Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: 73c+41gjjOQQrgwjZbEm0hLcOvWtdTREqvFNlWks+pU=
Subject key identifier: 03:3F:0D:32:B3:8A:9C:0D:71:2A:E7:4E:D0:44:03:76:04:C5:0A:31
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 019922C32B77DB36083155E75BF4716B9305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 06:00:39 +0000
Manifest this update: Sun 07 Sep 2025 06:00:39 +0000
Manifest next update: Mon 08 Sep 2025 06:00:39 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: aK0RkK81kjRtVxFCik48/lcZV9V8G7OAypGoB/riC7M=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:2b:77:db:36:08:31:55:e7:5b:f4:71:6b:93:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Sep 7 06:00:39 2025 GMT
Not After : Sep 8 06:00:39 2025 GMT
Subject: CN=033f0d32b38a9c0d712ae74ed044037604c50a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:56:af:f7:53:61:a6:79:8f:fc:da:67:f4:a8:
6d:a3:18:16:12:29:99:8b:07:36:90:e7:4f:74:77:
d6:14:3a:9f:cf:14:3d:89:8f:e0:6e:f5:c7:1a:57:
92:25:56:38:5b:11:ad:c5:41:cd:ee:77:6d:ad:5b:
62:b6:c8:89:73:b4:02:cc:cd:4d:48:d3:34:c0:e8:
8d:a9:4d:58:3a:68:4f:48:a7:b7:9a:70:26:7e:e4:
8c:ed:4b:c7:dc:35:60:81:d4:81:a0:35:90:38:b6:
6e:46:38:31:aa:df:ea:4e:bf:f5:e4:5b:6e:5d:d9:
da:03:31:ef:11:0c:59:a7:be:3b:d1:ac:73:20:32:
97:8e:aa:2f:f7:d6:00:fb:fd:50:e2:ed:f9:80:3b:
91:a2:76:e9:cb:b2:7a:83:b0:1d:f3:82:e7:c4:51:
20:d2:3d:93:fa:57:42:fb:f4:1a:aa:a5:89:b8:6e:
30:cd:f4:21:41:04:03:d2:75:6a:08:80:60:16:fc:
84:fe:c7:b0:10:a1:4d:c2:ba:e1:fc:8a:c7:03:52:
03:ea:bd:b1:0d:0b:0c:a3:97:5c:33:9f:37:04:a9:
b3:92:28:4e:0c:be:73:cb:95:cd:a2:7e:eb:03:2d:
dd:43:fb:6e:e5:c1:fd:8a:42:1e:e9:d0:36:ab:56:
92:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:3F:0D:32:B3:8A:9C:0D:71:2A:E7:4E:D0:44:03:76:04:C5:0A:31
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:79:81:bc:ac:a0:bd:b9:fd:1a:87:34:ea:44:c0:45:1e:05:
90:21:0e:71:16:0e:66:00:9f:9b:a2:f4:44:e1:49:ec:e6:af:
f7:37:62:b8:4a:fd:d7:fa:8b:5b:97:0c:16:e2:24:32:97:af:
64:72:8d:ee:d8:27:15:9a:58:3e:11:f8:b4:a9:e4:67:fa:4e:
55:7e:6d:cd:a7:c6:e5:34:70:6d:79:02:54:d6:b7:f8:d8:3b:
79:1c:c9:a1:6b:54:df:89:fa:da:86:87:9c:4d:1b:0c:ae:11:
61:d0:da:5d:e0:85:84:95:e4:d6:e6:5b:ac:10:09:a6:a6:06:
54:67:17:9c:58:d9:08:08:7e:23:3f:a7:e4:ca:22:79:01:5e:
89:79:9b:4d:46:07:b5:c7:fa:80:f9:50:8a:f4:9d:b5:c3:32:
94:4f:2e:8c:5b:f3:cc:05:53:9c:07:af:cf:6c:9c:de:3c:2e:
57:b7:93:f8:e8:d2:21:f4:97:33:27:0d:d1:a7:ed:71:7b:b3:
23:d9:8d:37:77:27:13:88:57:09:5d:d0:e8:6f:58:ee:2d:80:
4a:b9:96:ff:9c:c2:50:22:4c:e4:4d:7f:20:f7:1d:00:0a:c1:
5b:37:6d:e7:6c:6b:ed:8b:ff:61:d7:65:4a:3d:6b:e3:c9:fd:
84:74:a5:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiwyt32zYIMVXnW/Rxa5MFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlOGRkNDM5MjhlZGZiMTIwMGVmYmM2MmM0NDFmOWNkMjkw
NDg1ODUwHhcNMjUwOTA3MDYwMDM5WhcNMjUwOTA4MDYwMDM5WjAzMTEwLwYDVQQD
EygwMzNmMGQzMmIzOGE5YzBkNzEyYWU3NGVkMDQ0MDM3NjA0YzUwYTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Fav91NhpnmP/Npn9KhtoxgWEimZ
iwc2kOdPdHfWFDqfzxQ9iY/gbvXHGleSJVY4WxGtxUHN7ndtrVtitsiJc7QCzM1N
SNM0wOiNqU1YOmhPSKe3mnAmfuSM7UvH3DVggdSBoDWQOLZuRjgxqt/qTr/15Ftu
XdnaAzHvEQxZp7470axzIDKXjqov99YA+/1Q4u35gDuRonbpy7J6g7Ad84LnxFEg
0j2T+ldC+/QaqqWJuG4wzfQhQQQD0nVqCIBgFvyE/sewEKFNwrrh/IrHA1ID6r2x
DQsMo5dcM583BKmzkihODL5zy5XNon7rAy3dQ/tu5cH9ikIe6dA2q1aS4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAM/DTKzipwNcSrnTtBEA3YExQoxMB8GA1UdIwQY
MBaAFD6N1Dko7fsSAO+8YsRB+c0pBIWFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mN2VjYjctZmY2ZC00NWUwLTk4ZDYt
Yzc3YmFlM2QzZWQxLzEvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mN2VjYjctZmY2ZC00NWUwLTk4ZDYtYzc3YmFlM2QzZWQx
LzEvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABnmBvKyg
vbn9Goc06kTARR4FkCEOcRYOZgCfm6L0ROFJ7Oav9zdiuEr91/qLW5cMFuIkMpev
ZHKN7tgnFZpYPhH4tKnkZ/pOVX5tzafG5TRwbXkCVNa3+Ng7eRzJoWtU34n62oaH
nE0bDK4RYdDaXeCFhJXk1uZbrBAJpqYGVGcXnFjZCAh+Iz+n5MoieQFeiXmbTUYH
tcf6gPlQivSdtcMylE8ujFvzzAVTnAevz2yc3jwuV7eT+OjSIfSXMycN0aftcXuz
I9mNN3cnE4hXCV3Q6G9Y7i2ASrmW/5zCUCJM5E1/IPcdAArBWzdt52xr7Yv/Yddl
Sj1r48n9hHSlaQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:20 2025 by rpki-client