Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: LILb+azbeWCKWoAEosAJspZX+EPaRHLV3oabnvzFH8I=
Subject key identifier: 44:FA:3C:5E:F8:EF:D6:6B:85:D7:45:F5:F1:C1:B5:3A:CF:31:6A:4A
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 0198D77344786252633BE4BFEA7E228C7334
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 158A
Signing time: Sat 23 Aug 2025 15:01:52 +0000
Manifest this update: Sat 23 Aug 2025 15:01:52 +0000
Manifest next update: Sun 24 Aug 2025 15:01:52 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: a40N3cFUW0Ft9N2jyZKYxj2eAcWtSH3aNuxez7jfT3U=)
2: RmRTHkNLraqOOzazgFQdU_YCKkM.roa (hash: 5SoXabo2aLivwm4lm+kA69S7S7+v67Nc52d80muCgcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:44:78:62:52:63:3b:e4:bf:ea:7e:22:8c:73:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Aug 23 15:01:52 2025 GMT
Not After : Aug 24 15:01:52 2025 GMT
Subject: CN=44fa3c5ef8efd66b85d745f5f1c1b53acf316a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d6:64:18:42:e7:bb:54:1b:6e:16:31:28:3d:
e3:ed:9c:2c:3b:03:5a:f6:7c:46:a3:0e:96:8f:c2:
55:3e:3c:b6:9e:49:54:2d:02:f5:cd:b7:ca:56:30:
59:43:ba:36:ca:59:64:2c:c4:89:0c:fa:fd:87:65:
43:d3:79:ca:50:74:27:27:dd:5b:d0:87:20:42:ab:
15:59:80:ef:3a:56:a4:f7:ba:0b:f5:2a:cc:64:11:
6e:b5:27:09:0e:db:b0:8e:59:01:c3:80:fa:be:0e:
f5:af:d3:10:62:53:e9:88:e0:9e:49:1e:b6:97:a2:
8e:03:5d:45:c6:73:3b:b9:9d:35:07:f0:64:7e:4b:
5d:4a:7c:6b:da:4f:31:a7:83:14:6d:4e:3e:aa:74:
94:ae:5f:a2:57:7d:d5:5c:9e:79:36:76:20:3a:fb:
44:63:1e:78:83:06:87:df:e3:68:99:d5:66:17:08:
7b:0b:e5:57:ac:29:8b:a8:89:4c:79:cb:8f:43:e0:
eb:1c:c1:b0:a1:ba:90:be:e6:33:8f:36:8a:f1:ea:
b9:ff:db:b8:8e:f4:68:d9:d9:92:c5:3a:48:a5:6e:
76:7c:4b:0a:1b:79:10:a7:1c:e9:5f:79:f4:ed:2b:
3c:48:a1:af:e0:04:43:19:8d:db:e1:73:f8:49:2a:
48:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FA:3C:5E:F8:EF:D6:6B:85:D7:45:F5:F1:C1:B5:3A:CF:31:6A:4A
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ef:b8:b3:01:68:61:d2:b3:55:1c:c4:67:4d:7d:84:5e:bc:
1b:bd:d0:61:07:84:f4:c6:a9:cc:9a:39:08:f1:16:ad:7b:6d:
39:91:8b:f2:7a:b1:65:6f:73:0c:cb:fd:a1:0c:1c:16:68:c9:
bd:a6:6a:f8:ac:41:2a:56:cc:68:5e:2c:2f:af:aa:bb:34:3f:
60:e4:c9:6e:69:14:f8:8e:a2:28:0e:ca:25:eb:8f:37:e8:12:
af:51:57:bb:18:db:66:64:76:64:b2:25:ff:7e:8a:70:17:c9:
b0:cf:0a:86:74:10:c5:f1:88:8c:8b:e1:45:47:02:60:ea:02:
72:83:d8:11:07:3a:b7:82:cb:3f:e5:2a:5f:dd:98:37:0e:c9:
b3:64:8b:98:52:4e:6d:5f:2d:5b:42:ac:b3:59:75:28:bf:62:
3a:27:5d:ab:8b:3d:6f:33:23:85:02:7b:37:1c:80:e3:08:58:
97:24:30:22:58:f8:33:7a:87:17:21:11:06:e8:fd:c2:f0:20:
81:d2:57:67:fe:74:57:9d:08:c8:82:8f:91:b6:70:d0:3e:8b:
a7:25:2d:30:b1:26:89:65:8a:bb:0d:b6:48:1c:8b:2c:05:2c:
6e:88:aa:81:a1:59:f7:f4:62:49:51:12:2b:22:35:37:a2:cc:
07:c2:a9:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:21:51 2025 by rpki-client