Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: iI1gXtLOfiUWO38uCQ080oAKorOZeS7xGCKKX0LtTrw=
Subject key identifier: 7F:26:1A:AD:BC:90:3D:41:B8:B4:21:3E:1F:64:39:F4:1E:14:07:AA
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 0197B5C52DE56CA3DE1D477AF640D582662D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 09:01:27 +0000
Manifest this update: Sat 28 Jun 2025 09:01:27 +0000
Manifest next update: Sun 29 Jun 2025 09:01:27 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: PMiErKfDNfnai9gFHxeXvUI5zNpbMRoWXIHrBxWf3Nk=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c5:2d:e5:6c:a3:de:1d:47:7a:f6:40:d5:82:66:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Jun 28 09:01:27 2025 GMT
Not After : Jun 29 09:01:27 2025 GMT
Subject: CN=7f261aadbc903d41b8b4213e1f6439f41e1407aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:cd:d7:10:36:be:14:2e:02:e8:94:10:30:
2e:b1:5c:f6:e5:b7:d3:3d:08:aa:1d:f5:ad:81:52:
b5:85:92:cf:67:4b:7d:18:be:29:8c:b5:63:fe:6c:
d8:a0:fb:c0:70:97:92:0f:24:63:3e:7d:2e:d0:52:
bd:60:d8:8b:af:00:6c:76:f6:15:24:44:1c:8a:74:
df:8c:4c:ba:6e:1b:67:a1:a6:b1:0f:f6:a1:38:4d:
4f:1d:8f:dd:d5:ef:2b:a2:7f:91:fa:6b:9d:4f:16:
e6:5b:e8:5c:8c:dd:38:63:a2:81:9a:42:91:9c:97:
0b:ee:e6:ac:84:8b:e4:b4:25:02:38:15:f7:0b:8c:
94:9a:3e:9e:6d:8f:2e:24:b5:62:6c:b1:e6:b3:08:
ca:4b:cf:e6:c0:77:a5:e1:08:29:a5:19:18:41:71:
aa:1b:2b:f8:ac:26:71:05:fd:10:d4:f6:5e:8c:4e:
42:90:c9:5c:f1:4e:51:7b:07:61:ff:98:8b:6f:5a:
d5:27:32:2e:99:a9:2f:bc:59:a6:03:cb:6c:bf:63:
df:13:8c:50:36:90:c3:90:b6:f8:49:55:ee:62:ec:
9f:b5:70:d0:1b:19:76:60:77:19:b7:4f:dd:a1:bf:
1e:27:e7:08:e4:3b:c8:3b:a7:5e:cc:c9:7b:12:89:
81:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:26:1A:AD:BC:90:3D:41:B8:B4:21:3E:1F:64:39:F4:1E:14:07:AA
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:51:bd:39:55:05:94:44:72:16:5b:80:2b:a5:91:27:79:2d:
d5:30:6b:ad:cc:7c:22:e8:03:2d:dd:1f:1d:95:48:b0:88:9a:
4f:cc:d9:c6:30:f3:8b:4c:a4:5f:a8:20:55:e5:bb:0c:b8:9e:
3f:ec:28:0a:b8:15:ec:90:7d:a8:43:c4:46:9d:c1:7e:da:96:
13:df:3c:47:ec:ae:92:de:f3:77:47:c8:66:48:62:da:0d:1e:
a1:09:2f:02:f6:fb:0f:2e:cc:8a:67:15:6f:3b:97:83:0f:a1:
53:a2:9c:be:54:26:4e:31:9b:76:01:a0:60:bc:54:1f:10:54:
2e:cf:a0:06:79:ca:dd:69:35:47:e2:b5:e1:f8:db:3b:07:6f:
43:39:34:07:93:fb:f0:d2:c5:5d:81:3d:91:4c:6b:ce:06:a6:
99:03:cf:99:e5:82:e3:35:fc:1b:45:36:d2:b8:c0:86:20:20:
34:e7:ec:a3:06:6a:d8:7b:1e:1e:70:8f:56:e1:f2:ed:a1:d2:
a2:76:dc:52:3c:25:09:35:fa:3d:15:02:b7:ad:12:35:94:7b:
6d:42:b7:d7:e6:e4:62:e7:7a:0a:5a:a2:38:78:9f:05:bf:fc:
72:15:22:91:aa:8a:ba:fa:87:f7:d2:4b:38:94:c9:4b:f3:d4:
47:57:aa:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:08:25 2025 by rpki-client