Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: ukB80XZGZTGy8pY79lhz0JFCMmdAaEMKtyxN0FzwgH8=
Subject key identifier: 62:5F:0A:14:01:CC:73:A9:EA:A1:A3:D4:4D:DF:75:81:D6:C5:57:0D
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 0198D5834808A354B0CBDEDCE76484BCBCB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 06:00:07 +0000
Manifest this update: Sat 23 Aug 2025 06:00:07 +0000
Manifest next update: Sun 24 Aug 2025 06:00:07 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: hmbfdiDdCVa0dEK72H6by+3kQzT/wcXo+cn61Uz82aA=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:48:08:a3:54:b0:cb:de:dc:e7:64:84:bc:bc:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Aug 23 06:00:07 2025 GMT
Not After : Aug 24 06:00:07 2025 GMT
Subject: CN=625f0a1401cc73a9eaa1a3d44ddf7581d6c5570d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b1:12:5b:58:ea:c1:5a:3e:f0:4c:c8:e8:7e:
35:0e:bf:7f:33:42:05:59:e9:aa:e3:fb:61:ce:8d:
d6:48:fc:e7:fd:fe:ea:5b:a4:d8:90:b3:86:3d:4f:
ed:bb:f6:c7:3b:6c:ba:52:e4:ac:e4:b4:3e:b7:7e:
cb:f3:7c:3f:23:c2:09:d3:ca:01:11:9c:66:84:38:
36:e4:0c:61:08:3b:a9:a3:4d:ec:10:19:79:ba:49:
2b:ec:85:88:81:d6:81:5b:f5:5c:17:08:6f:e4:e6:
7e:71:a0:c5:47:a7:10:b3:ac:70:ca:3d:fb:33:e7:
25:5d:a7:76:d7:43:90:5c:17:56:51:8f:52:a5:d9:
0c:ef:af:45:2e:0e:30:99:bd:93:0f:8b:73:ec:6a:
55:d1:84:e3:b4:e6:ef:39:34:be:37:8a:85:c4:df:
aa:f2:f4:b1:4f:a0:9b:00:21:8e:6f:95:3e:a2:b1:
ec:0f:6e:a5:13:59:1e:13:a3:5c:d4:16:cd:90:e0:
48:86:cb:fd:60:df:12:c7:cb:e3:ea:2b:7a:58:cb:
2c:a4:10:c6:69:53:cf:82:2a:6b:7d:93:56:9f:f6:
76:d2:be:1f:94:3b:3b:77:cc:ce:a0:2f:34:0c:62:
25:17:5e:5c:cf:fe:8e:af:d9:2d:eb:69:47:65:4e:
cb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:5F:0A:14:01:CC:73:A9:EA:A1:A3:D4:4D:DF:75:81:D6:C5:57:0D
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:27:3f:0d:9b:c7:79:c4:af:74:a1:f0:39:6b:8f:e6:fd:3b:
34:dd:8e:cb:d5:d3:bd:7f:b2:f4:11:7d:c9:c7:b8:ae:ff:c4:
ba:6d:7f:06:e5:0c:c5:ec:32:0b:9d:f8:ff:7a:1f:7b:cd:3b:
28:19:04:e7:dd:cb:3a:89:a1:3f:ea:10:47:ea:2c:7c:41:50:
41:2a:51:6d:2f:ac:8d:fd:a4:f1:69:f6:53:b4:8e:21:22:18:
86:e8:a8:fd:2f:9e:cb:50:27:f1:f6:87:30:c6:8b:0b:d1:3c:
db:65:e2:0c:25:b3:66:3f:a6:82:04:65:62:26:cd:85:87:35:
cc:0c:2d:bc:57:46:3a:7d:fb:b6:ca:38:e0:3f:04:d5:f6:e0:
fe:dc:70:8d:5b:d4:bd:1d:27:05:a2:50:7e:98:cc:8d:52:16:
a0:57:3d:b8:33:5f:15:1a:c2:12:b2:77:82:28:31:f0:d9:5f:
64:8f:d1:a2:20:1d:2d:08:2e:08:d4:61:bf:1a:ba:94:9e:49:
04:0a:cc:4d:31:33:16:0e:28:c0:64:e9:6a:ce:a0:fa:38:9b:
18:d0:0d:2b:cd:41:d0:08:65:68:26:13:6d:56:7d:92:51:f4:
dc:0a:18:41:b9:25:7a:24:9c:eb:35:8f:b1:1f:5e:86:fa:c8:
99:e6:eb:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:17:36 2025 by rpki-client