Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: 1KRESGHgWBDTUVeQSxWw3aWEixwsRcGJ0M0HetSgou8=
Subject key identifier: A4:6B:09:73:2A:4E:4C:49:C3:A8:2B:EE:EA:22:61:12:B6:45:E3:FD
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 0198D4740FFBD29C79D4FBE28CBF184C8DBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 15DA
Signing time: Sat 23 Aug 2025 01:03:52 +0000
Manifest this update: Sat 23 Aug 2025 01:03:52 +0000
Manifest next update: Sun 24 Aug 2025 01:03:52 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: 3JM4I5q4UlZ5LI39B4zbYdJ3sU1A6D4ckjvsWt0AXQI=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:0f:fb:d2:9c:79:d4:fb:e2:8c:bf:18:4c:8d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Aug 23 01:03:52 2025 GMT
Not After : Aug 24 01:03:52 2025 GMT
Subject: CN=a46b09732a4e4c49c3a82beeea226112b645e3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7c:d4:b2:fb:a2:8a:6a:a5:e8:3b:15:c2:5f:
06:3e:5c:fa:d3:f2:c5:33:85:5c:dd:a6:d3:ab:9a:
8d:fa:52:c7:b1:98:75:4b:9a:3f:12:e5:b4:2a:99:
da:4f:64:68:b6:6a:de:55:03:7a:bb:cd:42:05:c0:
08:53:f3:f7:1f:e5:8c:e6:5e:d5:dc:59:a8:21:bf:
0b:9f:73:fb:c6:10:ed:2b:90:58:e1:15:5c:8c:a6:
f6:5d:25:96:50:a3:e2:29:c5:8b:9d:b8:de:1c:ca:
e8:6a:eb:c4:87:a9:30:52:43:85:3d:94:a7:8f:f9:
cd:24:96:87:a9:a1:5a:fd:56:81:b2:85:49:81:62:
5f:9a:ca:44:06:5d:82:60:88:37:00:bd:fe:a9:be:
19:91:3f:db:dd:88:5b:34:56:86:2f:94:89:6a:bd:
f7:64:b1:52:23:1a:ed:2f:71:aa:88:9e:1a:57:da:
26:a0:25:65:a5:e6:f9:67:5e:85:50:99:45:9f:d2:
d5:ab:f8:b7:83:2b:77:a8:e7:ed:57:64:bc:e2:7a:
8e:c7:6f:41:85:25:d3:16:52:01:14:70:70:cc:56:
17:88:33:a3:80:dc:9f:a5:df:5f:7a:4b:88:21:78:
8f:f5:86:95:de:6f:71:c0:92:1e:5a:a1:e7:88:ba:
79:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6B:09:73:2A:4E:4C:49:C3:A8:2B:EE:EA:22:61:12:B6:45:E3:FD
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:70:5d:da:7d:51:ae:aa:72:c0:46:4c:06:66:00:10:a7:01:
3e:76:1c:e7:a4:db:41:6e:b2:cb:4e:b2:c6:65:20:27:22:b1:
0e:fa:65:c8:9a:ad:90:ff:f8:53:2d:6a:4c:9d:cb:fb:20:a2:
27:d3:21:d1:88:e8:64:11:47:0f:72:c0:b3:07:5f:ce:e8:fa:
1e:15:62:2c:ff:eb:33:23:e5:03:c9:7b:52:65:96:9c:98:61:
d1:8d:48:bc:c9:15:8c:c5:bd:59:18:db:b3:af:86:4d:78:e2:
d8:49:4b:ad:a0:d7:d5:2f:3e:fc:84:5e:45:5f:40:39:30:bd:
13:66:5c:55:c8:f5:bc:dd:46:b6:b9:e9:2d:e1:5a:d8:73:71:
9a:e7:c3:cc:2c:e3:44:d2:f9:06:32:21:b9:3c:15:29:e1:21:
75:6d:0a:54:e9:d7:66:59:ab:68:9b:9b:af:6f:e2:60:95:5b:
2f:60:57:86:a1:e5:9b:fc:a2:bd:1a:c8:47:bc:c8:70:d4:84:
42:30:25:23:61:06:62:16:94:f2:78:86:c1:72:65:41:72:82:
e1:bc:e1:8b:86:77:5a:6c:eb:19:18:d6:ab:1e:9d:fc:cf:79:
08:fa:19:19:9d:69:f2:77:99:3a:ea:f2:27:e3:c9:bd:49:28:
74:8e:14:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:42:10 2025 by rpki-client