Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json)
Hash identifier: o6/ni4t63FdCJogdQQXMGYOyM9jx0DuZqs8066JUqok=
Subject key identifier: 31:77:FB:2D:16:E2:15:C0:A7:8C:D1:4F:77:FB:C8:81:88:96:95:6B
Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Certificate serial: 0198D473106F07BE43BDFF765729D1AC64B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
Manifest number: 0CF6
Signing time: Sat 23 Aug 2025 01:02:47 +0000
Manifest this update: Sat 23 Aug 2025 01:02:47 +0000
Manifest next update: Sun 24 Aug 2025 01:02:47 +0000
Files and hashes: 1: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: wOrVmGwBjaK7Qe9WcCL2XX5SF9liHJbucowsGX8eR/Y=)
2: RPdruY8oCYU-NG_cdmDTyaYXs9w.roa (hash: i9rNw7/5XltvLVBXot4AXkRNS8YKs+TQnC29q/66MR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:10:6f:07:be:43:bd:ff:76:57:29:d1:ac:64:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Validity
Not Before: Aug 23 01:02:47 2025 GMT
Not After : Aug 24 01:02:47 2025 GMT
Subject: CN=3177fb2d16e215c0a78cd14f77fbc8818896956b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1d:33:5d:da:7c:4b:fe:18:dc:43:1a:fd:37:
2a:ad:ec:27:48:82:1c:cd:36:e8:67:6e:d9:72:31:
e8:77:16:19:00:e1:86:da:40:c1:3e:29:05:57:24:
c4:fa:6e:b0:85:6c:36:1f:b7:59:60:84:5d:55:fd:
1a:38:72:de:84:38:f5:8f:7f:a5:f5:f2:7e:3a:ee:
4a:a9:26:09:41:a8:8c:c7:f3:f2:fc:62:02:4d:33:
09:fd:99:36:a8:f3:8a:9e:3e:e7:c6:eb:5e:2c:52:
61:93:c3:e5:18:aa:58:e1:c8:27:af:47:f8:cd:1e:
bf:b2:f1:53:ab:ce:14:dd:53:56:1f:91:87:15:1a:
59:5f:65:36:59:cd:df:39:3e:1e:a0:43:f5:1d:51:
76:44:83:d1:58:27:2d:be:ed:1e:5b:1a:fb:6d:53:
09:46:37:3b:76:10:7d:28:00:ac:fe:5a:e5:7a:88:
d2:0e:de:a9:cd:4e:b1:8a:f8:ab:60:a5:9b:b2:20:
d5:56:10:04:37:da:a7:42:99:9d:05:d3:c9:fa:85:
0f:73:10:64:85:ed:78:c6:99:58:a9:8b:50:5b:df:
7a:1e:ce:e1:b6:ae:92:5c:28:a5:5c:14:3e:2f:d0:
6e:92:aa:57:f0:19:75:69:2b:41:43:46:91:6e:56:
13:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:77:FB:2D:16:E2:15:C0:A7:8C:D1:4F:77:FB:C8:81:88:96:95:6B
X509v3 Authority Key Identifier:
keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:6a:5d:39:c9:1e:7d:03:7f:8e:ec:df:89:f2:87:0d:3f:ef:
1b:32:d3:69:9b:a5:53:b1:cd:54:58:ed:cf:16:65:f9:db:99:
b7:54:6d:68:71:fe:af:c6:af:af:1e:f1:e3:21:52:16:72:22:
98:3f:cd:21:4d:72:5d:5b:6a:f0:1e:4e:82:f3:ec:7c:4c:49:
50:d9:39:ad:fd:5f:1f:4c:62:63:b1:df:82:d7:11:05:56:ab:
53:70:19:bc:01:ad:44:33:ab:b2:6c:2a:e6:7e:53:5c:6b:d9:
ed:49:9d:49:b8:b2:f6:99:cc:c6:fd:14:5c:e0:b2:3b:1d:c3:
2d:e3:bf:7e:a1:f1:fe:39:5b:1b:b3:21:08:ee:66:8e:85:f1:
2c:87:f4:8e:7e:8c:67:dd:5d:4a:c7:05:43:0c:61:30:7f:38:
2e:ac:19:d0:79:03:a0:a1:dd:4e:f1:bb:5b:da:2e:d3:9d:0d:
62:32:ac:92:e2:43:98:4d:79:69:05:90:24:20:03:cc:6a:ae:
b9:52:6b:01:c1:91:aa:0a:9b:ed:6c:62:55:ee:18:48:c9:ba:
40:c0:93:ce:24:c5:a8:02:50:3f:4c:52:6b:05:e6:9f:95:d2:
b5:25:e5:b7:dd:be:fa:16:37:08:04:3e:47:e2:e3:33:a7:c7:
f3:c7:c9:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcxBvB75Dvf92VynRrGSyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzdkMmJmYzNmYTc4ZTcxMDBhMWI4OTM1OTA1YWZmN2E0
OTZiYzkwHhcNMjUwODIzMDEwMjQ3WhcNMjUwODI0MDEwMjQ3WjAzMTEwLwYDVQQD
EygzMTc3ZmIyZDE2ZTIxNWMwYTc4Y2QxNGY3N2ZiYzg4MTg4OTY5NTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1R0zXdp8S/4Y3EMa/TcqrewnSIIc
zTboZ27ZcjHodxYZAOGG2kDBPikFVyTE+m6whWw2H7dZYIRdVf0aOHLehDj1j3+l
9fJ+Ou5KqSYJQaiMx/Py/GICTTMJ/Zk2qPOKnj7nxuteLFJhk8PlGKpY4cgnr0f4
zR6/svFTq84U3VNWH5GHFRpZX2U2Wc3fOT4eoEP1HVF2RIPRWCctvu0eWxr7bVMJ
Rjc7dhB9KACs/lrleojSDt6pzU6xivirYKWbsiDVVhAEN9qnQpmdBdPJ+oUPcxBk
he14xplYqYtQW996Hs7htq6SXCilXBQ+L9BukqpX8Bl1aStBQ0aRblYTXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDF3+y0W4hXAp4zRT3f7yIGIlpVrMB8GA1UdIwQY
MBaAFD7H0r/D+njnEAobiTWQWv96SWvJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQt
YmE4ODExMjJjYTYzLzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQtYmE4ODExMjJjYTYz
LzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAWpdOcke
fQN/juzfifKHDT/vGzLTaZulU7HNVFjtzxZl+duZt1RtaHH+r8avrx7x4yFSFnIi
mD/NIU1yXVtq8B5OgvPsfExJUNk5rf1fH0xiY7HfgtcRBVarU3AZvAGtRDOrsmwq
5n5TXGvZ7UmdSbiy9pnMxv0UXOCyOx3DLeO/fqHx/jlbG7MhCO5mjoXxLIf0jn6M
Z91dSscFQwxhMH84LqwZ0HkDoKHdTvG7W9ou050NYjKskuJDmE15aQWQJCADzGqu
uVJrAcGRqgqb7WxiVe4YSMm6QMCTziTFqAJQP0xSawXmn5XStSXlt92++hY3CAQ+
R+LjM6fH88fJbw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:04 2025 by rpki-client