Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: dmCzNSpV6RpRHkrOAgKHgmtOA69plcgu7B5+SzNGZEU=
Subject key identifier: 3E:9E:1A:9F:6E:47:4A:ED:AA:5C:0C:61:99:F5:F6:71:30:B5:56:E2
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 0199FCC65BBD275DB4E26E8C5EDAF0453C12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 03EB
Signing time: Sun 19 Oct 2025 14:01:21 +0000
Manifest this update: Sun 19 Oct 2025 14:01:21 +0000
Manifest next update: Mon 20 Oct 2025 14:01:21 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: 3H7iOjjcmOYPe3H0+edelwEBl8uey56pn/FE411vr9M=)
2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:5b:bd:27:5d:b4:e2:6e:8c:5e:da:f0:45:3c:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Oct 19 14:01:21 2025 GMT
Not After : Oct 20 14:01:21 2025 GMT
Subject: CN=3e9e1a9f6e474aedaa5c0c6199f5f67130b556e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:93:ae:a6:3d:6d:c9:3a:dd:a4:0c:1d:34:41:
77:1e:b3:88:be:66:af:a6:1b:a7:6f:a7:fe:ec:ff:
6c:18:74:63:3a:be:42:e7:79:11:f5:b3:2c:a4:46:
57:c2:b4:2b:ae:41:a1:4f:6e:a1:2e:a0:3e:89:ef:
21:9c:2d:e7:e6:1e:55:0b:2e:02:48:ad:41:c5:78:
ff:ce:1d:d8:a5:51:57:86:59:d7:7a:cc:72:c0:58:
14:37:85:e1:53:a9:ec:f0:6c:f8:2d:5f:aa:34:98:
b0:5d:f1:04:c4:52:01:89:d6:77:ef:72:2e:e6:71:
3b:a1:9f:3a:5d:cb:19:63:4a:b8:4f:35:e5:16:8d:
ab:6e:de:2d:e4:f9:a9:b6:8b:8d:17:ad:e4:97:f1:
a5:80:57:53:81:9e:ac:ac:5d:ef:c3:aa:4a:2c:39:
db:69:f6:9e:e1:04:22:47:60:20:91:a9:5a:e7:f4:
ff:b9:6e:49:3b:6e:2c:8c:f8:06:86:3a:78:5e:59:
a4:47:7e:39:f2:d5:2f:7b:64:fb:90:45:3f:32:9f:
e2:b2:1d:9e:87:50:a5:f9:76:8f:dd:b3:5c:b4:df:
d2:69:8c:64:ed:4e:06:37:8b:6b:c0:29:f7:f4:d5:
c0:8b:26:d1:51:6b:14:05:42:da:a5:1f:11:4a:8e:
88:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9E:1A:9F:6E:47:4A:ED:AA:5C:0C:61:99:F5:F6:71:30:B5:56:E2
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:44:1a:c2:db:cf:b5:13:94:8f:1a:32:60:c5:a1:8f:99:a4:
3f:99:a5:d6:66:90:07:f5:85:c7:3d:c1:33:66:a9:ee:72:0b:
8f:e0:b9:29:96:ce:c8:33:44:fc:2a:fa:34:58:1f:2b:2b:38:
3e:cd:8f:22:b2:eb:a6:0f:10:fe:ac:16:35:cb:09:37:63:87:
35:5b:00:9e:10:72:d8:1f:8b:5f:7c:07:64:7b:ac:b9:bc:de:
e9:63:73:37:68:c6:61:3b:b8:9e:5d:95:58:a6:90:2a:e6:6a:
ce:c4:97:f2:9a:6d:8a:84:3c:d0:5b:b0:ab:78:68:07:f6:fb:
d7:05:12:14:20:02:81:59:5a:28:15:6e:4f:5e:7f:89:85:ea:
a0:01:96:65:26:a2:04:95:f4:84:0c:25:15:4b:a0:7b:c7:b9:
57:40:7c:5f:d4:6a:4e:b5:7f:3f:d6:74:61:ee:6c:28:5b:87:
50:ac:51:d4:1e:0e:e1:0e:8a:0b:01:dd:91:44:8d:25:9a:96:
b8:fa:87:48:03:a8:99:72:ab:37:6e:82:f2:74:e9:e1:64:c3:
0f:8b:8c:66:db:95:c7:90:54:ca:08:ad:79:3d:3d:af:90:51:
37:48:82:c0:8e:b2:33:24:dc:57:4b:cb:af:e0:f9:e4:a8:d1:
87:7f:7a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:30:06 2025 by rpki-client