Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json)
Hash identifier: xWpKKdmI+sGcgCTlJ1OSyOwlY8NStNfAPU569YE4q/o=
Subject key identifier: EF:86:6B:80:7F:4B:3F:79:C3:B2:1F:0C:A8:6D:97:61:B8:F0:96:99
Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Certificate serial: 019A70DBF3EC3B198627DBE1BA6ED1EE3E91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
Manifest number: 060A
Signing time: Tue 11 Nov 2025 03:00:54 +0000
Manifest this update: Tue 11 Nov 2025 03:00:54 +0000
Manifest next update: Wed 12 Nov 2025 03:00:54 +0000
Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: J+scCZdN9aJNXEvlx4AErp+0lRESMIAVOqRFZz7B8kY=)
2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:f3:ec:3b:19:86:27:db:e1:ba:6e:d1:ee:3e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078
Validity
Not Before: Nov 11 03:00:54 2025 GMT
Not After : Nov 12 03:00:54 2025 GMT
Subject: CN=ef866b807f4b3f79c3b21f0ca86d9761b8f09699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:df:11:89:67:5a:80:fb:62:3e:70:cd:d7:fa:
32:fa:b1:2c:ab:2b:ad:cc:10:6f:e4:d1:0e:b4:ee:
e7:45:31:34:fd:28:f5:43:3e:ed:03:62:ce:c3:aa:
04:98:fa:58:91:ee:8d:1f:fc:7b:43:7a:07:47:05:
2c:69:2f:b0:84:5e:18:4b:06:aa:5f:d8:18:4a:ed:
a2:68:9f:dd:88:58:4d:12:9f:18:c7:9e:9e:9e:74:
66:b5:24:6c:cf:40:7f:ec:b6:28:c2:16:ab:ba:51:
ca:52:34:45:ea:21:d0:51:98:35:ca:29:bc:bc:21:
ea:c2:ca:50:89:17:9e:ce:17:e0:a0:54:91:cc:79:
65:ba:9f:08:81:bf:b3:d8:58:42:9a:d8:1b:fc:60:
fb:85:2b:7f:40:8b:0f:60:e3:85:42:de:e2:1d:a0:
4b:03:dc:3b:d7:2e:6c:3c:67:7e:0f:42:fa:21:bc:
bd:53:df:04:b8:fa:10:3b:df:35:42:cd:64:52:0f:
7b:f1:de:9f:bf:91:5b:ce:ee:18:16:3f:14:8a:0c:
2a:19:4e:7b:a8:44:31:02:fa:af:5e:f0:ba:f2:b9:
9b:46:f0:10:a4:2b:72:8b:26:7f:b1:bf:5b:ac:b8:
4d:ae:dd:e3:31:27:cc:ed:0c:d6:d1:4a:f3:d5:32:
d0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:86:6B:80:7F:4B:3F:79:C3:B2:1F:0C:A8:6D:97:61:B8:F0:96:99
X509v3 Authority Key Identifier:
keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:af:36:bf:81:12:44:4f:26:16:37:65:38:2a:b9:9a:90:1c:
86:02:a2:70:9d:80:b3:e7:ea:18:f6:6d:89:a1:b7:0c:2b:d5:
65:8e:0c:77:90:5e:d5:0c:9e:e3:cc:47:e3:2c:2d:1f:5f:01:
db:06:6e:58:a6:b0:4a:02:a3:62:cb:33:07:e9:34:14:e7:30:
54:0a:82:e6:71:2f:ab:08:1b:37:03:0d:9c:35:7f:d4:ef:3c:
5d:b0:f4:98:04:30:9f:44:59:ad:72:67:23:c5:9c:2c:95:68:
18:85:0c:3b:52:13:1f:be:d1:d8:cb:a6:a0:17:de:19:77:a1:
d0:e1:01:95:88:0e:71:36:df:bc:86:e4:57:52:92:fe:ba:ba:
3d:e7:01:b4:50:76:5b:6c:d0:0e:b1:48:f0:57:41:95:d0:ab:
25:b7:98:fa:96:5a:9c:39:77:5f:83:ef:20:99:84:c1:f9:01:
c2:26:8d:39:b1:7f:82:4b:6c:45:31:61:a0:8a:02:bb:5a:cd:
80:c9:8e:1a:66:52:6e:dd:a2:23:a3:ae:e3:a0:8f:49:e7:d7:
4e:af:21:02:9e:4a:15:10:d1:14:87:49:99:0a:46:5e:ec:78:
ab:fc:aa:5e:cd:35:0d:a2:15:93:d3:e3:27:85:9c:6b:f7:6a:
5d:50:91:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpw2/PsOxmGJ9vhum7R7j6RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNGZiOTE2NTZkZGVkNWEwYWZhZjA3MTBkMjZhOGRmNjM2
ZWUwNzgwHhcNMjUxMTExMDMwMDU0WhcNMjUxMTEyMDMwMDU0WjAzMTEwLwYDVQQD
EyhlZjg2NmI4MDdmNGIzZjc5YzNiMjFmMGNhODZkOTc2MWI4ZjA5Njk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq98RiWdagPtiPnDN1/oy+rEsqyut
zBBv5NEOtO7nRTE0/Sj1Qz7tA2LOw6oEmPpYke6NH/x7Q3oHRwUsaS+whF4YSwaq
X9gYSu2iaJ/diFhNEp8Yx56ennRmtSRsz0B/7LYowharulHKUjRF6iHQUZg1yim8
vCHqwspQiReezhfgoFSRzHllup8Igb+z2FhCmtgb/GD7hSt/QIsPYOOFQt7iHaBL
A9w71y5sPGd+D0L6Iby9U98EuPoQO981Qs1kUg978d6fv5Fbzu4YFj8UigwqGU57
qEQxAvqvXvC68rmbRvAQpCtyiyZ/sb9brLhNrt3jMSfM7QzW0Urz1TLQJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO+Ga4B/Sz95w7IfDKhtl2G48JaZMB8GA1UdIwQY
MBaAFD1PuRZW3e1aCvrwcQ0mqN9jbuB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYt
NTJiODVjZjNmYjc4LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYtNTJiODVjZjNmYjc4
LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVK82v4ES
RE8mFjdlOCq5mpAchgKicJ2As+fqGPZtiaG3DCvVZY4Md5Be1Qye48xH4ywtH18B
2wZuWKawSgKjYsszB+k0FOcwVAqC5nEvqwgbNwMNnDV/1O88XbD0mAQwn0RZrXJn
I8WcLJVoGIUMO1ITH77R2MumoBfeGXeh0OEBlYgOcTbfvIbkV1KS/rq6PecBtFB2
W2zQDrFI8FdBldCrJbeY+pZanDl3X4PvIJmEwfkBwiaNObF/gktsRTFhoIoCu1rN
gMmOGmZSbt2iI6Ou46CPSefXTq8hAp5KFRDRFIdJmQpGXux4q/yqXs01DaIVk9Pj
J4Wca/dqXVCRGw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:14 2025 by rpki-client