Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: z7k5RtqrSSV2rm/oc/LYvvcsmU9UKwBFvxlkz3CMl6w=
Subject key identifier: 27:04:81:2F:76:E2:EE:F1:15:7D:FC:4E:D0:0F:A1:D9:77:73:44:B1
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 0198D6298E419175199025BED9E09F217D3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 1655
Signing time: Sat 23 Aug 2025 09:01:44 +0000
Manifest this update: Sat 23 Aug 2025 09:01:44 +0000
Manifest next update: Sun 24 Aug 2025 09:01:44 +0000
Files and hashes: 1: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: LEWhk6fy2yy4zEzYOGJshbVQaoFkvM/Bbt5ZCpSXjZc=)
2: 8dUZQtn2PiQ2Mqqoq8PbDYMN-KQ.roa (hash: gfuwHblEZ674N+Ai1/PQK2tVCiQRLzWCCJGV8+Mfryo=)
3: Low4CRi4iGKYokty-NINmJn09rg.roa (hash: Mly1uM7PqUcjuRWWihLVa+ejMa5zwEjs5HqRkIM9ZCc=)
4: TUldFuXRlNkhcxG2k3pbkLp8w6k.roa (hash: u8w+hKuVRJcapFna3Gt95nB+zwn2rJ1IH60Do+ZSEr0=)
5: VFLtaw7ddcrkuS71SLZjd28hT9Y.roa (hash: wkImuoriz8/Wt+wr39TPtXLgxrVgYHqbWY2XyO00qX4=)
6: fWDdDEZ5-7TJ7ifcAQ9Kizx3VI0.roa (hash: 9iAjE9rwQQFIjLwRuw0Wl4wwOwQae4btRIJRt6LJVxE=)
7: iYMgW4EcYcU5AKm4CceLlPmJSsA.roa (hash: 7zWW49XDo1LsXGWIP2om4UTMjsubF7Ml4DbV3OJ7N00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:8e:41:91:75:19:90:25:be:d9:e0:9f:21:7d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Aug 23 09:01:44 2025 GMT
Not After : Aug 24 09:01:44 2025 GMT
Subject: CN=2704812f76e2eef1157dfc4ed00fa1d9777344b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:df:ef:89:54:e6:73:58:3f:0b:2e:5d:2a:
ce:c6:cc:2a:0b:3b:a6:cc:63:d8:37:1c:68:7c:0d:
d9:f9:e9:13:dc:1a:94:0b:0f:c9:58:71:78:2d:c5:
ac:28:f4:4a:1d:f6:94:5d:9f:f8:96:01:05:27:9e:
cd:6a:e9:73:7c:aa:a0:ae:af:f4:66:55:95:7e:68:
69:fc:13:a8:ac:3a:10:15:60:17:01:9a:9f:90:a4:
49:d1:e5:ba:44:2f:87:2a:13:ea:6b:b4:7f:61:96:
41:57:4f:e5:31:56:27:4f:02:9d:ab:1f:73:81:83:
a7:ad:1c:46:22:40:4b:e4:a4:fe:89:ee:fd:24:bd:
18:79:5c:17:ec:e1:fb:5e:c1:4a:38:a8:1d:00:a8:
0c:98:89:78:45:46:6a:be:6b:46:29:50:b9:ab:45:
8b:3f:42:a4:69:04:1b:c4:64:ae:d6:14:d1:17:b7:
2a:aa:39:33:91:54:8d:51:f7:27:25:47:d5:28:65:
db:44:30:a2:2e:55:4b:85:a4:9c:98:01:ea:0a:b5:
e7:00:4e:d3:a2:26:1a:0c:af:3b:b5:ad:5e:f3:53:
4f:7f:f6:8f:77:ce:41:4c:49:c0:2d:2c:f5:e4:bf:
85:81:ba:93:17:c5:63:15:60:0a:e0:e7:64:f8:b3:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:04:81:2F:76:E2:EE:F1:15:7D:FC:4E:D0:0F:A1:D9:77:73:44:B1
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:c9:b6:13:fb:ef:9d:51:7d:b6:e5:35:58:2d:02:2c:2f:dc:
31:d8:6f:2d:43:df:fe:67:92:fc:2d:68:8b:33:c2:26:73:4e:
83:97:3a:e5:ef:2f:1c:c9:5e:0e:91:fd:d7:88:1f:b6:60:38:
37:2f:2c:15:61:2f:54:f1:f2:3d:58:a1:4f:48:ab:33:72:75:
c8:2e:50:d0:81:8d:ee:16:56:56:1f:19:05:77:f5:c0:a4:1b:
ed:db:8c:4a:2b:24:f1:a7:33:b8:5e:09:7a:78:f2:d8:2e:d6:
8d:9f:39:2b:50:db:80:bb:ab:8e:54:83:28:52:6a:53:99:aa:
d3:bc:e8:9f:48:6d:2a:f9:e2:a2:69:16:d6:c6:be:47:b9:cf:
97:e3:14:6e:8a:67:0c:fa:6c:17:6b:5f:bb:79:32:4b:d4:41:
ee:ae:f8:bf:86:34:e5:d8:49:0d:ab:25:c7:43:ea:f0:b5:60:
b2:97:a2:3e:79:86:ac:f7:21:92:83:7b:94:ae:7a:44:53:37:
26:da:07:9e:c5:b4:ed:2c:c2:a8:a6:f9:60:23:72:68:0d:86:
21:20:a6:8a:d0:44:59:64:34:4d:2a:69:5b:be:2f:2b:9e:3c:
9f:74:53:54:fb:89:a5:0d:f5:c4:91:db:96:b3:aa:c9:c9:67:
5c:9e:17:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWKY5BkXUZkCW+2eCfIX07MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZWUyYmY0M2YyMWE4MWM0OTJjNmU2YTlmYzZmMDc0ZDJm
MGEyMTcwHhcNMjUwODIzMDkwMTQ0WhcNMjUwODI0MDkwMTQ0WjAzMTEwLwYDVQQD
EygyNzA0ODEyZjc2ZTJlZWYxMTU3ZGZjNGVkMDBmYTFkOTc3NzM0NGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPff74lU5nNYPwsuXSrOxswqCzum
zGPYNxxofA3Z+ekT3BqUCw/JWHF4LcWsKPRKHfaUXZ/4lgEFJ57NaulzfKqgrq/0
ZlWVfmhp/BOorDoQFWAXAZqfkKRJ0eW6RC+HKhPqa7R/YZZBV0/lMVYnTwKdqx9z
gYOnrRxGIkBL5KT+ie79JL0YeVwX7OH7XsFKOKgdAKgMmIl4RUZqvmtGKVC5q0WL
P0KkaQQbxGSu1hTRF7cqqjkzkVSNUfcnJUfVKGXbRDCiLlVLhaScmAHqCrXnAE7T
oiYaDK87ta1e81NPf/aPd85BTEnALSz15L+FgbqTF8VjFWAK4Odk+LP3OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCcEgS924u7xFX38TtAPodl3c0SxMB8GA1UdIwQY
MBaAFN/uK/Q/IagcSSxuap/G8HTS8KIXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTIt
MjhkNzhlYjlmMmRjLzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTItMjhkNzhlYjlmMmRj
LzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALcm2E/vv
nVF9tuU1WC0CLC/cMdhvLUPf/meS/C1oizPCJnNOg5c65e8vHMleDpH914gftmA4
Ny8sFWEvVPHyPVihT0irM3J1yC5Q0IGN7hZWVh8ZBXf1wKQb7duMSisk8aczuF4J
enjy2C7WjZ85K1DbgLurjlSDKFJqU5mq07zon0htKvniomkW1sa+R7nPl+MUbopn
DPpsF2tfu3kyS9RB7q74v4Y05dhJDaslx0Pq8LVgspeiPnmGrPchkoN7lK56RFM3
JtoHnsW07SzCqKb5YCNyaA2GISCmitBEWWQ0TSppW74vK548n3RTVPuJpQ31xJHb
lrOqyclnXJ4Xfw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:22 2025 by rpki-client