Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: yBPLocU3Ck/jIJ6zrAqqm5SMZrAENkpS4iJshki4g3Q=
Subject key identifier: D6:7A:F4:11:F8:D1:8F:66:55:03:F9:13:28:45:F1:E1:91:DC:F1:29
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 0199FB7CCE70362685EA2B6DE9DE8EC2BBFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 16ED
Signing time: Sun 19 Oct 2025 08:01:24 +0000
Manifest this update: Sun 19 Oct 2025 08:01:24 +0000
Manifest next update: Mon 20 Oct 2025 08:01:24 +0000
Files and hashes: 1: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: BraXYaWIU796MGhhTBvEdXQje9HFqYppOZYHPerme2Y=)
2: K0TFEKD6Jt4eOFvjhXpLcR-sKAw.roa (hash: DiTuJ8zdptPdKEXMu7Rx5XzUhg/taulk9eNvKwAnd+E=)
3: Low4CRi4iGKYokty-NINmJn09rg.roa (hash: Mly1uM7PqUcjuRWWihLVa+ejMa5zwEjs5HqRkIM9ZCc=)
4: TUldFuXRlNkhcxG2k3pbkLp8w6k.roa (hash: u8w+hKuVRJcapFna3Gt95nB+zwn2rJ1IH60Do+ZSEr0=)
5: VFLtaw7ddcrkuS71SLZjd28hT9Y.roa (hash: wkImuoriz8/Wt+wr39TPtXLgxrVgYHqbWY2XyO00qX4=)
6: fWDdDEZ5-7TJ7ifcAQ9Kizx3VI0.roa (hash: 9iAjE9rwQQFIjLwRuw0Wl4wwOwQae4btRIJRt6LJVxE=)
7: iYMgW4EcYcU5AKm4CceLlPmJSsA.roa (hash: 7zWW49XDo1LsXGWIP2om4UTMjsubF7Ml4DbV3OJ7N00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:ce:70:36:26:85:ea:2b:6d:e9:de:8e:c2:bb:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Oct 19 08:01:24 2025 GMT
Not After : Oct 20 08:01:24 2025 GMT
Subject: CN=d67af411f8d18f665503f9132845f1e191dcf129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:18:5a:aa:a6:36:8b:24:6e:1a:54:c7:6c:72:
50:e7:7f:66:23:3e:aa:19:c1:b6:fb:96:9a:d8:74:
90:87:c0:9e:94:c0:5a:ea:2b:d6:9e:85:14:69:5c:
0d:af:0f:5e:ea:b5:99:2f:0c:4a:ec:71:d3:b6:79:
d6:dd:c7:3f:d2:d8:fa:02:e7:d9:77:1c:b5:e8:bf:
e3:7a:12:8a:ac:d7:f9:5f:4f:96:39:0b:d6:6a:09:
25:ae:e0:39:64:32:40:64:33:95:ba:ed:e4:63:00:
5d:86:98:12:cf:75:5e:4d:33:14:20:83:2b:ef:bb:
a6:3a:53:b7:cf:20:a6:62:c7:ae:1e:23:ab:5c:34:
b9:0e:67:27:e2:12:dc:f3:70:65:db:c4:a1:da:6b:
23:26:f9:a7:c5:98:a9:90:18:e0:fb:a9:e7:67:ae:
4b:f8:a2:2d:40:71:48:37:8f:60:65:df:44:d0:6a:
18:0a:c4:c1:06:ff:63:bb:13:fc:0f:65:61:5e:22:
1f:8c:aa:1e:58:be:9e:cf:ff:15:57:fe:bf:06:32:
17:78:57:bc:f3:d7:be:c9:d4:f1:d2:0f:55:a2:97:
f3:0a:a6:64:c8:e6:ee:c0:28:68:79:0c:65:49:87:
5f:b4:cf:df:50:c6:80:9a:55:c7:3c:49:40:d9:ed:
c7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7A:F4:11:F8:D1:8F:66:55:03:F9:13:28:45:F1:E1:91:DC:F1:29
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:45:05:ec:ed:5a:8f:33:02:c1:0c:07:5c:91:17:68:e0:38:
a1:72:b0:1d:f5:fd:1b:bb:5a:67:5d:72:01:71:d1:a2:26:fd:
2d:85:1b:b9:74:29:a1:20:d6:e7:b9:b4:3f:06:7a:57:66:b6:
3d:73:b3:23:83:6c:e1:34:25:8c:c4:66:97:e9:fb:8f:bf:2d:
d6:3a:8d:08:8c:9e:88:14:99:d1:80:26:a9:2a:24:83:be:80:
1d:ef:5e:21:fd:c8:0f:99:cb:a3:11:c9:61:06:45:1d:59:82:
7a:20:9f:06:54:21:69:42:96:59:82:24:7b:02:99:ac:59:4c:
63:19:e7:5a:e3:1e:23:c5:e8:97:7b:93:de:f7:81:40:81:6a:
95:ab:21:fd:02:0d:e2:34:ca:37:05:4b:37:22:f7:82:d5:08:
a1:e1:a9:cb:ab:a1:be:59:d5:62:b5:95:38:49:01:1f:cb:05:
70:b0:96:94:c6:68:54:55:e3:ab:1f:b6:15:a5:af:b7:87:3e:
e1:77:0d:80:cb:f6:4b:ae:07:6b:66:52:1d:6d:03:9c:09:7c:
fa:ab:30:71:22:35:74:c2:86:5c:23:49:a3:84:03:d5:b8:f1:
a5:72:cb:3f:50:d6:a6:b7:84:36:23:6b:15:0a:8d:1e:62:5a:
c9:c1:63:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fM5wNiaF6itt6d6Owrv6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZWUyYmY0M2YyMWE4MWM0OTJjNmU2YTlmYzZmMDc0ZDJm
MGEyMTcwHhcNMjUxMDE5MDgwMTI0WhcNMjUxMDIwMDgwMTI0WjAzMTEwLwYDVQQD
EyhkNjdhZjQxMWY4ZDE4ZjY2NTUwM2Y5MTMyODQ1ZjFlMTkxZGNmMTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxhaqqY2iyRuGlTHbHJQ539mIz6q
GcG2+5aa2HSQh8CelMBa6ivWnoUUaVwNrw9e6rWZLwxK7HHTtnnW3cc/0tj6AufZ
dxy16L/jehKKrNf5X0+WOQvWagklruA5ZDJAZDOVuu3kYwBdhpgSz3VeTTMUIIMr
77umOlO3zyCmYseuHiOrXDS5Dmcn4hLc83Bl28Sh2msjJvmnxZipkBjg+6nnZ65L
+KItQHFIN49gZd9E0GoYCsTBBv9juxP8D2VhXiIfjKoeWL6ez/8VV/6/BjIXeFe8
89e+ydTx0g9VopfzCqZkyObuwChoeQxlSYdftM/fUMaAmlXHPElA2e3HDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZ69BH40Y9mVQP5EyhF8eGR3PEpMB8GA1UdIwQY
MBaAFN/uK/Q/IagcSSxuap/G8HTS8KIXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTIt
MjhkNzhlYjlmMmRjLzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTItMjhkNzhlYjlmMmRj
LzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANkUF7O1a
jzMCwQwHXJEXaOA4oXKwHfX9G7taZ11yAXHRoib9LYUbuXQpoSDW57m0PwZ6V2a2
PXOzI4Ns4TQljMRml+n7j78t1jqNCIyeiBSZ0YAmqSokg76AHe9eIf3ID5nLoxHJ
YQZFHVmCeiCfBlQhaUKWWYIkewKZrFlMYxnnWuMeI8Xol3uT3veBQIFqlash/QIN
4jTKNwVLNyL3gtUIoeGpy6uhvlnVYrWVOEkBH8sFcLCWlMZoVFXjqx+2FaWvt4c+
4XcNgMv2S64Ha2ZSHW0DnAl8+qswcSI1dMKGXCNJo4QD1bjxpXLLP1DWpreENiNr
FQqNHmJaycFjeg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:02 2025 by rpki-client