Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: Lp9DwAvpB7ooNl6huH849uGWwcLNi6qsJ9m4kzxNn/U=
Subject key identifier: 66:99:BC:E9:23:8D:E4:29:55:3A:B2:65:D7:97:59:19:E5:AF:17:CB
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 0199FBEBE6B3B3564C6EDEE2AEF2FA086E15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1673
Signing time: Sun 19 Oct 2025 10:02:45 +0000
Manifest this update: Sun 19 Oct 2025 10:02:45 +0000
Manifest next update: Mon 20 Oct 2025 10:02:45 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: 3PI8kmjArsIaMBACMqHBaGh0DIZ1fX1KOGiqP27oCK8=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:e6:b3:b3:56:4c:6e:de:e2:ae:f2:fa:08:6e:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Oct 19 10:02:45 2025 GMT
Not After : Oct 20 10:02:45 2025 GMT
Subject: CN=6699bce9238de429553ab265d7975919e5af17cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5d:60:af:55:e4:99:76:61:a7:e7:c8:77:73:
6a:4a:82:dd:9c:81:57:c8:44:18:3c:1b:6a:4c:23:
c7:68:1e:17:08:2f:5e:e0:aa:ac:03:d1:70:f6:da:
e1:b6:34:a3:23:0f:cd:b7:0e:d0:29:2a:bb:5b:a0:
cc:68:4b:1a:9a:fe:e6:32:d9:e9:d8:6c:bd:8e:ce:
ac:eb:c7:bd:b6:c3:36:ae:e2:6c:f2:58:1d:37:8a:
2b:f2:2d:11:56:fe:30:09:d5:e2:fa:e2:6c:db:7c:
d5:12:0f:29:b0:13:7e:69:10:d7:57:c6:b9:09:a0:
28:43:3e:88:bf:21:7f:35:6a:fa:3b:b6:93:13:38:
e3:a4:d9:f6:3b:c5:ce:99:17:6b:12:fa:60:42:f1:
4b:7d:24:ec:c4:44:9a:f9:82:28:2d:41:ed:8a:a3:
c8:26:63:b2:6a:46:33:7e:80:dc:87:36:67:0d:7a:
bc:e4:9e:36:16:df:35:de:2d:66:93:c1:9e:1d:c4:
43:36:bb:ae:c7:59:97:5f:45:f9:cd:07:af:52:e1:
80:c4:48:29:c0:68:88:f3:0a:b2:f5:03:f0:77:f2:
c7:fd:1a:e9:49:20:6b:17:ab:d0:2d:98:c7:10:ec:
14:7c:79:4b:8d:7b:c9:fd:0b:e1:2c:df:c5:64:79:
b9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:99:BC:E9:23:8D:E4:29:55:3A:B2:65:D7:97:59:19:E5:AF:17:CB
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:8c:5f:92:d1:93:e4:b2:87:69:eb:d9:09:b0:e1:ee:77:bd:
d9:f2:61:c8:29:e4:c6:a1:55:36:b4:2f:21:54:7d:de:c9:21:
2c:82:6d:16:99:42:d8:51:04:3d:1e:d2:2d:2e:08:39:bc:b6:
7f:74:d6:7f:35:bd:f8:d8:c1:8a:8d:0f:fe:7c:50:40:f8:f6:
66:ae:f5:7c:d6:ac:0e:3a:e3:77:3c:3f:31:bd:8a:28:79:b4:
b1:76:50:22:3b:64:ea:40:73:8c:98:5c:9e:1d:d2:f6:33:b7:
78:0c:0a:65:80:7a:df:61:72:02:0d:59:3a:60:48:06:62:c6:
6d:9b:f2:85:9a:04:90:61:b4:42:c5:4f:c7:86:5c:12:5a:23:
0f:dc:44:ff:4e:d2:e3:c0:f5:dc:cc:e0:ac:e6:12:ab:38:ad:
e9:a4:c2:8a:2f:9c:fb:02:66:20:9d:46:35:61:bd:b1:f7:e0:
9c:3a:95:77:76:2a:61:36:e9:45:06:3d:10:e4:c6:dc:9a:2a:
6a:81:da:17:91:14:70:cf:9b:d8:a8:15:57:9a:53:82:9c:e2:
4e:24:77:d5:c3:b2:b7:c8:a6:2d:23:45:8e:2e:06:45:94:f7:
be:e5:99:8a:49:4b:d0:e6:02:4e:d4:36:ac:75:51:1e:36:5f:
62:b6:73:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:47 2025 by rpki-client