Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
File: 3RiOwuSayUWFJFtLh0Whu3oc3GY.mft (raw, json)
Hash identifier: VNRa0fcah5ONrTX+ln9klaB3qzUXMngF5HsEg9n2rDg=
Subject key identifier: B2:39:DC:A2:73:F9:89:52:06:75:19:C4:37:0D:B5:45:0C:FB:91:08
Authority key identifier: DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
Certificate issuer: /CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Certificate serial: 0198D47289FC05C7BFD4CD705CE5E47A6FD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
Manifest number: 08BB
Signing time: Sat 23 Aug 2025 01:02:12 +0000
Manifest this update: Sat 23 Aug 2025 01:02:12 +0000
Manifest next update: Sun 24 Aug 2025 01:02:12 +0000
Files and hashes: 1: 3RiOwuSayUWFJFtLh0Whu3oc3GY.crl (hash: m69c5rMfKqh+O98JoIxEMksU01z+Ys8pm7c/GbbogHk=)
2: pDLly0sn53PLZlgmqVTYD5L2Et0.roa (hash: MLKk0AIXSDvV1SnhwkIbUGP+qcSM6FHopsKcU6yMV74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:89:fc:05:c7:bf:d4:cd:70:5c:e5:e4:7a:6f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66
Validity
Not Before: Aug 23 01:02:12 2025 GMT
Not After : Aug 24 01:02:12 2025 GMT
Subject: CN=b239dca273f98952067519c4370db5450cfb9108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9d:45:36:af:58:08:f0:b5:46:7c:79:5a:a4:
28:f5:9a:09:20:40:49:a1:34:d6:56:84:3c:12:be:
d5:7f:5c:d0:b8:be:d3:95:f8:8e:cd:7c:2d:82:92:
88:e2:cc:c0:ec:e9:e0:e3:db:e3:f6:d5:e8:b1:e4:
13:c4:9e:cf:6f:e4:7f:eb:2d:be:b4:00:84:d3:10:
d7:0f:3c:3e:63:d8:3e:eb:bf:65:5a:c2:d2:b8:72:
2d:5c:42:f4:28:db:04:c5:91:3b:71:9c:7e:74:c3:
85:9a:4a:25:23:b8:d0:cb:fc:30:f6:a7:0e:e6:7d:
31:92:1b:c2:19:86:06:65:3f:5f:66:6d:23:78:d3:
7a:2b:78:a5:32:ea:87:92:64:65:c9:1f:9c:5e:f4:
a0:33:8e:66:33:65:44:19:53:20:d3:e3:16:08:f8:
00:9b:3d:1a:e1:74:6c:3d:c0:e6:ec:d4:28:87:f3:
40:b3:4e:35:8a:a1:ad:4f:0a:eb:45:84:58:c7:5d:
58:9d:b3:45:ef:3d:9e:01:45:35:e2:ac:7e:1e:b4:
aa:c1:b6:38:46:c9:68:54:3b:f8:b1:a3:40:b9:a6:
c7:ea:d4:fc:88:3a:7b:b2:34:52:ca:0f:8f:b0:33:
55:3b:f8:f3:8e:7c:8e:02:8a:98:4a:6f:76:45:92:
cd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:39:DC:A2:73:F9:89:52:06:75:19:C4:37:0D:B5:45:0C:FB:91:08
X509v3 Authority Key Identifier:
keyid:DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:78:22:77:0c:b9:37:c4:3c:54:36:8c:ca:36:2b:30:02:46:
34:57:86:5d:f0:91:bf:f0:64:2f:f8:c4:54:8c:b7:3d:b5:8d:
cc:b6:d9:c9:52:6f:45:2b:0a:46:3e:c3:f9:2d:32:c4:4c:a4:
2b:15:5f:7a:08:d5:fe:cf:96:d7:22:41:74:dc:5b:8a:15:57:
7f:4f:fa:93:de:1d:02:ed:2f:cd:af:8d:01:15:8a:c5:42:2c:
e1:1a:83:ce:f0:c6:61:15:b2:08:0f:5f:aa:b8:80:c1:d8:bf:
76:16:31:d6:76:d3:3a:56:be:2c:73:a6:e4:b8:bc:2b:90:fc:
e8:26:bd:17:55:fa:31:2a:59:03:40:0b:cf:34:7a:81:07:46:
ef:9f:3d:ee:9a:5c:0e:71:a6:c3:cb:46:bd:2e:47:e3:2f:05:
13:3b:dd:eb:20:12:33:45:41:19:4c:f9:e4:ba:69:f7:3d:db:
5c:2d:cc:5b:d9:b0:96:cc:2d:d7:3e:a2:82:85:a1:56:62:d7:
fb:c8:8d:d6:d4:a1:c2:a3:ae:a1:e4:80:de:c5:a6:be:83:23:
3d:08:1d:8a:dd:73:6e:ba:f1:0d:ed:4c:13:4f:bb:10:34:9c:
17:4f:32:09:7e:18:7f:ea:d9:90:c6:7c:35:c5:d4:65:81:1d:
a8:57:95:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcon8Bce/1M1wXOXkem/WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMTg4ZWMyZTQ5YWM5NDU4NTI0NWI0Yjg3NDVhMWJiN2Ex
Y2RjNjYwHhcNMjUwODIzMDEwMjEyWhcNMjUwODI0MDEwMjEyWjAzMTEwLwYDVQQD
EyhiMjM5ZGNhMjczZjk4OTUyMDY3NTE5YzQzNzBkYjU0NTBjZmI5MTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn51FNq9YCPC1Rnx5WqQo9ZoJIEBJ
oTTWVoQ8Er7Vf1zQuL7TlfiOzXwtgpKI4szA7Ong49vj9tXoseQTxJ7Pb+R/6y2+
tACE0xDXDzw+Y9g+679lWsLSuHItXEL0KNsExZE7cZx+dMOFmkolI7jQy/ww9qcO
5n0xkhvCGYYGZT9fZm0jeNN6K3ilMuqHkmRlyR+cXvSgM45mM2VEGVMg0+MWCPgA
mz0a4XRsPcDm7NQoh/NAs041iqGtTwrrRYRYx11YnbNF7z2eAUU14qx+HrSqwbY4
RsloVDv4saNAuabH6tT8iDp7sjRSyg+PsDNVO/jzjnyOAoqYSm92RZLN8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLI53KJz+YlSBnUZxDcNtUUM+5EIMB8GA1UdIwQY
MBaAFN0YjsLkmslFhSRbS4dFobt6HNxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2Ut
YjU5MTk4YjkxNTVkLzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2UtYjU5MTk4YjkxNTVk
LzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASngidwy5
N8Q8VDaMyjYrMAJGNFeGXfCRv/BkL/jEVIy3PbWNzLbZyVJvRSsKRj7D+S0yxEyk
KxVfegjV/s+W1yJBdNxbihVXf0/6k94dAu0vza+NARWKxUIs4RqDzvDGYRWyCA9f
qriAwdi/dhYx1nbTOla+LHOm5Li8K5D86Ca9F1X6MSpZA0ALzzR6gQdG75897ppc
DnGmw8tGvS5H4y8FEzvd6yASM0VBGUz55Lpp9z3bXC3MW9mwlswt1z6igoWhVmLX
+8iN1tShwqOuoeSA3sWmvoMjPQgdit1zbrrxDe1ME0+7EDScF08yCX4Yf+rZkMZ8
NcXUZYEdqFeV0A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:15 2025 by rpki-client