Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
File: pnYhghhEiOf3hxIqcYCZfOjpDUw.mft (raw, json)
Hash identifier: wQHmwLLMhpZThXRNxVejXeUmk9LcGHy2FWgXruuXvJU=
Subject key identifier: C7:C5:6F:C0:3B:84:E4:86:DD:55:C1:61:DC:49:91:64:B4:B7:65:49
Authority key identifier: A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
Certificate issuer: /CN=a6762182184488e7f787122a7180997ce8e90d4c
Certificate serial: 019A7149E2339B8228FBC5AF753436D8F0BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
Manifest number: 03E4
Signing time: Tue 11 Nov 2025 05:00:58 +0000
Manifest this update: Tue 11 Nov 2025 05:00:58 +0000
Manifest next update: Wed 12 Nov 2025 05:00:58 +0000
Files and hashes: 1: pnYhghhEiOf3hxIqcYCZfOjpDUw.crl (hash: 3L47XoduiPuHL5IQDfCJjV6WOWoRWxgflbqoemzIITA=)
2: yNyV4cceOnlRqYhPeAllARW73Jw.roa (hash: 8x/01ij81KHBd33TvjxnJ5OVDsgBIBKqbtRkLV2shYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:e2:33:9b:82:28:fb:c5:af:75:34:36:d8:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6762182184488e7f787122a7180997ce8e90d4c
Validity
Not Before: Nov 11 05:00:58 2025 GMT
Not After : Nov 12 05:00:58 2025 GMT
Subject: CN=c7c56fc03b84e486dd55c161dc499164b4b76549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:53:0e:49:67:1f:27:40:43:23:a6:14:57:dd:
d3:1b:52:3a:56:52:18:61:a5:84:9f:96:bb:a0:d2:
c5:00:ab:05:81:f1:fd:33:67:d0:07:d0:d7:bd:99:
46:20:00:62:fb:e9:1e:74:13:70:40:85:39:8f:93:
2e:7a:bb:d2:6c:cf:40:ec:3e:34:cc:74:94:8e:9d:
3f:95:66:0b:9b:09:42:26:eb:e3:74:66:d5:ee:a4:
45:92:10:90:04:ba:2d:c5:25:f3:6d:7d:b2:86:37:
0c:85:6e:28:40:05:63:4e:75:48:86:90:55:a2:d3:
bc:78:bc:9c:96:cd:aa:53:14:90:ce:4a:82:67:5f:
da:5f:2f:02:99:3e:63:e4:f3:9d:48:03:b5:7a:c6:
27:17:45:94:d6:c9:ed:40:ce:d2:a0:d3:58:ee:00:
77:dc:98:d3:f7:ee:8a:82:a1:2c:94:e3:62:c0:3b:
c0:0a:71:c4:0c:ca:50:dd:3c:56:fd:2a:c5:11:ea:
a4:d2:ad:f6:a1:b7:89:4c:51:bc:b5:49:c5:c9:79:
0a:67:e8:84:93:46:eb:ce:26:29:7d:fa:7e:42:60:
be:91:38:34:b1:91:89:7b:eb:7d:b1:2f:26:e4:5b:
aa:5f:89:17:4e:de:a8:a6:a6:f9:e9:31:01:90:c7:
e6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C5:6F:C0:3B:84:E4:86:DD:55:C1:61:DC:49:91:64:B4:B7:65:49
X509v3 Authority Key Identifier:
keyid:A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:74:64:d6:85:90:bb:ab:23:24:6d:64:ef:4c:65:43:2f:7c:
5e:81:98:aa:bd:cc:6f:43:7d:73:c7:67:66:ed:b4:8d:d6:20:
88:72:47:11:33:71:d8:6e:06:a0:f9:60:5b:57:27:78:87:f8:
d6:b3:e0:22:f0:4c:3d:93:c0:b1:71:8f:99:7a:89:2e:16:da:
8f:67:f5:b7:7c:54:79:35:c4:92:61:1e:9c:09:24:3a:ea:cd:
79:70:79:87:1f:18:38:d5:3d:8d:1f:7b:6c:d7:a6:98:d2:5e:
49:b2:4a:c4:83:cb:7e:8c:89:53:f1:f6:f9:26:f7:5d:5f:bc:
ac:b5:56:80:7f:37:6f:d9:54:43:f4:b9:76:57:dc:3c:16:7d:
e0:52:09:0c:4e:c4:46:40:0a:d0:a8:8b:18:d3:2a:70:fd:95:
76:37:6f:47:1f:05:36:55:1a:5c:2f:a7:83:56:34:84:9e:08:
53:e9:dd:bc:4a:6a:21:fc:78:27:7d:55:37:31:d7:23:e3:ae:
d6:0c:50:ae:bf:20:cf:be:29:b2:b3:15:34:a3:ac:e9:74:04:
2d:09:eb:4b:87:75:46:86:c7:b0:4b:8d:79:dd:8a:26:19:d6:
cd:d9:dd:23:75:62:ea:34:e7:db:85:ff:3d:0c:77:f1:0c:1f:
c1:a6:5e:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxSeIzm4Io+8WvdTQ22PC9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NzYyMTgyMTg0NDg4ZTdmNzg3MTIyYTcxODA5OTdjZThl
OTBkNGMwHhcNMjUxMTExMDUwMDU4WhcNMjUxMTEyMDUwMDU4WjAzMTEwLwYDVQQD
EyhjN2M1NmZjMDNiODRlNDg2ZGQ1NWMxNjFkYzQ5OTE2NGI0Yjc2NTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31MOSWcfJ0BDI6YUV93TG1I6VlIY
YaWEn5a7oNLFAKsFgfH9M2fQB9DXvZlGIABi++kedBNwQIU5j5MuervSbM9A7D40
zHSUjp0/lWYLmwlCJuvjdGbV7qRFkhCQBLotxSXzbX2yhjcMhW4oQAVjTnVIhpBV
otO8eLycls2qUxSQzkqCZ1/aXy8CmT5j5POdSAO1esYnF0WU1sntQM7SoNNY7gB3
3JjT9+6KgqEslONiwDvACnHEDMpQ3TxW/SrFEeqk0q32obeJTFG8tUnFyXkKZ+iE
k0brziYpffp+QmC+kTg0sZGJe+t9sS8m5FuqX4kXTt6opqb56TEBkMfmgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMfFb8A7hOSG3VXBYdxJkWS0t2VJMB8GA1UdIwQY
MBaAFKZ2IYIYRIjn94cSKnGAmXzo6Q1MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG5ZaGdoaEVpT2YzaHhJcWNZQ1pmT2pwRFV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8yZjMxOWUtMjY4NS00NDI3LWFlYzAt
ZWQ2MGJhYjc1NzJmLzEvcG5ZaGdoaEVpT2YzaHhJcWNZQ1pmT2pwRFV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8yZjMxOWUtMjY4NS00NDI3LWFlYzAtZWQ2MGJhYjc1NzJm
LzEvcG5ZaGdoaEVpT2YzaHhJcWNZQ1pmT2pwRFV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhXRk1oWQ
u6sjJG1k70xlQy98XoGYqr3Mb0N9c8dnZu20jdYgiHJHETNx2G4GoPlgW1cneIf4
1rPgIvBMPZPAsXGPmXqJLhbaj2f1t3xUeTXEkmEenAkkOurNeXB5hx8YONU9jR97
bNemmNJeSbJKxIPLfoyJU/H2+Sb3XV+8rLVWgH83b9lUQ/S5dlfcPBZ94FIJDE7E
RkAK0KiLGNMqcP2VdjdvRx8FNlUaXC+ng1Y0hJ4IU+ndvEpqIfx4J31VNzHXI+Ou
1gxQrr8gz74psrMVNKOs6XQELQnrS4d1RobHsEuNed2KJhnWzdndI3Vi6jTn24X/
PQx38QwfwaZemw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 13:13:56 2025 by rpki-client