Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: QxU3GvB0+5TVq0EAmL2Q3p2F83kTvLusyhVXeodkDjk=
Subject key identifier: A5:46:89:0C:AA:B1:C8:51:41:E1:61:C6:20:BC:8B:15:6C:84:8C:03
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 0199FCFD3840B86127E8F78F82104C44C25D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 1622
Signing time: Sun 19 Oct 2025 15:01:17 +0000
Manifest this update: Sun 19 Oct 2025 15:01:17 +0000
Manifest next update: Mon 20 Oct 2025 15:01:17 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: wJHRReWqfniQkCprB4i4+qg2fFL26uSUP5/QULl3Mmc=)
2: RmRTHkNLraqOOzazgFQdU_YCKkM.roa (hash: 5SoXabo2aLivwm4lm+kA69S7S7+v67Nc52d80muCgcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:38:40:b8:61:27:e8:f7:8f:82:10:4c:44:c2:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Oct 19 15:01:17 2025 GMT
Not After : Oct 20 15:01:17 2025 GMT
Subject: CN=a546890caab1c85141e161c620bc8b156c848c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f3:54:42:74:e9:53:40:4f:1e:ba:1b:5b:24:
b9:9c:9b:2a:62:e3:4d:96:29:e1:21:c5:2a:16:0c:
80:68:f5:ef:16:66:4c:36:45:04:59:17:b4:1a:e5:
20:55:02:14:13:50:4d:6b:dd:8b:15:ee:77:fc:55:
14:d8:e1:4a:23:62:6a:ad:dd:b1:75:62:76:e5:9e:
29:7a:bb:cf:08:a4:61:36:75:79:97:e2:6c:ac:0e:
b8:8a:92:87:84:c6:e2:74:d2:e5:ae:99:eb:10:18:
cd:c3:78:43:b3:0a:84:7c:11:39:c2:f5:43:37:0a:
d9:89:19:35:30:f8:c7:ef:52:16:43:6b:f7:4e:22:
d1:02:dd:67:0c:ec:d3:4a:8b:c8:ac:28:6f:1a:66:
17:d9:03:3d:c0:df:bf:8f:aa:bd:40:b3:f9:65:f7:
47:e2:c4:ad:0b:a7:8d:d9:8e:cd:08:a6:7e:e6:a6:
8c:c9:00:0d:91:a0:93:93:b4:4d:48:80:9b:cb:3d:
5f:c6:01:9f:0c:fe:73:48:24:94:a7:6a:ee:7b:a0:
e9:50:28:21:8b:b7:cb:e8:7e:56:7d:8b:82:de:c2:
60:cd:d0:31:45:bf:4d:fe:25:ce:98:ee:2e:2b:28:
8d:0e:40:62:e1:d8:31:9c:1c:0e:56:19:0a:f7:42:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:46:89:0C:AA:B1:C8:51:41:E1:61:C6:20:BC:8B:15:6C:84:8C:03
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:5d:4b:b1:bf:0e:83:56:e3:9c:f7:41:c2:97:12:03:e4:51:
ba:97:e6:d2:f7:c8:a6:25:4f:fc:cc:7d:91:f9:79:d2:c0:b8:
86:a0:71:54:90:ed:c4:ec:d0:38:e7:bb:6c:06:6f:bd:7f:fe:
2f:48:7d:3b:6f:6c:df:6d:5f:98:e4:c4:89:2f:56:1d:27:23:
a1:0b:dc:84:1a:f8:af:58:fd:ae:3a:39:3b:11:38:f4:6c:a4:
a4:ba:b1:f2:74:6c:4a:e3:0f:41:c1:8c:de:7a:89:d7:19:4c:
7f:83:6b:86:a3:50:e6:8f:bc:fa:a8:9f:40:84:68:40:26:3b:
13:6f:40:fd:81:14:d7:63:4e:2b:9d:7d:00:ef:72:7f:bf:3d:
af:08:ba:03:6d:ad:57:33:3e:28:fe:68:58:e4:9f:77:82:c9:
8e:f4:32:c9:f9:3a:b5:c9:bf:e9:ec:7d:c2:12:d7:e0:1c:96:
23:7e:19:1f:e2:e5:57:5e:41:c8:1d:68:c7:4c:d2:01:30:48:
fb:59:65:16:8d:cd:0f:98:88:b2:f9:e7:ad:9f:db:ae:fc:3b:
ad:83:f1:f3:87:3b:b4:32:4c:ba:3e:40:8a:8a:b3:1e:b3:97:
89:4d:28:d1:f2:e2:71:98:e6:df:59:a2:ea:fd:f1:b6:4b:bb:
c8:39:ef:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/ThAuGEn6PePghBMRMJdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMmI1Y2JmOTY3YTAzNDlkODg5NzA0YmI0ZDYxZmE1MjZh
MzFkNmYwHhcNMjUxMDE5MTUwMTE3WhcNMjUxMDIwMTUwMTE3WjAzMTEwLwYDVQQD
EyhhNTQ2ODkwY2FhYjFjODUxNDFlMTYxYzYyMGJjOGIxNTZjODQ4YzAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvNUQnTpU0BPHrobWyS5nJsqYuNN
linhIcUqFgyAaPXvFmZMNkUEWRe0GuUgVQIUE1BNa92LFe53/FUU2OFKI2Jqrd2x
dWJ25Z4pervPCKRhNnV5l+JsrA64ipKHhMbidNLlrpnrEBjNw3hDswqEfBE5wvVD
NwrZiRk1MPjH71IWQ2v3TiLRAt1nDOzTSovIrChvGmYX2QM9wN+/j6q9QLP5ZfdH
4sStC6eN2Y7NCKZ+5qaMyQANkaCTk7RNSICbyz1fxgGfDP5zSCSUp2rue6DpUCgh
i7fL6H5WfYuC3sJgzdAxRb9N/iXOmO4uKyiNDkBi4dgxnBwOVhkK90KarQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVGiQyqschRQeFhxiC8ixVshIwDMB8GA1UdIwQY
MBaAFN4rXL+WegNJ2IlwS7TWH6Umox1vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAt
ZmQ3MmQ5NjJkZjI3LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi82NDZlN2QtNGY0Ni00MDdjLWJkZDAtZmQ3MmQ5NjJkZjI3
LzEvM2l0Y3Y1WjZBMG5ZaVhCTHROWWZwU2FqSFc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACF1Lsb8O
g1bjnPdBwpcSA+RRupfm0vfIpiVP/Mx9kfl50sC4hqBxVJDtxOzQOOe7bAZvvX/+
L0h9O29s321fmOTEiS9WHScjoQvchBr4r1j9rjo5OxE49GykpLqx8nRsSuMPQcGM
3nqJ1xlMf4NrhqNQ5o+8+qifQIRoQCY7E29A/YEU12NOK519AO9yf789rwi6A22t
VzM+KP5oWOSfd4LJjvQyyfk6tcm/6ex9whLX4ByWI34ZH+LlV15ByB1ox0zSATBI
+1llFo3ND5iIsvnnrZ/brvw7rYPx84c7tDJMuj5AioqzHrOXiU0o0fLicZjm31mi
6v3xtku7yDnvqg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:56 2025 by rpki-client