Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
File: 3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft (raw, json)
Hash identifier: BkYPUYcx9Q/c7ndtyaau13PX+dhVk/4dRdoEdjVWmhs=
Subject key identifier: 48:B4:51:88:25:5C:78:3F:8D:F5:6E:75:44:FB:9F:19:2C:7F:A8:E5
Authority key identifier: DF:3B:1D:27:73:A0:3D:31:7A:77:03:19:3D:2F:45:42:9A:94:BA:9F
Certificate issuer: /CN=df3b1d2773a03d317a7703193d2f45429a94ba9f
Certificate serial: 0198D472B740D4E09DAF23BDA0B6C0AA7A67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
Manifest number: 2F
Signing time: Sat 23 Aug 2025 01:02:24 +0000
Manifest this update: Sat 23 Aug 2025 01:02:24 +0000
Manifest next update: Sun 24 Aug 2025 01:02:24 +0000
Files and hashes: 1: 1OnAxERvwCdnk__Rn-ReVSlbcoM.roa (hash: aqwsdMgIbP4mFzFG0p4x2dQgO0GnM+i3JMeyA55YC7E=)
2: 3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl (hash: TPFqYYvpfTHXFi5YHhs6khve7Rqo+aANasVa9w7fFEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:b7:40:d4:e0:9d:af:23:bd:a0:b6:c0:aa:7a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3b1d2773a03d317a7703193d2f45429a94ba9f
Validity
Not Before: Aug 23 01:02:24 2025 GMT
Not After : Aug 24 01:02:24 2025 GMT
Subject: CN=48b45188255c783f8df56e7544fb9f192c7fa8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:03:4a:72:9e:8a:f6:c5:29:f5:db:39:e2:b3:
a3:82:66:22:66:49:38:69:f4:d1:8a:eb:fc:8f:22:
fd:0f:45:3e:2a:38:fd:31:ea:35:f7:47:cc:8b:61:
38:0e:8b:3f:1c:4f:a5:e7:f6:cb:a4:fe:30:a5:12:
8a:fe:18:1b:88:8b:ae:24:0b:fc:2a:53:c5:1f:4a:
76:cb:e2:d3:28:d4:5d:27:6c:47:69:28:86:74:bd:
94:d1:0e:1e:39:9b:b1:4d:c0:31:bd:51:be:f9:0e:
a9:6b:51:4c:4f:16:8c:1a:6b:f1:d8:32:69:74:91:
ec:02:24:27:45:ec:91:16:16:30:fe:26:e9:51:2a:
20:c4:c8:e4:fd:d7:45:90:0e:fc:f7:e7:9b:ec:c5:
71:94:cd:1b:bb:2e:02:8a:c8:d8:f7:2b:1b:16:62:
3d:69:49:38:fc:b9:e7:17:55:62:15:c2:f1:67:4c:
9d:ae:5e:33:91:01:cd:53:61:4b:52:3d:73:9b:d0:
2c:d1:68:1e:00:34:8a:81:4c:80:e0:69:f7:a0:1b:
3e:6b:f3:92:4f:35:7f:b9:70:fd:e9:eb:0a:8c:b4:
00:0d:a3:88:d9:a5:18:6e:94:60:be:de:2c:53:9c:
c5:57:c5:0f:ea:50:9f:b1:17:1c:8a:c9:18:9b:a3:
f6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:51:88:25:5C:78:3F:8D:F5:6E:75:44:FB:9F:19:2C:7F:A8:E5
X509v3 Authority Key Identifier:
keyid:DF:3B:1D:27:73:A0:3D:31:7A:77:03:19:3D:2F:45:42:9A:94:BA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3zsdJ3OgPTF6dwMZPS9FQpqUup8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/52d088-6989-4e89-8777-526dcb2a23bd/1/3zsdJ3OgPTF6dwMZPS9FQpqUup8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:15:af:0a:02:73:b7:1b:ec:3f:c8:c2:bf:da:05:1d:66:3f:
e5:44:ca:64:ea:d2:c6:3b:62:b9:5b:95:71:80:1b:e0:25:88:
90:6f:d5:71:4b:45:26:fd:2e:6c:c7:41:22:1e:2e:1c:19:6b:
80:4e:57:cd:66:4c:5e:0c:97:17:56:8a:13:18:e3:dd:5d:73:
ee:b9:79:bb:f4:25:e1:3f:1a:9f:bc:b6:3e:4a:32:b4:44:08:
05:5c:70:72:b6:5d:a2:f9:b3:f5:2c:c2:61:56:1d:eb:50:bf:
8f:e7:62:d7:d5:74:cb:96:66:b4:80:fb:8f:46:98:d0:da:a0:
97:c4:d1:f1:9b:77:f2:d1:4c:a6:3a:65:e8:f7:14:e2:c1:6c:
56:bf:1a:be:56:7e:96:44:78:cc:e0:8b:a5:5b:d5:dd:6b:ea:
1e:70:f4:75:b0:0f:be:47:12:fb:e1:37:b6:4a:c6:92:12:6f:
a6:82:d4:18:46:7f:e6:aa:1c:b2:89:8b:e4:ba:4b:05:1e:68:
be:70:9c:5b:48:19:d8:a9:f7:85:93:ad:da:07:19:d4:a2:64:
a0:39:a9:01:fd:b8:ce:ec:b6:53:94:8f:75:34:39:cd:b2:2c:
f4:11:18:1b:7d:38:cf:48:e6:f4:66:04:00:ad:89:20:8b:b8:
0e:a7:01:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:02 2025 by rpki-client