Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: a5RHu1XnvzjRXCqxHAeN/OuLhhMqRDUDSOizB2gbDcc=
Subject key identifier: C4:BB:5E:06:97:64:8D:C4:22:BF:5B:DE:97:4A:DA:AC:3B:0A:14:EC
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 019922C396310DDA545F9335080FFE001106
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 055D
Signing time: Sun 07 Sep 2025 06:01:07 +0000
Manifest this update: Sun 07 Sep 2025 06:01:07 +0000
Manifest next update: Mon 08 Sep 2025 06:01:07 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: fau2yVT490JVgczi320NLeYtE3rqBQH1bA7Ur2msm1A=)
2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:96:31:0d:da:54:5f:93:35:08:0f:fe:00:11:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: Sep 7 06:01:07 2025 GMT
Not After : Sep 8 06:01:07 2025 GMT
Subject: CN=c4bb5e0697648dc422bf5bde974adaac3b0a14ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:bc:74:12:10:2d:c5:5c:71:11:f0:af:92:
30:a1:05:b5:56:cb:1b:84:4a:08:a5:69:9e:87:99:
52:08:b5:40:58:5b:07:7d:0e:3f:8a:81:2f:10:55:
aa:37:3f:78:68:40:c9:d2:4b:d5:95:b5:43:af:15:
2a:f3:a3:f4:7c:1b:96:ea:8c:df:8b:0d:b1:b0:f2:
a1:c9:59:e6:28:2b:56:ff:00:c0:e5:88:30:87:62:
0c:bf:ac:88:45:5d:3f:ab:61:b7:22:1d:71:e6:99:
9b:7d:4e:6f:89:4c:67:03:70:94:b3:18:e9:e5:10:
43:90:70:67:bb:c6:ca:08:d8:7d:57:da:ea:33:9a:
3b:7b:1a:ab:d6:ab:57:ae:a6:0c:21:2b:4f:5c:9d:
fc:b0:de:87:71:53:ae:76:8b:01:ec:3d:ca:80:b8:
5b:69:4c:d8:9f:93:ec:84:fc:c9:4d:c6:9b:60:11:
50:a9:d6:53:2d:08:69:3c:25:e0:94:fa:67:5d:14:
32:2c:54:da:31:75:a4:05:80:aa:04:4f:21:74:4b:
00:22:1d:dd:ac:92:8c:d1:54:77:d5:c9:3f:c4:32:
65:55:a6:a4:02:e4:97:96:c6:8a:3b:da:d3:22:99:
9f:b6:a9:08:c3:83:03:43:a9:2e:7b:c6:f1:8e:a1:
36:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:BB:5E:06:97:64:8D:C4:22:BF:5B:DE:97:4A:DA:AC:3B:0A:14:EC
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:53:6a:42:a6:8e:5b:d8:10:e7:9b:69:cf:29:4d:b1:c1:f9:
77:64:5f:31:43:a1:1a:36:4a:a0:d1:79:e9:45:7c:f4:4a:c1:
5a:a1:39:35:40:f9:ba:12:08:1a:a2:13:3c:44:46:5a:5b:cf:
c5:c8:dd:e7:6c:6b:3f:0c:f0:a6:e6:88:ad:b1:93:26:d9:16:
a1:af:2a:18:96:d8:08:f2:87:f2:4b:a2:1e:10:6a:fa:4d:ae:
a1:35:0e:b8:93:32:c3:88:f1:c2:ef:f1:ac:3f:3a:91:aa:65:
cb:17:93:a0:6a:45:e9:20:f0:12:0f:e9:d6:3e:a4:9c:b7:c5:
12:cc:98:d8:fb:2f:3b:27:f5:59:0c:5a:5f:2d:8c:14:53:21:
36:33:76:e3:07:83:f9:6b:8e:dd:5b:29:a6:88:d2:18:fc:bc:
21:d2:18:d0:e3:bc:56:92:2a:5a:e7:4a:48:3a:4c:de:50:a9:
1c:c2:51:83:0b:50:38:0b:48:e0:14:eb:ce:05:ec:6e:af:13:
f2:91:ea:e6:93:00:0c:c9:14:69:d1:ac:61:82:db:9d:f8:ca:
e4:4c:3b:13:7f:c1:f7:10:b6:24:00:de:dc:84:6c:10:c5:9f:
4e:a6:c1:80:25:36:be:d2:b1:33:f1:2d:92:e6:36:a7:9c:c8:
af:de:fa:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:53:06 2025 by rpki-client