
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json)
Hash identifier: LygjyG5A0cylE6+/wV93cdZ9e7s+TAsN7YfJbrSsEJc=
Subject key identifier: C4:E3:C0:D7:F3:D7:B9:04:60:3C:CF:B1:D2:93:6C:10:9B:42:60:E8
Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678
Certificate serial: 01988B45AF1DED017CE055E4C8C6343ECD8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
Manifest number: 1625
Signing time: Fri 08 Aug 2025 20:00:56 +0000
Manifest this update: Fri 08 Aug 2025 20:00:56 +0000
Manifest next update: Sat 09 Aug 2025 20:00:56 +0000
Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=)
2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: lGx0DrGsZOXh7hUM/7wqv2GRhYCtcO++qc1dYFhXOXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:45:af:1d:ed:01:7c:e0:55:e4:c8:c6:34:3e:cd:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678
Validity
Not Before: Aug 8 20:00:56 2025 GMT
Not After : Aug 9 20:00:56 2025 GMT
Subject: CN=c4e3c0d7f3d7b904603ccfb1d2936c109b4260e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:64:8f:14:6a:7d:52:ec:d9:19:56:81:da:
c0:66:cf:f5:3d:1f:b6:06:92:29:7c:48:00:fc:09:
eb:62:95:7a:25:23:10:94:c4:e0:a2:a9:0d:03:7f:
96:43:1f:4d:a2:43:d8:0d:f3:86:8a:d1:95:19:35:
29:7e:b1:8c:93:2c:2e:08:80:93:51:bd:b6:1c:f0:
b0:ff:88:e5:d9:f5:8e:18:a7:4f:42:52:1a:9f:0a:
ce:70:95:c8:74:db:45:eb:ea:26:af:cc:4c:c0:2f:
b5:50:57:2e:e6:2a:c4:b4:65:53:2d:f1:9e:7e:63:
f0:81:c0:08:66:9b:95:43:1d:c5:f2:77:e9:b8:d4:
01:d8:bf:89:6c:80:f5:bb:39:bc:3d:24:bd:68:12:
e6:ed:ec:47:1d:d5:dc:c8:d2:d1:5c:ec:7b:94:bb:
42:69:44:34:c2:a1:8b:64:af:89:f2:0c:c7:49:2f:
8e:50:a6:5b:7d:7a:ed:b1:2a:5f:aa:cd:cd:e5:b5:
68:6e:1b:af:3d:5c:af:fc:b0:f9:3a:b5:f8:03:f2:
40:3c:a5:3d:29:d6:0f:b5:34:80:b8:ba:f3:e5:06:
6f:ae:c9:f4:4a:9b:d5:60:3f:ed:49:ab:2d:c5:92:
fc:32:07:07:1b:4d:f0:a9:ed:9e:f1:be:81:ea:f9:
dd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E3:C0:D7:F3:D7:B9:04:60:3C:CF:B1:D2:93:6C:10:9B:42:60:E8
X509v3 Authority Key Identifier:
keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:3e:8a:b2:38:3b:e0:92:1a:46:d0:78:82:38:b1:78:a2:e5:
44:29:22:4e:e9:76:7c:c0:33:3b:c1:dd:b3:55:a5:72:00:e1:
1b:8e:d3:17:3c:99:f9:39:99:b1:27:77:10:ec:43:6c:e5:b0:
c2:d3:92:a7:da:25:fa:f3:d5:f7:24:d5:f2:9c:24:a4:67:2e:
b5:4a:ac:8f:22:e1:49:94:9c:be:1c:d9:36:3c:33:45:49:7f:
12:63:8c:60:eb:23:f0:3e:8e:10:6c:9c:cf:a0:a0:9c:71:ff:
7e:06:22:f2:34:34:40:e3:20:fc:fa:94:1d:7e:62:4b:cf:2d:
c3:da:b4:5f:b6:5e:fa:66:85:1f:fb:de:b0:3e:fc:8a:e4:76:
91:4e:85:b3:56:9a:29:dc:63:20:75:de:00:ca:2f:7c:99:49:
22:99:ff:06:c2:11:29:95:f3:b0:7c:68:68:47:e1:e5:5a:90:
a9:8d:ee:dc:97:09:3b:2b:aa:20:2a:98:0d:05:93:cd:a4:0f:
ee:e9:c4:ea:a4:95:60:b2:74:6d:33:30:b2:a3:a3:0d:4c:79:
6a:a7:22:08:e7:65:9a:57:8d:ef:a1:d0:9a:ef:47:f9:6b:84:
50:ae:70:d3:ad:6f:b3:e8:37:7c:16:68:99:ae:25:85:32:8e:
f7:31:b6:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLRa8d7QF84FXkyMY0Ps2NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNDI0ZTI0NWE2NDMyNGE2ODczMWRkMjZmMzBjNjg1YmFh
OGE2NzgwHhcNMjUwODA4MjAwMDU2WhcNMjUwODA5MjAwMDU2WjAzMTEwLwYDVQQD
EyhjNGUzYzBkN2YzZDdiOTA0NjAzY2NmYjFkMjkzNmMxMDliNDI2MGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdBkjxRqfVLs2RlWgdrAZs/1PR+2
BpIpfEgA/AnrYpV6JSMQlMTgoqkNA3+WQx9NokPYDfOGitGVGTUpfrGMkywuCICT
Ub22HPCw/4jl2fWOGKdPQlIanwrOcJXIdNtF6+omr8xMwC+1UFcu5irEtGVTLfGe
fmPwgcAIZpuVQx3F8nfpuNQB2L+JbID1uzm8PSS9aBLm7exHHdXcyNLRXOx7lLtC
aUQ0wqGLZK+J8gzHSS+OUKZbfXrtsSpfqs3N5bVobhuvPVyv/LD5OrX4A/JAPKU9
KdYPtTSAuLrz5QZvrsn0SpvVYD/tSastxZL8MgcHG03wqe2e8b6B6vndkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMTjwNfz17kEYDzPsdKTbBCbQmDoMB8GA1UdIwQY
MBaAFD5CTiRaZDJKaHMd0m8wxoW6qKZ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQt
NTRkYTA0NjhmZGFkLzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQtNTRkYTA0NjhmZGFk
LzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARD6Ksjg7
4JIaRtB4gjixeKLlRCkiTul2fMAzO8Hds1WlcgDhG47TFzyZ+TmZsSd3EOxDbOWw
wtOSp9ol+vPV9yTV8pwkpGcutUqsjyLhSZScvhzZNjwzRUl/EmOMYOsj8D6OEGyc
z6CgnHH/fgYi8jQ0QOMg/PqUHX5iS88tw9q0X7Ze+maFH/vesD78iuR2kU6Fs1aa
KdxjIHXeAMovfJlJIpn/BsIRKZXzsHxoaEfh5VqQqY3u3JcJOyuqICqYDQWTzaQP
7unE6qSVYLJ0bTMwsqOjDUx5aqciCOdlmleN76HQmu9H+WuEUK5w061vs+g3fBZo
ma4lhTKO9zG2mQ==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:22:13 2025 by rpki-client