Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json)
Hash identifier: JaafWvgXOTwFC8OsVsK7S5l3vJtEUZBGhWi+utc0FXM=
Subject key identifier: 27:9D:6A:2D:8E:7E:66:5A:E9:79:FB:9E:AD:9F:17:74:80:A8:04:3F
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 0198D4A7EEBF7C9E57976D90D77E99FB0092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 02:00:32 +0000
Manifest this update: Sat 23 Aug 2025 02:00:32 +0000
Manifest next update: Sun 24 Aug 2025 02:00:32 +0000
Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=)
2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: 8kjqrOljarbnfcFWaciiX7wTZxMuDmWC6Cu8yJGnL1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:ee:bf:7c:9e:57:97:6d:90:d7:7e:99:fb:00:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: Aug 23 02:00:32 2025 GMT
Not After : Aug 24 02:00:32 2025 GMT
Subject: CN=279d6a2d8e7e665ae979fb9ead9f177480a8043f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:13:ef:0d:48:27:04:6d:cf:db:1a:8b:2d:ca:
5f:52:3d:25:48:38:2b:2f:b8:c7:48:d5:bd:a3:a0:
45:2c:93:b2:cb:ca:21:30:4a:3d:18:bf:72:f2:d1:
5a:6e:e3:01:22:ac:7a:79:1c:07:84:4b:20:d4:e1:
f1:cd:9d:9d:21:30:8d:ad:32:f4:63:75:33:29:01:
53:01:f3:24:70:4f:82:ae:79:37:76:1a:e8:ca:07:
73:51:7b:2c:ba:61:fd:8c:b4:52:e3:3b:01:cb:35:
d9:17:e1:76:6d:33:33:6a:23:f8:0c:1c:a5:5f:59:
77:11:e1:d1:ca:09:d6:a1:2a:41:d0:9a:00:52:33:
b7:75:e1:6a:65:34:06:4c:fe:7c:b8:16:3d:98:0a:
0b:fb:11:8a:f9:a3:a7:ef:07:65:0b:8b:fd:ee:3e:
f4:a1:c5:18:4d:19:05:0b:4a:bd:c8:bc:5c:c2:aa:
5d:b6:d9:98:8c:43:f4:82:a0:2e:53:85:98:51:d2:
7c:06:7c:5b:0e:4d:2f:00:d2:db:a9:20:27:23:6d:
42:af:70:43:5a:95:7f:8d:d9:95:ef:90:13:53:d6:
53:52:43:c8:a3:75:7f:f2:0b:6a:cb:3e:0a:90:a7:
2e:57:30:b6:0e:dc:67:31:8e:a9:e2:c7:41:7c:b0:
76:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:9D:6A:2D:8E:7E:66:5A:E9:79:FB:9E:AD:9F:17:74:80:A8:04:3F
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:b0:65:90:3a:8e:48:a1:b1:a1:50:63:32:f0:73:0f:d6:7c:
ba:30:f7:1f:76:28:c3:27:6d:00:ee:ae:7c:9b:4e:d2:0f:44:
c8:98:18:36:07:bb:be:37:a1:86:f1:14:a4:4f:83:cf:fe:7a:
6f:47:43:f2:05:88:78:c1:6d:58:7c:5c:39:42:70:a4:cd:de:
63:a8:b8:6a:e0:7a:41:eb:08:72:d6:e7:db:92:ee:a1:1f:f3:
32:00:4e:89:89:69:bd:7c:96:03:41:72:8c:ec:40:d4:dc:78:
83:63:4e:c6:e9:5f:24:0f:73:93:41:74:d1:44:ad:6c:82:4a:
41:ec:e7:94:de:23:8c:97:3c:aa:57:b2:93:17:7e:d2:a1:56:
f6:23:a5:df:8f:98:13:93:3e:5a:f1:95:ca:21:9b:26:ce:0a:
24:f7:26:6f:7a:c8:bf:e9:42:76:d1:9d:a5:02:26:33:49:1a:
5d:e8:d2:de:13:07:a6:3e:15:ba:16:28:db:72:34:6d:ae:af:
1d:2c:2f:9d:8b:d6:9a:7c:55:e8:94:c1:f3:a8:ee:2e:eb:28:
c6:50:37:c0:3a:2b:4c:b3:53:98:91:2a:2e:ea:31:e4:fb:d7:
1e:f3:7c:7b:0e:b4:55:2b:c0:7a:d5:8d:40:22:c5:66:2f:8c:
24:47:a0:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUp+6/fJ5Xl22Q136Z+wCSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNDI0ZTI0NWE2NDMyNGE2ODczMWRkMjZmMzBjNjg1YmFh
OGE2NzgwHhcNMjUwODIzMDIwMDMyWhcNMjUwODI0MDIwMDMyWjAzMTEwLwYDVQQD
EygyNzlkNmEyZDhlN2U2NjVhZTk3OWZiOWVhZDlmMTc3NDgwYTgwNDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBPvDUgnBG3P2xqLLcpfUj0lSDgr
L7jHSNW9o6BFLJOyy8ohMEo9GL9y8tFabuMBIqx6eRwHhEsg1OHxzZ2dITCNrTL0
Y3UzKQFTAfMkcE+Crnk3dhroygdzUXssumH9jLRS4zsByzXZF+F2bTMzaiP4DByl
X1l3EeHRygnWoSpB0JoAUjO3deFqZTQGTP58uBY9mAoL+xGK+aOn7wdlC4v97j70
ocUYTRkFC0q9yLxcwqpdttmYjEP0gqAuU4WYUdJ8BnxbDk0vANLbqSAnI21Cr3BD
WpV/jdmV75ATU9ZTUkPIo3V/8gtqyz4KkKcuVzC2DtxnMY6p4sdBfLB2QQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCedai2OfmZa6Xn7nq2fF3SAqAQ/MB8GA1UdIwQY
MBaAFD5CTiRaZDJKaHMd0m8wxoW6qKZ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQt
NTRkYTA0NjhmZGFkLzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQtNTRkYTA0NjhmZGFk
LzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb7BlkDqO
SKGxoVBjMvBzD9Z8ujD3H3YowydtAO6ufJtO0g9EyJgYNge7vjehhvEUpE+Dz/56
b0dD8gWIeMFtWHxcOUJwpM3eY6i4auB6QesIctbn25LuoR/zMgBOiYlpvXyWA0Fy
jOxA1Nx4g2NOxulfJA9zk0F00UStbIJKQeznlN4jjJc8qleykxd+0qFW9iOl34+Y
E5M+WvGVyiGbJs4KJPcmb3rIv+lCdtGdpQImM0kaXejS3hMHpj4VuhYo23I0ba6v
HSwvnYvWmnxV6JTB86juLusoxlA3wDorTLNTmJEqLuox5PvXHvN8ew60VSvAetWN
QCLFZi+MJEegoA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:58 2025 by rpki-client