Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
File: pnYhghhEiOf3hxIqcYCZfOjpDUw.mft (raw, json)
Hash identifier: NkQrmk99a/SNV9r4K+z03NZhWlzoy7d2yOu/WkNVr00=
Subject key identifier: 11:4C:34:AD:16:0D:9C:08:90:C8:0F:E9:99:C6:DE:4F:45:F8:82:59
Authority key identifier: A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
Certificate issuer: /CN=a6762182184488e7f787122a7180997ce8e90d4c
Certificate serial: 01992330F35C45300DD7D8637BA79CB26BE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
Manifest number: 0337
Signing time: Sun 07 Sep 2025 08:00:34 +0000
Manifest this update: Sun 07 Sep 2025 08:00:34 +0000
Manifest next update: Mon 08 Sep 2025 08:00:34 +0000
Files and hashes: 1: pnYhghhEiOf3hxIqcYCZfOjpDUw.crl (hash: tZvnjGCFd5eTRypA5Mk/LKWOxiPhe19Wv3Kzapx+O+k=)
2: yNyV4cceOnlRqYhPeAllARW73Jw.roa (hash: 8x/01ij81KHBd33TvjxnJ5OVDsgBIBKqbtRkLV2shYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:f3:5c:45:30:0d:d7:d8:63:7b:a7:9c:b2:6b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6762182184488e7f787122a7180997ce8e90d4c
Validity
Not Before: Sep 7 08:00:34 2025 GMT
Not After : Sep 8 08:00:34 2025 GMT
Subject: CN=114c34ad160d9c0890c80fe999c6de4f45f88259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:21:e8:00:68:40:16:6c:bd:f1:be:9d:73:2c:
3b:b0:6e:58:c6:2e:f0:34:9c:fc:5c:5d:4b:b4:24:
c4:50:f2:23:67:b2:55:38:9d:6a:7f:5b:e5:53:5b:
26:1f:37:de:b7:80:e2:d8:5c:aa:ff:f2:e5:93:12:
a4:24:42:76:cd:f1:80:b9:89:be:49:ec:3d:0f:f1:
be:08:84:1e:2a:78:ae:20:cb:40:ff:fb:9e:7c:65:
8b:c2:12:61:78:29:fa:8e:7b:64:4c:30:22:1a:c0:
78:44:70:5e:c0:a7:a5:f4:50:da:53:75:c3:6d:16:
d0:d7:2f:4a:41:c0:85:be:b3:76:e6:49:c6:d7:b7:
0f:27:bd:be:44:d7:68:89:d8:df:6a:76:69:11:47:
b5:a0:28:39:f4:2c:6e:e8:b2:8c:c0:23:72:ff:a6:
fa:b5:5e:dc:9d:dd:56:74:c5:f3:19:db:9f:b6:7b:
92:e8:c1:23:8b:c4:61:be:f5:6f:3c:22:6a:1c:96:
5c:a8:f5:2f:66:ef:ed:83:16:f0:4c:98:8d:30:6d:
09:58:e8:12:2a:b3:e9:f7:d4:9f:59:66:3a:9b:40:
f3:39:01:85:4f:cf:9b:62:bb:98:ed:59:1f:cb:78:
25:bc:62:54:a4:1d:3b:d8:31:fb:80:80:9f:fb:be:
2d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4C:34:AD:16:0D:9C:08:90:C8:0F:E9:99:C6:DE:4F:45:F8:82:59
X509v3 Authority Key Identifier:
keyid:A6:76:21:82:18:44:88:E7:F7:87:12:2A:71:80:99:7C:E8:E9:0D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnYhghhEiOf3hxIqcYCZfOjpDUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2f319e-2685-4427-aec0-ed60bab7572f/1/pnYhghhEiOf3hxIqcYCZfOjpDUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:35:e5:2d:c8:fb:73:58:c6:fa:3b:29:b7:a8:1a:96:11:30:
4f:09:d6:30:e7:9a:76:95:c8:c1:ef:b9:d4:36:54:d9:b8:29:
9b:a2:a7:20:7d:6a:1b:0f:cf:5e:7d:df:10:e2:fd:fa:f0:bf:
a5:ea:f3:19:be:7f:7a:cb:4e:89:05:a8:11:43:47:e5:14:3e:
6f:3f:b3:29:d9:33:f4:4f:0e:d4:9a:60:a7:d8:5f:ce:70:08:
e2:4b:c7:86:10:1d:60:9e:5e:30:d9:04:80:f3:53:06:bb:9a:
95:1e:27:ba:d9:0e:a3:56:74:8c:54:ea:d2:60:2a:51:13:53:
80:4c:68:da:9c:28:6d:14:77:35:b5:17:c8:aa:ef:b9:b3:26:
cf:b9:b5:6d:70:5c:e6:2e:7f:c0:de:9d:3f:f9:e0:ce:29:8e:
bd:1b:2e:46:3a:f3:08:34:29:1c:90:3e:1a:a2:4f:7e:ca:8f:
f8:fb:b8:98:20:8d:9a:9d:aa:a2:6c:09:b6:3e:56:c7:17:49:
58:be:90:68:ff:4f:cc:02:22:37:3e:d8:15:b5:d8:18:99:bc:
bd:9d:18:50:75:4a:04:23:a8:ab:85:40:bb:ff:9a:f5:c0:37:
35:64:c4:1f:77:86:cc:20:b9:20:61:f5:f6:58:45:8a:58:28:
35:88:1c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:46:14 2025 by rpki-client