Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
File: PxckOVmdfaUleXiZvyE7jmNVSRQ.mft (raw, json)
Hash identifier: YJk/wQITvjyMmCt6Q2hBc7ud3MJXHj5cKq2Ghs7ozFM=
Subject key identifier: D8:89:F0:B8:E4:E6:B1:68:11:FD:E5:C6:8F:59:E8:67:69:BD:0A:35
Authority key identifier: 3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
Certificate issuer: /CN=3f172439599d7da525797899bf213b8e63554914
Certificate serial: 01987B2DD4C1F1E6B54A366F3A05F0DF455A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
Manifest number: 15AC
Signing time: Tue 05 Aug 2025 17:00:57 +0000
Manifest this update: Tue 05 Aug 2025 17:00:57 +0000
Manifest next update: Wed 06 Aug 2025 17:00:57 +0000
Files and hashes: 1: ET0yOb6N2KPn9sEOeciwveLzfFQ.roa (hash: 5UaUVXzPjnKQ9N0meCwxNszuKgkyrbDITbh3/+eJ6rg=)
2: PxckOVmdfaUleXiZvyE7jmNVSRQ.crl (hash: U5H/lkEpLY+Tlh2JSjmv3XfWMSAXVNS+msU95KMmQew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:2d:d4:c1:f1:e6:b5:4a:36:6f:3a:05:f0:df:45:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f172439599d7da525797899bf213b8e63554914
Validity
Not Before: Aug 5 17:00:57 2025 GMT
Not After : Aug 6 17:00:57 2025 GMT
Subject: CN=d889f0b8e4e6b16811fde5c68f59e86769bd0a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:64:9e:47:ec:21:cf:18:f2:40:db:93:bd:
75:ac:44:2a:66:a6:15:93:d9:8b:ee:19:15:19:cf:
e8:4a:6a:62:e9:ed:73:e4:63:c5:85:6a:d7:ae:ad:
21:02:0b:34:9e:c9:8f:59:6f:8d:30:36:97:f9:a0:
d1:5f:4d:a0:14:cf:2c:ff:9f:3c:79:9f:a8:8b:e3:
c4:2e:ea:6a:7e:0c:a1:47:8a:c8:f8:d2:09:6e:ac:
54:cc:7a:97:9f:1a:46:eb:9f:45:30:a1:e7:4e:c4:
ab:c0:a0:cb:bb:21:05:95:83:7c:61:3d:18:67:db:
53:cd:a3:e4:17:78:f5:4e:12:12:e6:a9:76:03:9c:
9c:80:ec:b6:6d:f7:32:37:2e:ab:cd:9a:16:be:b2:
eb:b9:30:96:a9:86:2c:e3:69:58:8b:b9:47:0b:0e:
78:ca:7a:e5:05:bc:2c:b8:a5:f4:d1:2b:7e:d7:2e:
d7:74:1d:c6:58:62:97:8b:80:82:8b:91:e8:09:0c:
54:5c:05:ae:da:7f:eb:16:77:ff:7b:a6:40:d0:e9:
d4:c4:f4:ff:cc:af:dc:2c:e5:09:07:d7:7f:84:38:
e4:91:9f:89:5d:2a:83:b5:04:0a:db:da:b8:a1:d1:
ea:09:d3:49:db:ec:78:cf:60:70:fb:05:36:8d:24:
a1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:89:F0:B8:E4:E6:B1:68:11:FD:E5:C6:8F:59:E8:67:69:BD:0A:35
X509v3 Authority Key Identifier:
keyid:3F:17:24:39:59:9D:7D:A5:25:79:78:99:BF:21:3B:8E:63:55:49:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PxckOVmdfaUleXiZvyE7jmNVSRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9f9aa9-09c0-48cc-b0a1-887331efb715/1/PxckOVmdfaUleXiZvyE7jmNVSRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:cc:37:c7:68:3a:f5:32:55:93:37:1f:8a:1c:e0:dc:76:49:
fe:dd:04:c8:d9:bb:13:12:b7:c7:da:cf:8e:f0:ea:4e:cb:ae:
63:6e:e6:9e:7f:29:b9:e6:9f:40:f8:66:e2:ad:67:53:53:a4:
85:3c:d5:dd:78:44:a1:0d:d2:22:2a:9d:65:f3:8b:b1:3b:d6:
f1:98:a6:8b:66:2e:e7:d5:a4:41:84:b3:5c:43:ed:17:58:e7:
3e:e1:63:8b:2c:bb:d2:d7:e0:16:f2:4f:ca:2e:cc:f3:33:50:
02:02:59:27:9a:f6:3b:7c:3e:57:71:e8:a3:fb:af:23:9a:7b:
6e:59:87:5f:86:1d:1d:e7:70:9f:c2:ff:b1:b5:53:a6:27:91:
42:e3:17:e7:5f:e5:3a:27:87:4f:28:5b:05:d9:26:0f:e8:e5:
f1:9c:88:b3:7b:f5:db:64:e7:f6:ed:b0:1d:3e:2e:71:87:48:
a9:29:31:6c:5d:d8:01:66:a3:83:c3:a3:1d:ce:37:68:28:b1:
4e:23:65:74:f9:61:31:2d:9e:4b:20:26:48:92:c5:6f:37:f9:
f7:66:2f:95:10:43:ad:30:04:4a:f4:8f:a6:9e:42:7a:34:fa:
8f:5b:f5:f1:78:75:be:5e:49:87:7a:22:dd:58:fb:85:9b:5f:
9a:94:69:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh7LdTB8ea1SjZvOgXw30VaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmMTcyNDM5NTk5ZDdkYTUyNTc5Nzg5OWJmMjEzYjhlNjM1
NTQ5MTQwHhcNMjUwODA1MTcwMDU3WhcNMjUwODA2MTcwMDU3WjAzMTEwLwYDVQQD
EyhkODg5ZjBiOGU0ZTZiMTY4MTFmZGU1YzY4ZjU5ZTg2NzY5YmQwYTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpRknkfsIc8Y8kDbk711rEQqZqYV
k9mL7hkVGc/oSmpi6e1z5GPFhWrXrq0hAgs0nsmPWW+NMDaX+aDRX02gFM8s/588
eZ+oi+PELupqfgyhR4rI+NIJbqxUzHqXnxpG659FMKHnTsSrwKDLuyEFlYN8YT0Y
Z9tTzaPkF3j1ThIS5ql2A5ycgOy2bfcyNy6rzZoWvrLruTCWqYYs42lYi7lHCw54
ynrlBbwsuKX00St+1y7XdB3GWGKXi4CCi5HoCQxUXAWu2n/rFnf/e6ZA0OnUxPT/
zK/cLOUJB9d/hDjkkZ+JXSqDtQQK29q4odHqCdNJ2+x4z2Bw+wU2jSSh3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNiJ8Ljk5rFoEf3lxo9Z6GdpvQo1MB8GA1UdIwQY
MBaAFD8XJDlZnX2lJXl4mb8hO45jVUkUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEt
ODg3MzMxZWZiNzE1LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi85ZjlhYTktMDljMC00OGNjLWIwYTEtODg3MzMxZWZiNzE1
LzEvUHhja09WbWRmYVVsZVhpWnZ5RTdqbU5WU1JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABMw3x2g6
9TJVkzcfihzg3HZJ/t0EyNm7ExK3x9rPjvDqTsuuY27mnn8pueafQPhm4q1nU1Ok
hTzV3XhEoQ3SIiqdZfOLsTvW8Zimi2Yu59WkQYSzXEPtF1jnPuFjiyy70tfgFvJP
yi7M8zNQAgJZJ5r2O3w+V3Hoo/uvI5p7blmHX4YdHedwn8L/sbVTpieRQuMX51/l
OieHTyhbBdkmD+jl8ZyIs3v122Tn9u2wHT4ucYdIqSkxbF3YAWajg8OjHc43aCix
TiNldPlhMS2eSyAmSJLFbzf592YvlRBDrTAESvSPpp5CejT6j1v18Xh1vl5Jh3oi
3Vj7hZtfmpRpxw==
-----END CERTIFICATE-----
Generated at Tue Aug 5 20:14:18 2025 by rpki-client