Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: ui8MQKNYfhPrExKae/wegBSc7OkS2YNnHeUv1mZgyd8=
Subject key identifier: 22:3A:7D:1C:FC:F6:BE:47:6F:F8:C9:04:FF:1D:2E:D9:63:FD:40:EC
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 0198D65FC9FCC644FF1E533BF0D3F54FB324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0A4F
Signing time: Sat 23 Aug 2025 10:00:58 +0000
Manifest this update: Sat 23 Aug 2025 10:00:58 +0000
Manifest next update: Sun 24 Aug 2025 10:00:58 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: Mg14iC1au5lqUw8Cq61+TCPRFCuQmgfvDfbYIQHekjk=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:c9:fc:c6:44:ff:1e:53:3b:f0:d3:f5:4f:b3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Aug 23 10:00:58 2025 GMT
Not After : Aug 24 10:00:58 2025 GMT
Subject: CN=223a7d1cfcf6be476ff8c904ff1d2ed963fd40ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dd:99:b2:8d:b9:f6:df:fe:dc:2d:9d:0f:73:
12:d2:8b:5c:2a:ee:00:1c:6b:51:2a:8f:a7:5d:3a:
80:30:34:c3:54:72:ee:d9:77:92:20:64:ff:01:88:
58:cb:26:6f:df:26:c7:b5:5e:cc:6a:71:c4:9a:8f:
21:11:ec:a8:6a:ab:fd:d8:1b:1f:9a:1b:d2:6b:e4:
c3:26:40:6e:4a:b1:3c:64:d6:a6:ba:02:b0:cd:69:
21:ee:cb:db:95:d8:27:9e:69:dc:7a:38:ef:1b:28:
62:f9:63:fa:6e:a5:5b:f0:39:cd:89:3a:67:59:ad:
57:e7:dd:76:65:00:69:c0:aa:ea:98:53:96:88:00:
87:e6:7a:b8:ed:67:40:d6:7d:13:b0:e0:20:74:e4:
23:f6:62:a0:3a:a6:30:8a:40:3d:95:cf:73:d1:50:
52:fb:db:ba:5a:a2:87:a0:b4:3d:e3:7c:bb:5e:ea:
d7:d4:50:8d:33:21:6b:97:dd:1d:d3:25:4c:d8:fb:
19:19:e4:62:3e:90:74:83:8a:db:9c:66:8c:62:b2:
e9:81:5a:5b:d6:ad:46:7f:3e:47:91:df:f1:0c:64:
61:30:4d:c1:b3:50:ef:f2:d1:80:4b:34:85:59:9c:
53:df:ca:38:b0:d0:14:bc:6b:0b:65:dd:6c:25:15:
c7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3A:7D:1C:FC:F6:BE:47:6F:F8:C9:04:FF:1D:2E:D9:63:FD:40:EC
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:20:9f:83:fb:4e:bf:4e:28:48:d8:1c:4d:78:ed:e4:2a:15:
53:58:e6:d3:cc:67:ce:67:d9:b9:39:43:1d:90:4f:dd:00:46:
31:8c:58:af:9b:b7:17:40:34:49:ca:48:8c:c9:65:48:e3:6b:
cf:19:4d:d3:61:10:66:58:e7:d9:e7:1c:09:03:a1:7e:ee:1d:
7b:bc:50:25:94:9a:12:99:ab:4a:3b:d1:fe:55:3a:97:5a:db:
d1:5b:55:62:05:01:b1:b9:77:33:91:b7:7b:d9:65:4a:b3:70:
63:7d:79:61:42:ec:3e:ed:f7:6e:66:5f:e1:83:9e:43:c3:dc:
d4:b2:42:bd:8b:cf:5f:0b:03:d0:2a:00:a1:44:4e:77:b4:90:
1e:22:db:07:9e:03:26:68:82:7d:67:81:ef:2e:f6:fe:b2:91:
4e:17:d3:dc:89:9f:1a:96:5c:fb:44:d2:ab:76:bd:ad:4f:27:
91:f0:d3:a6:54:90:d1:2c:23:ee:97:2d:90:a6:22:2f:8b:97:
97:62:5e:1b:e4:57:bc:f3:8b:31:c2:c0:2b:c4:1c:ea:bf:82:
f0:44:ab:39:81:92:90:32:3b:bb:39:6e:c8:e4:49:1a:08:34:
51:4e:71:5f:63:e9:ae:54:33:56:f0:b9:42:76:78:48:45:50:
9b:be:58:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:07:46 2025 by rpki-client