Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: GUlmu0Cczyx8eSy6ZWSNDn6g4rY4ZsPzLNBTh9ljaMw=
Subject key identifier: E0:97:5C:D7:B6:1C:82:B9:8E:EE:15:85:5B:B8:56:10:46:62:5E:9D
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 019A70DBE123025093655AE0B1D9FE701013
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 171F
Signing time: Tue 11 Nov 2025 03:00:49 +0000
Manifest this update: Tue 11 Nov 2025 03:00:49 +0000
Manifest next update: Wed 12 Nov 2025 03:00:49 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: ob+BY17YfsGmNKDf3VSlMQxPWU7rym7IVLYAPlO3X4k=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:e1:23:02:50:93:65:5a:e0:b1:d9:fe:70:10:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Nov 11 03:00:49 2025 GMT
Not After : Nov 12 03:00:49 2025 GMT
Subject: CN=e0975cd7b61c82b98eee15855bb8561046625e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2c:39:b0:f6:a9:1e:75:94:eb:94:e8:55:00:
6f:44:3c:1b:82:07:c3:d7:2f:d4:1b:c9:07:40:1b:
af:63:05:55:08:54:0a:df:3e:20:62:97:2c:ff:e7:
05:b7:4b:33:41:e9:e5:6b:b9:e4:7c:f2:37:54:15:
96:17:84:04:a5:e4:e0:f7:7e:bf:c9:9e:c1:ab:a7:
ca:34:fc:4b:4c:22:4b:b8:63:bc:86:cd:5a:f3:08:
7b:aa:b7:5a:81:b0:9c:46:97:d5:c8:52:7c:e0:ba:
a9:32:e9:86:a2:e6:93:a3:32:f0:45:9c:f5:5f:c4:
dc:b3:1f:e1:c6:45:39:10:e4:3b:98:32:d7:cf:75:
f8:77:ac:c9:04:08:ee:78:9d:b2:f4:f6:31:fc:dc:
37:4a:1d:f0:52:57:b7:be:94:4c:36:89:88:ce:c2:
af:be:92:45:51:7d:7d:f6:d0:42:1e:23:f9:da:d9:
b8:2e:8f:f8:47:f4:5c:0b:3e:97:20:35:71:ac:23:
31:3c:2f:9a:14:a6:36:83:81:74:d6:0a:c7:48:b3:
a3:8b:34:a8:02:37:32:dd:0b:3a:8a:70:3f:bf:07:
e4:c1:45:df:48:35:7b:dd:2b:d4:e8:f4:06:2d:ac:
53:b9:ce:20:42:f7:b3:59:63:af:73:e2:4f:b5:40:
bb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:97:5C:D7:B6:1C:82:B9:8E:EE:15:85:5B:B8:56:10:46:62:5E:9D
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:63:3e:ac:dc:a5:04:db:3c:7f:44:60:a6:fc:43:3f:aa:fc:
0e:d5:ae:ab:b6:9d:0f:0e:4c:ec:3e:6f:43:36:5c:1a:a4:8b:
e1:f2:83:e1:50:37:94:c2:cb:f1:38:0c:1b:22:3e:fc:88:60:
82:d0:53:45:7b:c9:72:e8:cd:8c:fc:df:72:2b:4d:31:ba:6c:
4c:c7:78:b6:7c:c0:e4:c1:54:89:3c:81:a7:34:8f:32:32:38:
87:e7:35:60:48:9c:ef:e2:b0:46:bc:16:57:f2:e2:f5:ba:04:
b6:cd:70:d0:3e:8e:46:54:45:36:31:c1:fa:ef:37:e7:32:a7:
23:dd:5b:47:91:2a:c6:eb:ea:9e:3c:8d:3c:3b:68:ec:70:40:
84:0a:ff:91:ce:97:5f:a7:14:8a:e8:a7:7c:42:40:e1:24:26:
ac:a0:db:e9:6d:bb:e6:e0:1f:c0:35:f3:78:63:2b:bc:a2:b1:
c0:aa:8d:dd:cb:a6:0f:5d:89:fe:9c:d3:ab:92:90:2a:35:e2:
1d:bd:c4:c5:31:61:bf:06:72:31:5d:6f:20:b3:54:09:3b:4b:
fd:11:6e:6e:bb:41:a9:81:68:9d:c7:8f:a0:a3:d1:fc:c2:93:
f7:c6:fc:57:70:5a:76:e8:e9:93:0c:3b:24:aa:2e:a3:23:08:
3d:28:09:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:38:15 2025 by rpki-client