Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: uLuPaXOIZ2/XR8U8F+YzCJ2RGe67m5wMH/JT2VYeFrQ=
Subject key identifier: B8:A5:20:FE:3B:32:4D:64:54:74:05:88:97:70:25:5C:D2:C5:A9:EF
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 0199FE468953DE82EE958A45E67FC1BB6F90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0B54
Signing time: Sun 19 Oct 2025 21:00:59 +0000
Manifest this update: Sun 19 Oct 2025 21:00:59 +0000
Manifest next update: Mon 20 Oct 2025 21:00:59 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: n14Lra2bD7swq8mUTdis+kokGYwUJ5J4fYl/aoe+9/E=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:89:53:de:82:ee:95:8a:45:e6:7f:c1:bb:6f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Oct 19 21:00:59 2025 GMT
Not After : Oct 20 21:00:59 2025 GMT
Subject: CN=b8a520fe3b324d64547405889770255cd2c5a9ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b9:eb:21:bb:37:91:3c:85:67:12:9a:49:ab:
86:1a:d9:70:48:63:03:24:ac:4a:51:f6:55:72:f3:
b2:8c:98:f9:b6:77:e9:ca:09:72:68:93:27:4e:ee:
d9:80:2d:1b:e7:bd:c7:99:f2:ef:4f:c4:6d:84:b1:
3c:20:c0:29:ae:0c:c4:5f:ea:37:5d:9e:4b:b0:03:
f5:30:06:92:68:0c:0b:9c:ab:dc:4e:2b:2f:54:73:
51:15:9b:4c:e8:57:f8:b3:11:ca:16:bf:0f:3c:c4:
32:f4:7f:9f:0b:d1:00:3e:7d:3d:82:cb:b3:32:b9:
ca:a3:97:2d:f9:35:d5:56:19:90:a8:68:3d:e7:44:
24:b2:69:c1:e9:72:a4:a3:8f:9f:98:3c:df:fc:6b:
2d:3f:3e:80:ba:04:7d:3c:cf:ad:03:2d:a9:f9:d9:
7b:0a:ce:f0:a5:7d:76:d0:0f:6e:f2:53:17:4c:bf:
c1:e3:ed:ff:fc:d0:7d:4c:41:13:75:71:7d:03:ea:
1b:7c:c2:2b:9f:3a:f8:05:59:df:2b:0d:4d:87:19:
af:5d:d9:1b:8d:6f:fb:2e:b3:12:aa:05:6d:95:fe:
cb:a3:b4:b1:3b:f5:42:24:d1:c1:89:1a:fa:03:d4:
79:a5:b7:cc:6e:7e:f1:56:3e:90:41:55:45:93:0f:
44:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A5:20:FE:3B:32:4D:64:54:74:05:88:97:70:25:5C:D2:C5:A9:EF
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:6b:0e:5c:bb:50:92:12:c4:67:e9:a7:81:c5:55:19:54:6a:
64:3e:f5:9e:d9:7a:6e:cd:be:ef:50:4f:48:8f:1c:73:39:dd:
43:c7:c7:3b:e2:cd:e6:ca:e5:52:6f:0e:a0:61:d5:b8:13:66:
ee:aa:88:8a:6d:8e:a8:89:87:f2:c3:f4:c1:72:09:34:dc:55:
f2:7a:66:e1:94:33:81:00:7d:aa:59:55:5d:c1:4b:23:ae:ef:
61:6d:61:4e:5f:94:57:fc:7e:79:99:15:4e:3c:4d:c7:7e:61:
c8:89:d8:fe:d9:c8:8e:ea:c0:35:1c:3f:41:4f:76:7a:ba:20:
83:af:97:e8:7c:e2:9d:47:7f:d2:33:c7:5a:6d:33:8c:ab:ce:
18:9f:50:cb:71:a2:04:95:4b:28:ee:f9:e4:07:07:42:49:58:
0a:5c:a4:f1:c9:43:9e:67:75:66:b9:b8:6f:a8:e9:d6:34:6e:
ac:ef:99:ac:14:3a:6c:c6:43:cc:42:bf:cb:f6:dd:95:bf:fb:
2b:b4:f4:4c:b6:33:da:9f:d1:05:18:57:8d:5d:da:7e:f5:3d:
f0:1e:54:79:7d:72:55:52:26:ff:80:96:33:c6:fe:8b:a7:14:
aa:29:92:4a:73:1e:2a:49:aa:94:49:a9:08:88:74:c1:ce:31:
d9:f0:e7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:27:37 2025 by rpki-client