Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: iYwxlDiig6sE3VkD1kX2xEEfZNTmwXjj8t2e1tF2R0E=
Subject key identifier: 90:40:07:78:C5:86:7C:FE:99:DE:96:33:F9:9C:10:CA:A2:5E:DB:11
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 0198D4E09DC803A67B96F89FFC94AD04A59C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0ABA
Signing time: Sat 23 Aug 2025 03:02:26 +0000
Manifest this update: Sat 23 Aug 2025 03:02:26 +0000
Manifest next update: Sun 24 Aug 2025 03:02:26 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: wNn2lTH3Sgygn4/EsyGbUD4ZmhbQHfPj+1a/gVKYlA4=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:9d:c8:03:a6:7b:96:f8:9f:fc:94:ad:04:a5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Aug 23 03:02:26 2025 GMT
Not After : Aug 24 03:02:26 2025 GMT
Subject: CN=90400778c5867cfe99de9633f99c10caa25edb11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4b:c8:92:5a:31:e0:cb:cf:fd:3c:34:cb:4c:
3b:92:5e:07:30:fc:f1:61:27:9e:3d:1a:da:73:09:
11:82:fa:6d:9e:10:2b:b4:7a:99:5b:48:3c:9e:8c:
5e:78:4e:5c:76:92:08:59:9c:71:62:7d:dd:5f:0a:
8b:9a:d2:fb:11:f3:e5:b6:ae:97:f7:b1:10:59:b8:
da:8d:91:fd:d8:4a:61:a7:85:17:72:0c:44:df:ef:
a6:86:26:2b:7a:90:de:c4:5c:fe:5e:d2:81:d3:cd:
f1:96:65:bb:20:64:7f:0f:1e:0d:f0:c6:a5:30:5f:
46:41:c4:70:af:d4:48:97:52:ba:a8:2f:34:0c:29:
b8:52:1d:c7:0a:5b:27:b9:00:8b:f1:9b:ba:76:fc:
32:66:79:b2:8e:74:7d:27:16:d3:cf:d8:fa:49:2e:
24:cd:37:a3:6e:a0:cc:c3:53:5b:aa:22:26:30:5a:
54:58:21:f4:97:f1:01:06:35:30:f3:6b:1b:cb:36:
a0:13:9d:ae:b8:e7:21:78:68:8a:d4:01:bd:94:c5:
91:b5:b7:59:53:d5:15:64:58:af:99:24:9e:d8:a1:
94:1c:30:e9:e7:9e:eb:b9:ae:37:15:34:b7:00:6c:
dd:67:3a:62:89:c9:0f:c8:fb:73:15:8d:e9:f6:d1:
da:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:40:07:78:C5:86:7C:FE:99:DE:96:33:F9:9C:10:CA:A2:5E:DB:11
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b5:3a:14:aa:4c:b0:03:af:76:e0:d7:06:fd:61:94:f8:ce:
fd:db:3c:58:7a:57:15:99:a9:66:dc:1d:2c:fa:38:df:6e:0f:
8d:f0:04:43:37:8e:af:2e:0e:74:42:13:2e:ec:4c:d6:5b:53:
7d:1c:35:b5:59:00:4b:4b:8d:f6:ef:42:fa:b4:02:d6:a8:f8:
51:65:4e:30:29:65:a1:3c:6f:80:f6:7d:70:9f:ce:cf:11:6f:
34:09:5e:b6:66:25:50:9c:19:82:54:dd:44:11:09:1d:80:f3:
6e:c5:0a:a6:c5:72:86:7d:8b:f6:04:39:40:74:63:ac:3a:ae:
0d:d2:22:fb:c2:41:f7:5c:fb:0c:03:4d:28:34:7e:4c:a2:ba:
a7:20:3a:df:22:14:98:c6:ec:92:5d:d4:db:9f:e3:a3:51:e6:
65:e4:50:8f:80:50:29:04:28:b2:d7:39:42:21:37:4d:1a:c7:
99:c2:a5:15:55:52:d2:b3:13:e1:a2:e9:33:89:eb:f1:f4:cf:
78:03:67:c8:2a:f3:4e:9f:1f:6f:ce:aa:4e:4a:7b:39:b6:97:
de:a2:54:71:57:18:f1:11:92:07:e7:4f:3d:40:1d:04:1e:2a:
98:ef:03:19:97:65:48:f6:3e:41:da:65:a5:6e:86:8a:60:40:
fb:80:3a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:34 2025 by rpki-client