Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json)
Hash identifier: bu718Iwm88q6VZIBq8lbE8dqaM5Ld5LYua6extY3Cl8=
Subject key identifier: E0:6F:4A:07:AF:F2:AF:7B:5E:87:83:5B:F7:E4:10:69:92:7C:6A:ED
Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Certificate serial: 0199FBEB6490F49D96741AD12BCB23BEDA3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
Manifest number: 0D8F
Signing time: Sun 19 Oct 2025 10:02:11 +0000
Manifest this update: Sun 19 Oct 2025 10:02:11 +0000
Manifest next update: Mon 20 Oct 2025 10:02:11 +0000
Files and hashes: 1: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: BLFAaGtTSZljKwReR0/ELsjW8xx3hklUyy29uxod//I=)
2: RPdruY8oCYU-NG_cdmDTyaYXs9w.roa (hash: i9rNw7/5XltvLVBXot4AXkRNS8YKs+TQnC29q/66MR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:64:90:f4:9d:96:74:1a:d1:2b:cb:23:be:da:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9
Validity
Not Before: Oct 19 10:02:11 2025 GMT
Not After : Oct 20 10:02:11 2025 GMT
Subject: CN=e06f4a07aff2af7b5e87835bf7e41069927c6aed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6d:e6:bc:28:2d:1b:f9:bb:93:9c:1b:79:4a:
35:e1:3b:a0:fd:8c:27:12:18:da:15:fa:15:68:54:
25:c1:ba:60:42:7c:1f:b5:75:01:64:d9:63:48:67:
ea:2a:bf:a2:2a:51:20:ac:84:30:50:62:13:72:96:
e8:68:0d:63:40:a8:5d:70:5d:e5:8f:f2:4e:8e:fe:
a0:5a:1d:2a:46:be:60:db:ce:c4:ae:89:eb:37:73:
67:11:c8:e4:d4:e8:b2:17:bf:02:41:1c:62:72:e0:
4c:fd:a8:e0:a1:17:09:cf:39:97:e7:e9:94:10:a8:
e2:62:5e:13:75:fb:23:3e:37:f4:16:06:a7:a5:9d:
76:6b:c5:2f:ef:0e:ce:fd:f7:10:ff:65:12:b5:6c:
7a:e9:da:9a:a9:b7:73:7b:0f:22:1c:c4:bd:62:8b:
2b:1f:0c:77:70:68:93:a9:2d:f3:e1:1a:fb:7b:2d:
a5:df:33:3c:80:18:4c:72:4d:f4:53:38:17:53:7e:
94:9c:be:71:b1:09:92:05:37:b0:58:7d:b1:14:ae:
2f:f3:32:1f:78:ac:dd:c6:c9:86:28:4e:be:ab:cf:
c6:b5:53:42:25:dd:ad:3b:f1:2f:00:8d:e3:93:bf:
07:12:b9:a2:93:c8:14:36:01:45:99:e8:ae:49:5b:
3a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6F:4A:07:AF:F2:AF:7B:5E:87:83:5B:F7:E4:10:69:92:7C:6A:ED
X509v3 Authority Key Identifier:
keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:1e:ac:e8:b3:f8:68:1a:ce:09:b2:dc:6a:e6:87:59:be:91:
fa:53:ea:75:35:3e:e2:f4:8b:1e:dc:55:41:24:78:07:a3:ff:
46:a3:e7:7f:61:1a:ca:82:b6:2f:0f:4e:9a:f9:ae:6d:f0:fa:
36:fb:4c:6e:ca:79:45:96:9b:2d:ac:e2:14:fd:01:cc:2a:82:
09:cf:64:62:4d:81:6c:fd:c3:2d:a2:29:7a:57:93:bc:ec:7d:
0b:1b:b3:52:b9:40:1d:d8:63:5e:d4:10:34:d1:18:1e:84:b8:
a4:3b:6c:80:a3:03:a2:09:b9:dd:a6:91:0f:09:c1:bc:9f:3d:
4b:02:43:1b:71:a3:94:72:f2:17:7a:ae:62:f1:f6:50:9e:5c:
56:25:6a:2c:66:eb:5b:40:c1:e5:ff:8c:07:16:f4:8d:9e:dd:
3c:3e:80:1d:da:2d:94:a1:7d:c1:cc:f4:80:a6:46:31:da:97:
eb:de:09:61:a6:a6:cf:bc:42:60:f1:dc:a6:b9:97:3c:f5:57:
fa:ac:23:71:89:97:72:d8:b5:0e:e4:d8:71:6e:05:7d:7c:85:
e6:34:f7:e5:07:36:9c:f3:08:c3:94:e5:16:c2:91:e8:1a:42:
f9:46:c7:d1:2a:6a:9c:60:72:a2:2c:58:f2:28:37:0d:67:91:
ac:b9:a1:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn762SQ9J2WdBrRK8sjvto8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzdkMmJmYzNmYTc4ZTcxMDBhMWI4OTM1OTA1YWZmN2E0
OTZiYzkwHhcNMjUxMDE5MTAwMjExWhcNMjUxMDIwMTAwMjExWjAzMTEwLwYDVQQD
EyhlMDZmNGEwN2FmZjJhZjdiNWU4NzgzNWJmN2U0MTA2OTkyN2M2YWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG3mvCgtG/m7k5wbeUo14Tug/Ywn
EhjaFfoVaFQlwbpgQnwftXUBZNljSGfqKr+iKlEgrIQwUGITcpboaA1jQKhdcF3l
j/JOjv6gWh0qRr5g287EronrN3NnEcjk1OiyF78CQRxicuBM/ajgoRcJzzmX5+mU
EKjiYl4TdfsjPjf0FganpZ12a8Uv7w7O/fcQ/2UStWx66dqaqbdzew8iHMS9Yosr
Hwx3cGiTqS3z4Rr7ey2l3zM8gBhMck30UzgXU36UnL5xsQmSBTewWH2xFK4v8zIf
eKzdxsmGKE6+q8/GtVNCJd2tO/EvAI3jk78HErmik8gUNgFFmeiuSVs6DwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOBvSgev8q97XoeDW/fkEGmSfGrtMB8GA1UdIwQY
MBaAFD7H0r/D+njnEAobiTWQWv96SWvJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQt
YmE4ODExMjJjYTYzLzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQtYmE4ODExMjJjYTYz
LzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdx6s6LP4
aBrOCbLcauaHWb6R+lPqdTU+4vSLHtxVQSR4B6P/RqPnf2EayoK2Lw9OmvmubfD6
NvtMbsp5RZabLaziFP0BzCqCCc9kYk2BbP3DLaIpeleTvOx9CxuzUrlAHdhjXtQQ
NNEYHoS4pDtsgKMDogm53aaRDwnBvJ89SwJDG3GjlHLyF3quYvH2UJ5cViVqLGbr
W0DB5f+MBxb0jZ7dPD6AHdotlKF9wcz0gKZGMdqX694JYaamz7xCYPHcprmXPPVX
+qwjcYmXcti1DuTYcW4FfXyF5jT35Qc2nPMIw5TlFsKR6BpC+UbH0SpqnGByoixY
8ig3DWeRrLmhUA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:43 2025 by rpki-client