 +0000
Manifest this update: Sun 07 Sep 2025 06:01:02 +0000
Manifest next update: Mon 08 Sep 2025 06:01:02 +0000
Files and hashes: 1: J60Pw4hyKKjQhqi1eSTzFtauoi0.roa (hash: Pts66hPVy/S0JFZfVc88DLunALgdL+k1upaL/I3M97g=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: VsA1GlULOYhMs7HGVxlZYS8ps4OqxmV31dG8fIlS3FY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:82:56:fe:85:9d:e9:da:5c:08:3d:36:b1:a9:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Sep 7 06:01:02 2025 GMT
Not After : Sep 8 06:01:02 2025 GMT
Subject: CN=12789bc0869e646a350ee2ae32177dbb5a07c8d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:ff:a2:f9:a6:83:c0:75:6d:7d:96:d3:87:
56:99:15:bb:d1:b7:03:bd:af:38:96:ed:e8:00:1f:
6a:6a:d8:10:82:80:84:ae:23:19:6d:e4:bf:77:13:
c5:96:c8:63:34:a6:08:80:a8:16:df:d7:1c:35:92:
a3:a7:a6:73:e6:70:1e:d6:d5:13:8f:51:2b:bd:3b:
ea:62:55:cc:84:43:e2:7f:11:31:ee:cd:ae:4a:5a:
0c:28:02:15:26:dd:2a:2d:6d:88:34:25:d8:2b:bf:
bd:3a:0c:e3:f6:a9:c8:bc:b8:36:33:a7:96:c8:e7:
f0:95:7b:cd:21:81:2f:20:b1:ae:9b:f3:9f:cf:e5:
b5:c9:d1:8a:f4:09:9e:0d:21:7d:d0:75:38:5d:b8:
1d:9c:21:7c:38:06:0c:a7:f8:44:1f:4a:d5:61:a6:
99:c7:ba:48:5a:85:e6:3c:b7:3d:a4:47:fa:d3:10:
19:22:30:71:5b:3b:38:74:44:a5:32:55:aa:ca:b3:
16:7a:07:42:d5:e6:f9:22:e1:5f:57:bd:9c:69:aa:
34:d7:74:d7:eb:4e:76:d3:1d:87:b8:cf:11:cf:e5:
54:a1:66:b5:a8:c0:a1:76:1c:f4:16:63:25:e0:36:
ef:c4:a4:39:58:23:35:4d:fc:87:b0:de:61:18:91:
02:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:78:9B:C0:86:9E:64:6A:35:0E:E2:AE:32:17:7D:BB:5A:07:C8:D7
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:b2:78:0e:27:6a:8b:af:7f:3b:f1:7a:a7:dd:93:1f:29:59:
89:ca:bb:bc:66:a8:50:48:a4:18:0c:16:7f:27:46:ff:24:47:
37:6e:b8:0b:12:f6:55:c5:52:75:c3:e4:c4:f0:8a:1e:4a:d1:
75:3a:38:83:2b:96:ff:8f:2c:9f:98:e5:66:aa:3f:0e:68:cc:
6f:17:36:f4:44:85:ca:20:54:e2:5b:41:46:43:5e:bc:8f:4a:
61:72:11:67:a8:be:a7:b7:4a:79:e8:4c:4a:aa:37:b6:a4:84:
f1:3b:02:3f:11:8f:de:b2:22:ec:88:e8:7c:99:9e:18:58:13:
70:bb:1d:48:97:19:af:23:84:8f:e9:5c:7b:62:08:a4:ea:ac:
1b:d9:b3:d5:ea:15:03:e4:6a:bc:f6:3c:8f:32:47:b7:14:04:
0c:a9:4c:fc:17:0b:97:f6:59:84:2c:e1:a5:b3:19:8e:88:b4:
27:af:4e:3b:08:1f:e0:c3:b1:9a:5c:a4:14:ef:2d:64:3f:5c:
be:52:aa:65:a9:53:8a:54:9c:7b:a2:19:d4:2a:dd:7a:c4:46:
cd:ab:bf:5c:78:64:7c:4a:3a:7a:8c:bd:38:6a:c5:ac:f2:01:
64:5a:69:2f:6d:68:f4:19:bb:08:df:bc:5f:f0:36:88:97:df:
90:92:c6:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:32:27 2025 by rpki-client