Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: xrsDWbNgznJEqaTLTSSMZ0JS0Fa9Wh1bsbp+jzqN7H4=
Subject key identifier: 8B:AF:C3:77:33:5D:05:DD:9B:C5:B3:16:B6:1A:54:6D:B5:EC:45:BC
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 0199FEEBB03EF2579363930166AE19BF7451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 00:01:22 +0000
Manifest this update: Mon 20 Oct 2025 00:01:22 +0000
Manifest next update: Tue 21 Oct 2025 00:01:22 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: 7Lw+Ymfn1zFtpXYkM85Gwx5y1dKvNihquI9ib+gU1Do=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:b0:3e:f2:57:93:63:93:01:66:ae:19:bf:74:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Oct 20 00:01:22 2025 GMT
Not After : Oct 21 00:01:22 2025 GMT
Subject: CN=8bafc377335d05dd9bc5b316b61a546db5ec45bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:96:2c:5d:95:cb:d6:f9:71:8c:2d:7b:91:
95:b3:93:39:71:1d:19:61:69:86:3d:90:74:fb:0f:
1d:cf:c9:75:79:5f:dc:90:3c:f2:b8:80:c9:b6:52:
0b:9c:af:99:12:b0:7c:df:fb:6d:6b:39:7d:32:99:
c5:ba:3a:c7:d9:da:00:f4:49:69:b4:0b:ce:f8:ef:
3f:15:6d:bc:9f:2f:a1:d2:52:6a:5f:22:2f:9e:1f:
48:5b:69:75:0d:42:8a:e8:c7:1a:42:f9:23:f2:ed:
4c:1a:07:a9:86:ae:f3:09:68:46:28:e9:7f:54:f4:
07:5d:92:06:27:90:3e:cd:b4:fc:ef:15:c8:8f:c2:
c6:5c:0a:4a:30:b0:40:a8:c4:0f:6b:79:58:ed:77:
93:d4:a7:36:93:59:b9:93:fb:af:b4:24:cd:af:c6:
cb:93:87:ad:75:8e:2d:ca:96:b3:79:f7:4a:d4:4b:
c2:4c:b4:e4:94:19:d5:a5:95:bb:7a:ba:3b:7a:08:
2a:63:3a:ef:d0:29:fa:69:fc:61:93:1e:e5:c8:56:
c2:59:e6:91:e4:bc:35:3e:a8:c9:69:76:93:8c:05:
d2:ca:c0:eb:27:76:fb:ff:7d:c8:41:d9:20:d4:11:
03:04:08:27:81:f0:bc:a3:ff:9b:f0:59:d1:9e:4c:
d3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AF:C3:77:33:5D:05:DD:9B:C5:B3:16:B6:1A:54:6D:B5:EC:45:BC
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a4:2b:23:43:ef:b3:ba:9c:cd:01:09:79:fc:71:1e:ea:39:
07:ac:63:14:86:79:bb:72:ed:c2:e1:8f:86:6f:80:08:79:9e:
98:13:51:41:68:31:f7:df:7e:1d:30:af:96:da:af:cb:67:4a:
bb:cf:a3:cf:39:af:45:7c:a3:bb:8d:09:2f:02:30:16:62:95:
07:00:40:83:81:f2:6e:af:41:38:36:40:c8:20:af:88:a3:67:
66:f1:96:07:ce:7e:52:a0:21:03:7d:b7:50:5b:3b:df:5c:33:
44:43:33:d3:2e:23:27:c2:81:3e:58:07:03:88:e3:d6:2b:c8:
4a:90:4d:0d:36:61:2d:1c:c9:3e:1c:d4:ae:17:24:cc:c4:ab:
8e:fa:c4:51:fe:25:c5:48:64:4a:2d:4c:2b:c0:bd:6c:13:79:
14:7f:21:38:b8:d3:b7:92:0b:be:87:6e:3b:28:64:9c:b7:e0:
83:6e:8e:a9:f9:66:e9:c8:80:09:30:66:88:c0:12:be:ab:26:
8a:0c:c2:59:8d:30:76:b8:fc:91:72:58:1c:d9:d0:68:be:ac:
d9:9a:6c:7e:20:64:ed:3d:4f:76:06:04:66:03:e1:de:2e:da:
e5:df:98:6b:2e:61:1e:a5:95:f5:80:a5:bf:d7:4b:9c:55:d4:
83:85:c1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:58:52 2025 by rpki-client