Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File: 3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier: ngMFJ2iNoJ/UF7/ctxgbmAahXMzgqswmvtpkepAf4f0=
Subject key identifier: B4:46:18:69:8A:30:1A:60:78:21:1B:37:52:FC:8E:8B:DE:95:A1:ED
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer: /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial: 0198D4E0690BEF36BB64F9B4EF1267AAE19D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number: 0CDA
Signing time: Sat 23 Aug 2025 03:02:13 +0000
Manifest this update: Sat 23 Aug 2025 03:02:13 +0000
Manifest next update: Sun 24 Aug 2025 03:02:13 +0000
Files and hashes: 1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: X6owIMwHthekpmuIseOXSMB1yDG0Vo3PLXr62hVrFsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:69:0b:ef:36:bb:64:f9:b4:ef:12:67:aa:e1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Validity
Not Before: Aug 23 03:02:13 2025 GMT
Not After : Aug 24 03:02:13 2025 GMT
Subject: CN=b44618698a301a6078211b3752fc8e8bde95a1ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1c:d7:3e:14:f5:24:17:82:3c:c2:bb:d0:90:
fe:88:bf:47:1a:c0:1a:f8:5e:7b:8a:d1:14:dd:25:
c2:1d:0e:17:01:97:8e:ab:6e:32:0b:fc:7d:a2:13:
ba:30:92:08:e7:a7:bc:24:e4:93:04:d0:e5:42:60:
b2:81:bf:66:5c:e4:4f:3c:b8:41:4a:67:97:48:b9:
47:c6:b2:1f:9f:df:19:25:ec:dc:ed:cc:4c:6d:91:
5e:98:7c:a8:87:17:5e:c4:04:19:e4:cc:6c:88:02:
92:c2:27:d5:27:38:e0:f2:7c:41:aa:eb:b4:e6:2d:
d1:b4:4d:49:f4:21:0a:a8:81:78:36:85:cb:9e:75:
f4:31:d8:9f:f3:de:31:a3:8b:7f:17:fb:e7:4c:e8:
f8:b1:ff:b1:6f:a1:c7:dc:51:b3:d8:6c:92:f0:a6:
7c:45:6e:ef:6a:e6:af:c8:6a:b5:fb:29:76:13:57:
17:af:9e:ed:fd:c1:88:b6:ba:b6:3b:a6:8d:17:89:
ac:7b:f5:c9:a8:89:37:90:fe:d1:ab:1b:07:94:e3:
1c:7b:6d:c0:16:64:c4:05:53:5a:94:ff:9e:20:53:
2d:d1:2d:ff:b5:90:f5:99:14:69:5a:a1:61:c3:96:
47:1b:9e:55:66:af:c6:2e:c4:8e:27:6c:6c:1c:34:
b0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:46:18:69:8A:30:1A:60:78:21:1B:37:52:FC:8E:8B:DE:95:A1:ED
X509v3 Authority Key Identifier:
keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:cd:fd:e4:22:37:bf:18:a7:99:ec:86:f4:34:dc:c5:e5:ff:
c5:79:fe:b3:7d:70:a7:13:48:9f:d3:d1:b3:ed:1b:94:bf:32:
f2:72:96:25:3a:02:e7:a1:e0:28:2f:05:67:9a:4b:25:cf:2d:
9d:8a:6f:d7:f1:bc:b7:a8:90:4c:be:c9:6f:99:ae:fd:ad:98:
59:16:f4:2b:27:3f:67:2c:07:7d:fc:8e:65:27:22:6b:b8:13:
73:20:07:52:c0:1d:b3:c9:81:e1:7b:af:d4:93:e8:41:8a:85:
1e:91:0a:62:fe:63:69:b6:58:5e:bf:7c:60:57:1a:f6:07:7c:
ca:59:78:34:7f:df:66:38:2c:81:fb:4f:40:89:71:b8:70:ab:
51:4a:c2:72:53:1f:1f:02:6e:48:34:ac:df:68:9e:7a:d2:18:
f1:13:2f:f1:67:9e:72:0e:b3:da:8a:4e:38:12:7b:73:bb:c9:
af:a4:4b:bb:fe:05:b8:a9:67:9c:64:4c:61:4c:a1:bc:20:6a:
7a:9e:d9:22:2f:0d:5c:20:15:ca:ab:45:16:bd:0d:0b:f0:d8:
74:a1:b7:98:d9:dd:79:68:0f:fc:0d:d3:ea:e5:b0:7f:00:b6:
20:49:b7:0d:b9:9f:38:c1:70:1d:e3:15:82:74:1c:6e:af:77:
d5:e1:88:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:11 2025 by rpki-client