Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json)
Hash identifier: P90zetyuasdHp7984qE/yeJChQvYQCK+6jlPeCkEFZU=
Subject key identifier: 54:42:9C:8C:3C:AD:63:AE:84:5F:BF:76:B8:85:5F:74:61:4C:64:97
Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Certificate serial: 019A318EB1F733DC7E41634B954B182E3307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
Manifest number: 03F1
Signing time: Wed 29 Oct 2025 20:00:26 +0000
Manifest this update: Wed 29 Oct 2025 20:00:26 +0000
Manifest next update: Thu 30 Oct 2025 20:00:26 +0000
Files and hashes: 1: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: NeTvwck+bF/jWJG193rK2h55bF2ZEp3sRC8dxX5rdu4=)
2: rhHZBrR5DDkzkDSwq2N2DFoItdo.roa (hash: gfniJmHb/llxXTuf6zA06t/WamUafcFVdlCv/KyOq4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 17:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:31:8e:b1:f7:33:dc:7e:41:63:4b:95:4b:18:2e:33:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581
Validity
Not Before: Oct 29 20:00:26 2025 GMT
Not After : Oct 30 20:00:26 2025 GMT
Subject: CN=54429c8c3cad63ae845fbf76b8855f74614c6497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5e:a6:5c:00:69:4e:81:96:57:e9:ea:9c:cd:
9e:16:b0:f6:6c:dc:90:08:d8:39:6f:37:27:a0:65:
2c:8b:84:6d:45:c9:ae:cf:15:2b:69:40:de:7a:9e:
2d:b3:68:cc:f5:a6:d5:2b:7d:b4:74:aa:c9:b7:96:
81:17:e1:e0:9e:96:29:3f:bf:35:98:3f:1a:53:41:
56:e1:70:65:f1:65:07:96:fd:15:da:12:99:5d:ba:
1c:4e:e2:02:c0:2f:22:a3:60:65:8e:35:4f:df:91:
15:01:16:ed:45:2f:4d:9a:cf:0e:31:22:44:1b:56:
f5:c5:a4:09:0b:54:94:9b:4c:22:8d:2c:29:92:2f:
37:1c:6e:1c:b6:7c:82:20:0a:b0:f5:12:9b:06:3d:
b9:1e:93:f3:9c:b2:bb:26:6f:c0:c3:8f:ff:48:d3:
b1:18:5a:af:d0:f2:35:d7:19:57:d3:9a:57:82:d9:
c2:30:6e:51:ee:c1:10:e6:16:91:27:a7:35:4c:6e:
25:05:19:7d:3f:6d:09:6a:9c:91:dc:54:c9:cb:0d:
78:ea:e5:ac:4c:22:8f:21:03:5c:ec:d9:dd:f9:47:
96:1d:c3:b6:78:fa:c0:09:98:02:fb:0b:0f:f2:1d:
9f:3f:79:97:85:b3:81:64:d3:36:2d:9f:6d:ff:60:
15:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:42:9C:8C:3C:AD:63:AE:84:5F:BF:76:B8:85:5F:74:61:4C:64:97
X509v3 Authority Key Identifier:
keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:47:60:f0:47:58:75:c3:f9:ac:32:2d:a9:43:eb:2f:74:d1:
7d:dd:7f:eb:4f:8e:f5:3d:92:cf:b6:6f:13:28:0f:29:7c:30:
b2:57:06:fe:86:39:e4:73:59:04:4c:4e:28:d6:00:3d:ba:b1:
a2:89:7f:cc:e3:0a:b2:b3:51:a6:de:97:e0:a1:90:d1:a2:c4:
77:ec:d0:83:72:a3:87:12:01:8b:a5:4d:03:84:4e:e2:10:97:
50:64:d6:87:3d:35:62:11:87:c6:07:81:d6:e5:48:fb:11:52:
7c:5a:55:00:04:d5:5a:99:7d:7e:35:37:4f:93:da:ba:68:a9:
76:65:5e:ba:15:97:02:79:04:0a:15:cd:7c:35:69:ce:b1:c8:
11:b7:e2:e7:30:63:8a:f8:c2:53:5c:f6:f6:ad:0c:30:28:82:
69:7f:f5:a3:e4:f3:1d:d7:52:45:49:a8:04:f7:3e:65:36:53:
36:c3:64:b5:36:42:0b:9b:9a:09:1b:95:50:79:24:c5:76:64:
4f:01:d2:1a:1b:c3:f5:f5:10:8f:39:1a:3a:f8:f9:c3:2a:0a:
13:9a:59:ba:3e:7e:19:f4:f2:0e:8d:23:99:82:50:8f:86:ab:
76:f4:13:3c:f7:71:78:f9:61:b2:0b:b1:4a:ff:13:55:1d:95:
f1:bf:60:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 23:30:16 2025 by rpki-client