Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: l5YUbMRvQkXRvTW1cXvXHDDeQM1uw3k5clgRevVeDJ4=
Subject key identifier: 3A:8B:40:DB:E8:D0:7D:21:67:FD:18:78:14:04:06:A3:04:62:1E:80
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 0198D4A787441064A13132B5D02466F647A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 05EB
Signing time: Sat 23 Aug 2025 02:00:05 +0000
Manifest this update: Sat 23 Aug 2025 02:00:05 +0000
Manifest next update: Sun 24 Aug 2025 02:00:05 +0000
Files and hashes: 1: J--9FTqyd7jwis3viXw5cnMN5-o.roa (hash: DC3T7Frr+GR57cEYLFoZVlKHfiR/SiiUWqjetZEXAWY=)
2: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: IW+UCGlNm+B0/WcrX7JpBr9WUubzs3Ep45MMCytQcQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:87:44:10:64:a1:31:32:b5:d0:24:66:f6:47:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Aug 23 02:00:05 2025 GMT
Not After : Aug 24 02:00:05 2025 GMT
Subject: CN=3a8b40dbe8d07d2167fd1878140406a304621e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e9:8d:81:fd:82:66:d1:46:3e:33:c9:b8:af:
e4:56:b1:f3:51:32:d7:21:41:5a:ac:05:59:35:32:
76:cc:0c:e3:eb:f2:c2:95:e7:1b:93:58:86:f5:f9:
5f:f6:59:db:3b:51:75:ff:92:3e:4d:3d:d6:a4:c9:
e3:af:42:79:de:f8:ad:7e:72:b4:6c:a5:76:49:ee:
eb:53:bc:f8:f1:5c:5b:01:3d:bf:a1:06:30:1f:af:
02:24:27:7f:5e:8a:b4:82:c5:6c:06:b2:d5:99:41:
30:f1:c5:f7:b3:79:15:c8:d3:2a:30:a3:27:df:06:
80:0c:cc:19:0d:03:0a:9c:f6:0d:e3:19:67:c5:d5:
78:dc:33:5d:23:78:aa:d9:20:6d:e8:20:17:8b:c9:
2d:51:29:d2:20:e8:3f:1e:06:c3:bc:c8:d2:31:0a:
d8:60:fa:d1:54:45:37:5c:4e:95:70:0a:f7:be:c5:
71:a2:11:c9:4b:73:c5:94:92:c1:5c:84:f5:67:9b:
b3:eb:d2:85:1c:16:11:62:d9:62:a1:47:a6:ea:35:
f9:bc:a9:87:33:6d:e0:61:3e:8f:9a:e1:97:ea:10:
0d:2b:e8:3a:d2:00:14:06:b0:f3:0a:53:46:01:30:
ab:33:e6:d2:a6:ea:db:8c:93:21:02:b7:15:6c:97:
8f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8B:40:DB:E8:D0:7D:21:67:FD:18:78:14:04:06:A3:04:62:1E:80
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:73:d1:7e:7a:38:9c:e5:50:fb:3e:04:6d:29:2d:a5:07:4d:
9a:79:59:1c:74:b1:6e:8c:04:08:4a:2d:61:fc:5a:86:5b:ee:
15:43:b5:9a:0f:89:4c:d8:c8:e8:7f:5b:71:11:12:03:67:1e:
b1:46:ba:7b:d6:e5:b3:9c:cf:fb:66:99:a5:d5:1a:a5:b3:67:
df:f4:ab:21:81:b7:c7:88:3a:1c:60:f3:e0:b0:2d:a7:72:6f:
c3:87:7d:ad:0e:c6:45:7e:83:c5:ad:6f:ef:72:d4:8e:26:85:
c5:fc:33:2e:f3:d4:f9:dd:e4:c0:0f:f0:b0:44:13:07:62:2b:
8b:5f:a7:2b:a6:c1:eb:6c:bf:1e:b6:0e:8b:23:b0:51:32:7f:
20:8e:d4:0d:57:36:8d:32:5d:40:13:58:2c:79:ca:28:fc:a4:
8c:49:9b:9b:34:71:de:a7:21:7d:22:14:0b:56:75:cf:e0:5d:
c8:7b:31:01:4e:99:e1:17:b4:70:5d:dc:15:6c:09:42:ec:b1:
69:28:a2:22:9c:4e:20:7b:cc:71:06:73:61:91:c5:e8:db:a0:
9f:2f:ee:2c:d2:15:07:0d:60:b6:cd:6b:19:44:c0:30:ee:9c:
e1:89:d6:1e:75:92:84:74:04:56:46:74:de:f1:cb:af:cc:0e:
a2:2f:f0:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUp4dEEGShMTK10CRm9keoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZWMwNjFjNWVkNTZkY2EwNzc1M2ZlNGI1YjhjMDkwZDk3
YWQwZTEwHhcNMjUwODIzMDIwMDA1WhcNMjUwODI0MDIwMDA1WjAzMTEwLwYDVQQD
EygzYThiNDBkYmU4ZDA3ZDIxNjdmZDE4NzgxNDA0MDZhMzA0NjIxZTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkumNgf2CZtFGPjPJuK/kVrHzUTLX
IUFarAVZNTJ2zAzj6/LClecbk1iG9flf9lnbO1F1/5I+TT3WpMnjr0J53vitfnK0
bKV2Se7rU7z48VxbAT2/oQYwH68CJCd/Xoq0gsVsBrLVmUEw8cX3s3kVyNMqMKMn
3waADMwZDQMKnPYN4xlnxdV43DNdI3iq2SBt6CAXi8ktUSnSIOg/HgbDvMjSMQrY
YPrRVEU3XE6VcAr3vsVxohHJS3PFlJLBXIT1Z5uz69KFHBYRYtlioUem6jX5vKmH
M23gYT6PmuGX6hANK+g60gAUBrDzClNGATCrM+bSpurbjJMhArcVbJePcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDqLQNvo0H0hZ/0YeBQEBqMEYh6AMB8GA1UdIwQY
MBaAFDzsBhxe1W3KB3U/5LW4wJDZetDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgt
ZDY5YzAxMzRmNWE4LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80N2Q3ZjctYjAxOS00MmU5LWJiMDgtZDY5YzAxMzRmNWE4
LzEvUE93R0hGN1ZiY29IZFRfa3RiakFrTmw2ME9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXPRfno4
nOVQ+z4EbSktpQdNmnlZHHSxbowECEotYfxahlvuFUO1mg+JTNjI6H9bcRESA2ce
sUa6e9bls5zP+2aZpdUapbNn3/SrIYG3x4g6HGDz4LAtp3Jvw4d9rQ7GRX6Dxa1v
73LUjiaFxfwzLvPU+d3kwA/wsEQTB2Iri1+nK6bB62y/HrYOiyOwUTJ/II7UDVc2
jTJdQBNYLHnKKPykjEmbmzRx3qchfSIUC1Z1z+BdyHsxAU6Z4Re0cF3cFWwJQuyx
aSiiIpxOIHvMcQZzYZHF6Nugny/uLNIVBw1gts1rGUTAMO6c4YnWHnWShHQEVkZ0
3vHLr8wOoi/wJA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:09:36 2025 by rpki-client