Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: TRk25jl98vaElGQEo85o8VHp6u4tsHgLuWHiciknZTU=
Subject key identifier: 37:73:03:53:D4:6F:05:A5:BC:D5:9D:36:36:87:DB:58:54:12:8F:DB
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 019747B0EE204BC52411CE8FB6955E4F8C51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 00:01:06 +0000
Manifest this update: Sat 07 Jun 2025 00:01:06 +0000
Manifest next update: Sun 08 Jun 2025 00:01:06 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: 2zvAdj3uMZ9wFJdD8w86llZxwlD/8BknyaRUIPxVJhw=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:ee:20:4b:c5:24:11:ce:8f:b6:95:5e:4f:8c:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Jun 7 00:01:06 2025 GMT
Not After : Jun 8 00:01:06 2025 GMT
Subject: CN=37730353d46f05a5bcd59d363687db5854128fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:da:1d:7f:6f:66:d1:a2:b2:fd:0c:f4:92:e8:
f2:3c:e7:34:22:b0:64:22:01:9b:bc:0f:14:26:eb:
df:51:5a:0b:6f:bd:08:1a:83:fd:cd:ab:c5:e5:f1:
8f:e0:58:d5:79:4c:11:9a:03:c1:a9:e8:7a:ff:4e:
fe:70:93:7f:79:ed:2a:e7:8f:24:7c:7c:15:bb:b1:
04:e8:72:ea:2d:c4:ce:58:91:e5:4f:66:a7:11:03:
6e:df:bb:76:f5:26:57:89:26:ec:ae:b9:76:f6:97:
25:61:10:58:24:d7:3c:8d:d1:a9:a4:38:e4:bf:1a:
ef:2d:06:3a:b0:9e:a2:19:a3:90:59:54:3f:f0:66:
28:1a:af:1d:86:61:fe:c1:64:3c:83:49:d4:ab:46:
ab:a8:28:d1:07:99:f7:b8:b3:8f:97:59:34:74:d7:
18:cc:c1:09:4b:2f:90:75:f3:27:ef:9e:7a:1c:ba:
2e:4f:2f:4a:7d:c6:38:0a:8e:18:4d:f9:9b:08:0d:
db:84:84:5b:4e:c4:62:28:3b:2d:4c:f5:ca:cb:7d:
91:d7:cf:f5:ac:a4:7b:4c:ea:ff:41:48:09:47:c4:
27:39:85:ad:4f:30:96:fe:ee:0e:32:66:a9:58:ec:
db:f9:c3:0a:d9:ab:aa:76:1d:05:5a:31:8d:cd:26:
ce:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:73:03:53:D4:6F:05:A5:BC:D5:9D:36:36:87:DB:58:54:12:8F:DB
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:dd:f9:32:1d:63:bc:d2:15:74:f7:59:d5:bc:9d:b6:3e:0b:
63:9d:2f:42:13:5f:2a:5a:03:46:a9:6f:84:27:7f:8e:b2:9e:
6d:70:83:92:49:ff:42:2b:f7:02:e9:30:41:0c:83:82:fd:73:
ec:59:34:49:7d:1d:3d:99:09:c9:66:66:90:de:95:0d:40:b8:
dd:a6:06:13:b3:5d:41:80:db:d6:a8:ee:0e:8e:46:40:0c:40:
d7:a0:99:58:d8:6f:0f:56:18:f7:e3:de:20:b8:66:e2:10:0f:
ab:5a:af:00:c2:aa:34:6c:4a:10:ab:cd:c8:22:0e:86:3f:9e:
c4:15:87:86:17:0a:a7:2e:68:60:bb:eb:48:b7:0a:6e:3e:78:
a3:9c:f5:40:3e:df:31:8a:71:cf:5f:2a:e7:3c:a8:b3:d3:fd:
47:35:8d:9f:49:ef:9b:f1:fb:dc:2c:1e:b2:23:80:17:bc:0a:
25:9e:5d:a2:0f:7a:b9:3a:eb:b9:da:95:b1:ed:05:d8:4e:cb:
59:b8:68:50:40:4d:64:43:aa:26:bc:81:80:56:eb:6f:e3:35:
54:1f:c1:db:53:48:31:bb:96:bf:9d:15:ae:b2:39:20:d1:be:
b2:5d:1f:0e:34:be:c9:d6:fa:c8:b5:15:9f:79:f0:a9:e6:f8:
69:e7:ac:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:00:13 2025 by rpki-client