Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: TZEcWcPRppPxGVSJS1bHUktycqhmgvUbfF5BgbIh5Xo=
Subject key identifier: F8:C8:4F:C3:A8:24:9D:A1:31:BE:13:5B:70:9C:7C:23:83:71:50:E4
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 0199FFC8AE9D0B244672DFF7DAFCDE789CF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0AE9
Signing time: Mon 20 Oct 2025 04:02:45 +0000
Manifest this update: Mon 20 Oct 2025 04:02:45 +0000
Manifest next update: Tue 21 Oct 2025 04:02:45 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: Ssxbfh6fK+1i0isPLWOpKU/QBvtgIFnp3v8XTsBjIXQ=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:ae:9d:0b:24:46:72:df:f7:da:fc:de:78:9c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Oct 20 04:02:45 2025 GMT
Not After : Oct 21 04:02:45 2025 GMT
Subject: CN=f8c84fc3a8249da131be135b709c7c23837150e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e1:f5:da:de:4d:23:51:dc:45:0d:3c:03:e6:
32:99:8d:77:70:5f:56:7d:aa:0d:a0:1e:81:38:d0:
31:c4:51:f4:6f:06:3e:ee:33:f7:73:0f:51:9e:c8:
71:78:ac:fc:ff:6b:00:4d:da:60:54:7c:83:86:53:
f3:a3:37:fd:f8:3a:af:b7:b2:40:05:8b:91:09:e8:
be:66:f8:40:27:85:d8:1d:4c:40:47:9a:c2:65:41:
2e:e1:56:b4:d8:3e:4d:d0:c1:1e:d9:9e:74:cc:0d:
2b:7c:e2:4e:20:7a:55:bb:3a:fb:c2:a0:77:1c:13:
14:9a:44:ee:46:49:fd:52:19:dd:23:08:d3:dc:80:
7a:f9:00:23:ee:7c:17:2b:f9:88:c8:33:b2:ac:61:
98:c7:68:76:e9:1d:f1:3d:5b:96:09:da:68:9a:a5:
2a:dd:96:6e:ab:89:28:a6:e5:59:ba:9d:c5:5f:e0:
5e:2b:d1:58:2d:91:cf:c2:29:5f:18:e6:38:53:ac:
82:2d:25:51:0a:74:97:eb:7d:3d:9f:b7:62:28:07:
67:3b:48:7e:f6:2a:7d:a3:95:01:2f:8b:66:d2:d1:
c1:7d:35:9a:e9:c0:2c:f6:4d:a4:4a:48:03:f5:01:
5e:f8:80:e7:52:87:6e:c3:a7:69:33:72:42:ec:4f:
aa:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C8:4F:C3:A8:24:9D:A1:31:BE:13:5B:70:9C:7C:23:83:71:50:E4
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:cd:b0:a9:89:5a:6f:9f:cd:8f:4c:81:dc:6f:a5:48:8c:39:
e7:7d:a5:72:94:a5:1e:5e:b1:75:29:ae:2c:a2:c1:59:b8:67:
24:bf:3c:a7:1b:f2:ea:b8:6a:06:d3:a7:c9:52:f7:67:0d:e6:
e0:76:ee:7b:a8:b1:6b:92:0f:51:a6:57:5d:40:38:a9:3c:e8:
e9:4b:44:08:6d:eb:a4:6b:73:9c:c0:5b:1c:98:89:81:46:81:
28:72:00:2e:09:96:25:a0:fd:6b:84:18:15:a2:ec:f7:38:c0:
2f:2d:13:fd:a2:35:e1:a2:2d:46:23:3e:5a:c8:de:0a:17:cd:
ab:5a:ae:83:06:db:d7:39:ec:42:28:b7:9a:97:19:fc:ed:c6:
51:4f:fb:0d:36:91:17:04:f4:cb:2a:a7:11:39:d7:a9:7d:2e:
33:da:df:94:50:c5:5a:1d:d1:f0:5f:30:dd:ff:b2:db:9d:b9:
23:6a:6b:99:1f:7e:ef:6a:e7:f7:a5:33:d6:15:c7:b6:47:3d:
b0:ed:47:0c:75:d8:dc:6a:64:1e:80:57:b2:cd:b2:b3:75:36:
04:9e:75:35:76:2f:67:79:5d:19:b1:27:a1:94:25:08:ec:37:
bc:9d:9e:e4:dd:be:6f:bd:6f:85:71:bb:6b:ef:ae:1b:88:9d:
35:cc:02:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:24:34 2025 by rpki-client