Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
File: PXD-HXX32nbS49w0T7HwsLad4AE.mft (raw, json)
Hash identifier: 3KO3yZznWT1Uahk7jgs410n5qS8rkX5a1Obxqsl/8/k=
Subject key identifier: C8:5C:83:25:8E:86:C4:86:AA:77:F4:B0:2E:FF:DA:87:3D:74:A3:91
Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Certificate serial: 019A1129038C4E5BB52DCE2CCE2F53F5BA5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
Manifest number: 165B
Signing time: Thu 23 Oct 2025 13:01:31 +0000
Manifest this update: Thu 23 Oct 2025 13:01:31 +0000
Manifest next update: Fri 24 Oct 2025 13:01:31 +0000
Files and hashes: 1: PXD-HXX32nbS49w0T7HwsLad4AE.crl (hash: ud/04boWNZ5DkKnIoaIAtir+34staPhtkZVwC3z4eLU=)
2: qcINREJGIFWN3YXOgtNuqjCBfnY.roa (hash: 1gG5XU0DGFtKFXRvNOA96XCA/EPC9XB/rEykj9F+ocs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 13:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:11:29:03:8c:4e:5b:b5:2d:ce:2c:ce:2f:53:f5:ba:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Validity
Not Before: Oct 23 13:01:31 2025 GMT
Not After : Oct 24 13:01:31 2025 GMT
Subject: CN=c85c83258e86c486aa77f4b02effda873d74a391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:83:5e:23:4c:39:bd:c2:48:84:31:15:78:ba:
b8:b1:9c:5d:e1:73:2a:f8:b9:29:f4:32:b3:7d:2d:
1c:f2:f6:d3:8a:bc:a0:f3:52:a2:09:fd:a1:51:e8:
be:be:9d:65:61:6f:de:dc:82:b4:34:f5:04:99:4e:
f9:57:31:c8:39:77:85:64:2c:97:fb:ba:d7:83:69:
4e:93:b0:01:1b:31:57:57:8d:51:01:cf:b1:d3:d7:
95:3a:38:2c:d8:7a:33:a6:3a:c6:07:e1:16:78:4a:
e2:49:97:af:84:a4:cb:03:ea:d0:0e:f7:c1:05:78:
24:04:b7:a5:6b:e3:50:47:20:74:e2:aa:21:43:49:
da:65:b0:ff:37:b3:e5:31:70:c2:e9:0d:85:ad:8c:
cf:57:13:c5:b5:e0:21:32:d2:36:b1:39:b2:cb:3c:
c8:8f:af:fb:17:5d:31:10:2c:79:30:91:38:1e:8f:
be:83:b4:64:9a:74:42:ff:cb:3a:e9:48:55:6f:97:
e5:59:9e:6a:27:e9:0c:b5:8f:e6:ac:98:2f:e7:b3:
89:f6:8c:19:4e:1b:a7:e9:6a:06:e5:8c:a6:ec:7a:
0e:47:63:d9:f7:08:eb:e3:c8:9a:97:ef:b4:54:2e:
04:7f:0c:46:f9:25:05:7a:d4:62:fe:ea:aa:b1:4c:
35:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5C:83:25:8E:86:C4:86:AA:77:F4:B0:2E:FF:DA:87:3D:74:A3:91
X509v3 Authority Key Identifier:
keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:19:77:e1:40:7a:86:c8:56:a1:8d:7b:a4:75:f1:e5:0f:9c:
85:49:f3:7a:4e:b5:a3:08:0a:9d:f4:01:d6:61:36:db:32:c8:
c0:c9:34:3e:55:8f:4a:ff:42:3f:f8:86:7c:ee:ff:70:77:19:
b4:ba:c1:9e:7d:9d:87:f1:de:0a:08:ce:08:aa:2f:ce:69:43:
49:28:9f:58:27:ab:9b:4f:07:54:22:dd:15:b8:c0:f9:7b:ab:
64:06:2a:1f:c1:f8:df:b6:a1:5c:3c:79:d7:1f:44:fb:09:b4:
79:f3:69:71:26:f6:22:ea:af:ee:7f:d7:f2:f4:fa:94:6f:f9:
f3:ad:75:3f:50:37:44:b2:2b:15:eb:bd:57:b9:bb:79:57:08:
73:09:09:3e:ff:74:3a:de:78:5a:32:dd:d2:cd:cd:a5:7f:c7:
b3:0a:1e:e8:7c:3a:ea:7c:6c:af:98:e1:df:78:50:e9:f6:33:
2c:62:d4:f4:4e:3e:6c:99:2a:2f:e0:b7:df:83:f6:2b:91:93:
1e:23:d3:83:95:ea:e3:e7:2d:49:ad:45:c8:7c:1b:31:b6:9f:
84:c9:9d:36:ac:77:1a:21:67:1b:83:46:59:a1:5c:45:0e:69:
fe:f4:63:9d:ba:d3:e1:bb:fa:2d:e8:f2:27:c0:1a:1f:5b:69:
cf:19:8e:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoRKQOMTlu1Lc4szi9T9bpaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNzBmZTFkNzVmN2RhNzZkMmUzZGMzNDRmYjFmMGIwYjY5
ZGUwMDEwHhcNMjUxMDIzMTMwMTMxWhcNMjUxMDI0MTMwMTMxWjAzMTEwLwYDVQQD
EyhjODVjODMyNThlODZjNDg2YWE3N2Y0YjAyZWZmZGE4NzNkNzRhMzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34NeI0w5vcJIhDEVeLq4sZxd4XMq
+Lkp9DKzfS0c8vbTiryg81KiCf2hUei+vp1lYW/e3IK0NPUEmU75VzHIOXeFZCyX
+7rXg2lOk7ABGzFXV41RAc+x09eVOjgs2HozpjrGB+EWeEriSZevhKTLA+rQDvfB
BXgkBLela+NQRyB04qohQ0naZbD/N7PlMXDC6Q2FrYzPVxPFteAhMtI2sTmyyzzI
j6/7F10xECx5MJE4Ho++g7RkmnRC/8s66UhVb5flWZ5qJ+kMtY/mrJgv57OJ9owZ
Thun6WoG5Yym7HoOR2PZ9wjr48ial++0VC4EfwxG+SUFetRi/uqqsUw1bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhcgyWOhsSGqnf0sC7/2oc9dKORMB8GA1UdIwQY
MBaAFD1w/h1199p20uPcNE+x8LC2neABMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFhELUhYWDMybmJTNDl3MFQ3SHdzTGFkNEFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yNDU2ZTUtNjFkZC00YWUzLWEyNGYt
Yjg1MmJkODEyM2YwLzEvUFhELUhYWDMybmJTNDl3MFQ3SHdzTGFkNEFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8yNDU2ZTUtNjFkZC00YWUzLWEyNGYtYjg1MmJkODEyM2Yw
LzEvUFhELUhYWDMybmJTNDl3MFQ3SHdzTGFkNEFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACxl34UB6
hshWoY17pHXx5Q+chUnzek61owgKnfQB1mE22zLIwMk0PlWPSv9CP/iGfO7/cHcZ
tLrBnn2dh/HeCgjOCKovzmlDSSifWCerm08HVCLdFbjA+XurZAYqH8H437ahXDx5
1x9E+wm0efNpcSb2Iuqv7n/X8vT6lG/58611P1A3RLIrFeu9V7m7eVcIcwkJPv90
Ot54WjLd0s3NpX/Hswoe6Hw66nxsr5jh33hQ6fYzLGLU9E4+bJkqL+C334P2K5GT
HiPTg5Xq4+ctSa1FyHwbMbafhMmdNqx3GiFnG4NGWaFcRQ5p/vRjnbrT4bv6Lejy
J8AaH1tpzxmOGg==
-----END CERTIFICATE-----
Generated at Thu Oct 23 16:41:37 2025 by rpki-client