Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: 1ND1KKordeX611nbuyae+OW7Gut46QUrDiJ+Q9Y+QFc=
Subject key identifier: 58:D8:99:F6:61:F3:85:C2:C5:2E:08:E9:D5:40:F0:83:F7:94:51:67
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 0199FCFD88061E79730019EF5CA7E346EE6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 05CE
Signing time: Sun 19 Oct 2025 15:01:37 +0000
Manifest this update: Sun 19 Oct 2025 15:01:37 +0000
Manifest next update: Mon 20 Oct 2025 15:01:37 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: 2Ajg2UIqGGf/MGzyxvuP5hKT0aajLa09HtLOirg6rN8=)
2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:88:06:1e:79:73:00:19:ef:5c:a7:e3:46:ee:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: Oct 19 15:01:37 2025 GMT
Not After : Oct 20 15:01:37 2025 GMT
Subject: CN=58d899f661f385c2c52e08e9d540f083f7945167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:33:58:d4:4b:0a:9f:15:00:3c:30:90:6b:06:
00:d6:45:60:fe:4c:46:e8:f3:99:02:46:d7:55:5b:
88:7f:b7:65:d4:b5:1f:a5:6d:69:20:56:05:2e:68:
d8:42:a7:bf:6a:00:91:2e:1f:e0:3a:3c:49:e1:52:
9c:ff:e1:0a:11:d7:f5:21:69:01:26:23:e8:20:16:
23:69:21:64:f8:e3:c4:7d:15:86:27:18:e5:0b:04:
70:e4:d9:a5:ce:41:bc:c3:a9:70:4b:9e:64:9e:4b:
68:ec:65:eb:64:bb:00:f7:c8:32:fb:e2:e4:88:90:
1d:a4:3c:08:80:d9:75:1c:c7:ff:91:93:85:07:c8:
85:da:8d:eb:d0:f7:a8:3a:8e:20:fd:9c:6f:b1:59:
56:50:52:3b:79:44:67:b6:c3:32:40:fb:f8:11:d2:
77:25:20:0d:bb:82:e6:23:92:23:4b:71:ab:f4:e6:
18:37:f1:6b:3a:7e:03:6b:3c:8c:4a:11:81:60:10:
0f:83:16:a8:b4:cf:8e:3e:97:2c:0a:ba:f5:06:9a:
bd:50:2a:3a:9f:72:e7:12:48:35:4e:de:03:a0:31:
07:8b:5d:22:c0:ce:a9:95:c0:e1:e3:98:f6:b5:f0:
92:c0:d7:fe:bb:76:ce:20:1b:54:19:87:de:5c:73:
90:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D8:99:F6:61:F3:85:C2:C5:2E:08:E9:D5:40:F0:83:F7:94:51:67
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:25:86:ae:b2:db:14:70:88:ec:73:0f:2d:c1:61:b3:06:ac:
65:63:f8:29:4c:22:0f:c2:36:e3:66:f9:ad:ae:35:6d:98:25:
f2:02:a2:3e:e1:ee:ea:2d:c9:34:e8:ac:0b:08:cf:46:fd:ca:
c8:e1:61:1b:17:2e:fb:35:4e:df:23:f0:92:6d:5c:3d:a1:9a:
d1:cd:a7:2a:29:79:f1:29:6f:2f:4d:7c:e5:52:71:9a:bb:c2:
74:2d:31:c7:6f:b9:f1:d3:ec:0e:e0:15:54:52:c5:4b:65:5c:
8a:ba:bb:a0:fd:f3:f5:4e:c0:19:79:fc:a2:1c:d7:cf:9d:39:
89:88:50:6f:c6:ec:f7:2d:3d:53:fc:f4:14:a6:09:e8:4f:44:
58:9b:61:e4:26:51:72:80:6e:6f:12:e2:0a:89:3b:f4:d1:bf:
91:f9:a8:90:10:59:c4:61:a6:82:e8:26:9c:05:02:cd:75:fc:
47:5d:06:ac:e6:14:3d:dd:55:eb:99:cd:79:34:d7:30:91:87:
df:79:cb:ef:55:b3:20:86:3d:56:a2:26:f4:f9:c2:97:fa:fc:
07:47:38:41:51:75:22:ee:af:eb:87:ad:bc:81:72:f4:cc:b3:
d8:04:37:22:a5:55:f9:55:5a:65:12:cb:0f:61:08:ca:c1:2c:
21:04:22:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/YgGHnlzABnvXKfjRu5uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNGZiOTE2NTZkZGVkNWEwYWZhZjA3MTBkMjZhOGRmNjM2
ZWUwNzgwHhcNMjUxMDE5MTUwMTM3WhcNMjUxMDIwMTUwMTM3WjAzMTEwLwYDVQQD
Eyg1OGQ4OTlmNjYxZjM4NWMyYzUyZTA4ZTlkNTQwZjA4M2Y3OTQ1MTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+TNY1EsKnxUAPDCQawYA1kVg/kxG
6POZAkbXVVuIf7dl1LUfpW1pIFYFLmjYQqe/agCRLh/gOjxJ4VKc/+EKEdf1IWkB
JiPoIBYjaSFk+OPEfRWGJxjlCwRw5NmlzkG8w6lwS55knkto7GXrZLsA98gy++Lk
iJAdpDwIgNl1HMf/kZOFB8iF2o3r0PeoOo4g/ZxvsVlWUFI7eURntsMyQPv4EdJ3
JSANu4LmI5IjS3Gr9OYYN/FrOn4DazyMShGBYBAPgxaotM+OPpcsCrr1Bpq9UCo6
n3LnEkg1Tt4DoDEHi10iwM6plcDh45j2tfCSwNf+u3bOIBtUGYfeXHOQjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFjYmfZh84XCxS4I6dVA8IP3lFFnMB8GA1UdIwQY
MBaAFD1PuRZW3e1aCvrwcQ0mqN9jbuB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYt
NTJiODVjZjNmYjc4LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYtNTJiODVjZjNmYjc4
LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANCWGrrLb
FHCI7HMPLcFhswasZWP4KUwiD8I242b5ra41bZgl8gKiPuHu6i3JNOisCwjPRv3K
yOFhGxcu+zVO3yPwkm1cPaGa0c2nKil58SlvL0185VJxmrvCdC0xx2+58dPsDuAV
VFLFS2Vcirq7oP3z9U7AGXn8ohzXz505iYhQb8bs9y09U/z0FKYJ6E9EWJth5CZR
coBubxLiCok79NG/kfmokBBZxGGmgugmnAUCzXX8R10GrOYUPd1V65nNeTTXMJGH
33nL71WzIIY9VqIm9PnCl/r8B0c4QVF1Iu6v64etvIFy9Myz2AQ3IqVV+VVaZRLL
D2EIysEsIQQicA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:39:13 2025 by rpki-client