Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
File: 3IiUXIhnpyYro3mzpphACRpPGQQ.mft (raw, json)
Hash identifier: UCYhG0KiNgY3WPwOuxnCe4C6cwSNvUN+Ro6ek5vLLhw=
Subject key identifier: BE:C0:39:3C:96:35:4D:DE:60:23:F9:48:E8:C1:97:80:A2:48:91:28
Authority key identifier: DC:88:94:5C:88:67:A7:26:2B:A3:79:B3:A6:98:40:09:1A:4F:19:04
Certificate issuer: /CN=dc88945c8867a7262ba379b3a69840091a4f1904
Certificate serial: 0198D51626B90954D348C9D4F24F2782BFD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
Manifest number: 0A1B
Signing time: Sat 23 Aug 2025 04:00:55 +0000
Manifest this update: Sat 23 Aug 2025 04:00:55 +0000
Manifest next update: Sun 24 Aug 2025 04:00:55 +0000
Files and hashes: 1: 3IiUXIhnpyYro3mzpphACRpPGQQ.crl (hash: oIB2rgqbzk4KZ+hpg66ZdDG7vJQkaP6u2dHj8Q5nGU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:26:b9:09:54:d3:48:c9:d4:f2:4f:27:82:bf:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc88945c8867a7262ba379b3a69840091a4f1904
Validity
Not Before: Aug 23 04:00:55 2025 GMT
Not After : Aug 24 04:00:55 2025 GMT
Subject: CN=bec0393c96354dde6023f948e8c19780a2489128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:55:62:85:b9:ca:43:5b:14:55:e1:ad:bd:a3:
8c:48:f9:3b:a6:33:14:67:3c:23:fa:de:a0:ae:26:
e9:d8:b0:f7:21:a0:5b:82:4e:20:91:a8:6e:d5:cd:
0a:d6:ad:35:f7:23:14:c6:f2:c0:f0:01:ca:11:ca:
98:da:f9:7e:4c:8c:76:cc:d1:5d:54:15:f0:8b:6e:
18:57:98:0f:b0:9e:c7:ed:9f:46:2d:4c:83:7f:68:
1a:1d:8b:6f:80:c0:3e:28:7d:75:2a:a9:4e:d8:11:
96:0d:07:38:31:65:8c:d4:b4:e8:27:44:5f:68:86:
1a:89:3d:04:32:ca:ed:7b:32:83:60:e6:47:81:27:
03:c6:7f:3e:2c:fa:de:f7:39:21:d5:24:1f:66:d3:
26:35:ca:cf:1e:9f:cd:05:b4:d6:77:c0:a2:38:85:
bb:f5:ee:a0:e1:39:45:33:06:65:25:d2:a8:8a:e3:
11:5a:45:70:e2:5c:dc:19:da:e6:6c:f0:00:99:ca:
5b:ce:81:01:0f:14:03:06:af:f9:f3:70:b0:9d:63:
b0:72:09:5f:72:9e:d4:32:97:d7:1c:3e:db:6e:57:
6c:da:0a:0a:d4:20:81:8f:e9:d4:f6:d6:4c:b2:11:
60:a8:f4:c5:d0:27:ba:a1:27:79:9d:03:38:bd:75:
06:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C0:39:3C:96:35:4D:DE:60:23:F9:48:E8:C1:97:80:A2:48:91:28
X509v3 Authority Key Identifier:
keyid:DC:88:94:5C:88:67:A7:26:2B:A3:79:B3:A6:98:40:09:1A:4F:19:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:70:ba:74:16:94:ff:04:67:74:54:92:09:af:7f:16:2e:cd:
1e:a3:43:e2:80:c2:c3:4d:74:a0:0b:07:c5:13:6e:32:ab:5c:
17:64:a5:f0:fc:81:0b:a0:4c:e2:54:2f:59:89:44:1b:6d:72:
2a:de:7a:33:57:9a:1a:b9:be:89:ad:aa:a8:25:57:8c:40:77:
c1:88:8d:25:d2:68:a9:40:ad:fc:72:64:a9:91:2b:0d:f4:f4:
cf:aa:1a:17:49:0f:96:db:b3:e2:ba:6c:b4:a1:c3:9b:29:a4:
06:7d:06:e5:33:37:d0:f9:3e:dd:20:ba:be:11:75:80:35:a8:
27:7b:d6:a8:f2:ab:37:27:1a:6b:27:65:78:fd:69:e8:e1:b6:
67:c0:c2:a6:d6:7c:15:e5:4f:5a:3c:11:29:75:fb:0e:98:b2:
e0:24:27:70:06:c8:ec:b4:22:c8:de:23:c3:5c:1e:e8:3c:8f:
63:d6:b2:de:34:7c:4b:8b:6d:29:2c:7c:d5:d0:2c:d9:7d:f7:
2e:7b:6b:b5:4d:9e:de:79:34:11:8b:b9:fb:71:8e:a8:f8:ae:
af:cc:0e:fd:85:bf:71:57:d8:31:e3:e4:04:57:e5:86:a9:13:
34:69:38:22:e7:19:1a:d6:86:c0:64:8c:45:39:e2:09:61:ea:
c8:2e:c6:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:31 2025 by rpki-client