Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: Yfo+GFlVKi4lWoZqykwvbkSQOk6/suHr2sjcFsaJd2c=
Subject key identifier: 52:94:08:B9:C7:50:86:FE:D6:CA:79:EA:DE:B9:50:73:11:77:EE:07
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 0198D5BBF75926B68073BD007AA7D0FB0552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: 0145
Signing time: Sat 23 Aug 2025 07:02:02 +0000
Manifest this update: Sat 23 Aug 2025 07:02:02 +0000
Manifest next update: Sun 24 Aug 2025 07:02:02 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: XXTc9yZaMNrF79hhnZyadHMpAWQogunTnLZJnVE4c0M=)
2: 4YPbiAtEI4aIVwSYoOB9atG5l_o.roa (hash: 5G9M3UH6Px38TdWKWNsZTcUTomaq2supA1BUuPBFOUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:f7:59:26:b6:80:73:bd:00:7a:a7:d0:fb:05:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: Aug 23 07:02:02 2025 GMT
Not After : Aug 24 07:02:02 2025 GMT
Subject: CN=529408b9c75086fed6ca79eadeb950731177ee07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:a9:d8:1e:3c:d3:56:ea:55:ad:c7:a7:1f:
08:c4:00:8c:2d:da:5a:df:4a:a2:da:de:0d:f6:51:
6d:d1:8d:ba:3c:19:2f:b4:0a:a2:c7:fa:b6:02:5e:
8d:b9:9b:5d:32:36:a2:6b:e7:fa:af:fa:02:be:69:
6d:b0:ff:d8:a4:1b:fe:e4:4d:73:6a:32:d6:94:2f:
73:ef:bd:0d:91:97:9b:a5:95:07:65:57:74:62:68:
20:b4:2a:c9:d4:da:3d:21:70:f7:aa:0f:84:f4:46:
6a:63:f0:98:e9:1b:01:bf:32:0c:e1:75:ca:7f:a5:
5f:33:10:59:ad:5f:21:40:1d:85:19:68:de:e8:d8:
5e:17:68:0c:d3:22:3f:62:be:c5:e5:f2:65:03:17:
e1:8e:82:f0:30:2a:b4:ce:81:ac:b6:28:9d:03:60:
37:a8:38:5b:be:2c:dd:f4:b2:86:bd:7f:ac:ce:98:
53:db:85:7f:32:55:a0:de:13:64:bc:25:61:8c:24:
bc:98:68:19:76:cd:ca:20:64:25:26:0d:76:53:1c:
36:e4:c2:dc:40:a7:8c:5e:1f:ba:15:50:d7:a1:71:
94:6c:dd:e0:57:b8:f0:b7:02:ea:b0:08:75:73:0b:
c5:7d:71:4b:40:ad:5d:44:8a:ba:54:92:05:1d:50:
f7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:94:08:B9:C7:50:86:FE:D6:CA:79:EA:DE:B9:50:73:11:77:EE:07
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:95:b0:17:41:2c:d6:a0:3d:d8:9e:e9:b9:42:1b:13:aa:5b:
91:36:2a:f7:0d:3c:b1:94:be:5a:e8:ca:8a:9b:70:75:4b:fe:
c0:48:94:69:17:c0:0b:54:9f:83:35:00:b4:95:60:78:19:af:
3f:ab:54:e6:d6:a6:84:4d:40:d2:4e:37:45:32:6f:54:7c:e5:
ff:ea:8f:5f:84:af:b0:52:7a:9a:91:64:18:89:7d:34:b8:4f:
eb:25:fd:e5:ef:23:bd:d3:5d:09:c8:a2:cc:9e:a0:a7:ce:bc:
6c:33:68:81:5c:17:64:8f:34:fb:4d:2b:8d:7b:e6:ab:95:bb:
2c:4b:b4:97:e7:50:56:a9:6a:b3:09:3e:db:ef:c0:2b:43:bf:
f7:1f:11:58:3e:e9:12:95:53:66:9a:d2:de:ef:d4:6a:b0:e2:
b4:64:16:45:b5:6c:dd:c1:d9:e9:7d:cb:64:8b:5f:9d:ac:19:
e8:1b:50:98:16:fa:ff:8f:e9:ac:ba:ed:fa:bc:6c:81:2e:af:
e6:35:f4:27:f7:f0:cb:62:b2:9e:0d:0e:74:84:84:76:bd:c1:
ec:b1:5a:7e:6f:c4:66:d9:b0:99:35:9a:da:34:43:1e:6c:9c:
52:cd:85:07:fc:f0:0b:85:75:81:59:b7:5f:bb:a4:77:19:f8:
81:1b:7e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:04:58 2025 by rpki-client