Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
File: 3XF0IQf16FBis-CuZa-kuuZw4Es.mft (raw, json)
Hash identifier: a54bhjgNftJW0qQxDXhdyPqNWnAXN9Cs3mLa34FMsoo=
Subject key identifier: E2:81:26:98:E9:D1:8D:0A:84:58:E2:25:DB:17:05:AC:72:4A:CA:07
Authority key identifier: DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
Certificate issuer: /CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Certificate serial: 0198D5BB798B3E8392383966507206D969A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
Manifest number: 04CA
Signing time: Sat 23 Aug 2025 07:01:30 +0000
Manifest this update: Sat 23 Aug 2025 07:01:30 +0000
Manifest next update: Sun 24 Aug 2025 07:01:30 +0000
Files and hashes: 1: 3XF0IQf16FBis-CuZa-kuuZw4Es.crl (hash: UeD6KywoZykFn/1R66YG6N7U/bC2IJCX7zJXY9rhj7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:79:8b:3e:83:92:38:39:66:50:72:06:d9:69:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Validity
Not Before: Aug 23 07:01:30 2025 GMT
Not After : Aug 24 07:01:30 2025 GMT
Subject: CN=e2812698e9d18d0a8458e225db1705ac724aca07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ea:a3:2e:34:9d:58:1e:bc:35:fd:bd:38:e6:
70:0f:2a:33:21:46:b7:19:cc:d4:d0:52:cd:6b:20:
ea:cc:0b:42:79:ae:4d:82:e1:22:09:f0:21:d9:f1:
75:4b:f7:cf:79:50:9b:b6:85:25:e1:c9:e9:72:d1:
2c:e1:88:24:1a:f9:4f:b8:79:77:e1:59:14:39:8f:
ba:8c:dd:1c:e4:cc:67:aa:c2:26:bd:0f:12:25:1c:
d8:a7:f5:ad:93:6a:db:69:dc:5a:46:01:ec:6d:a8:
d7:de:ff:67:aa:91:2c:a5:94:c8:c3:d9:6b:18:a3:
36:85:18:46:3f:43:ec:74:96:3d:ba:5a:3b:da:0f:
65:2c:59:a0:d3:3c:f9:5d:22:a3:bb:7f:29:42:c5:
51:8e:04:ec:ce:75:43:da:98:56:15:c7:6b:26:a0:
c2:c0:eb:d6:9e:64:01:39:6d:fb:36:11:93:17:4d:
40:d1:0b:81:9e:68:f3:b3:1d:e5:09:b4:db:60:49:
d6:28:44:bb:89:e1:b9:d9:0b:ce:e8:03:06:18:92:
67:7d:f9:b8:5f:60:1e:ea:98:57:00:bf:9b:8f:a1:
73:b2:30:7a:86:0c:a5:b9:23:42:3c:d9:d5:d8:6e:
f9:7a:ab:8f:8d:93:8e:b8:76:14:37:ad:f6:5e:0b:
4b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:81:26:98:E9:D1:8D:0A:84:58:E2:25:DB:17:05:AC:72:4A:CA:07
X509v3 Authority Key Identifier:
keyid:DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:9e:0d:75:f9:51:d9:0f:47:ce:d1:62:60:89:17:af:17:82:
a0:70:55:63:38:a9:fe:b6:14:de:8e:88:f5:24:02:ef:43:cf:
ba:cb:74:92:c1:e0:3f:33:27:a6:21:7a:d6:e8:4c:8f:cd:b2:
38:da:32:fa:b8:58:30:6e:35:8c:73:90:53:37:67:f2:48:92:
0c:94:3a:27:41:89:44:3a:20:f0:e7:38:66:5f:92:aa:97:1c:
62:a8:ed:cc:ce:77:9a:cc:da:d0:58:f3:fe:b5:27:67:e2:7a:
32:d7:f2:ae:53:67:9c:25:98:50:f8:7c:69:15:40:05:58:bf:
20:d9:bb:a8:ac:b8:24:4f:02:0f:d0:ce:37:b9:08:71:1e:eb:
72:e5:12:ce:75:bc:c2:62:22:f7:50:00:de:e3:5c:15:94:4c:
8c:08:68:98:05:80:4e:c0:7d:b1:55:ef:10:80:06:90:9e:da:
e2:6a:32:a1:84:c6:38:d5:13:3f:69:8b:e7:a3:8f:e7:76:1c:
e8:4f:e0:65:fb:11:23:98:40:2e:7b:f1:66:cb:a2:1e:a4:2e:
88:fd:16:2a:86:5e:f6:a5:3a:80:bb:55:99:37:dd:26:3f:50:
42:00:a9:6f:28:b7:34:ea:6e:21:7f:b1:44:e2:99:7d:5c:31:
48:44:b7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:43 2025 by rpki-client