Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: pf6u4ByZKTSYiJ7GrLTLK9/szB7Ofl0O8P4RfcvzVoA=
Subject key identifier: 37:81:93:3C:34:B0:41:EF:96:E6:33:18:8A:85:71:D8:98:79:A8:89
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 0199FD6AD770C117732E4A7617770CB1F4E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 02BC
Signing time: Sun 19 Oct 2025 17:01:01 +0000
Manifest this update: Sun 19 Oct 2025 17:01:01 +0000
Manifest next update: Mon 20 Oct 2025 17:01:01 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: Cr71udw9p9Yt+GIsOiAT+eraPtMQRtFMyQrcQojIHbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:d7:70:c1:17:73:2e:4a:76:17:77:0c:b1:f4:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Oct 19 17:01:01 2025 GMT
Not After : Oct 20 17:01:01 2025 GMT
Subject: CN=3781933c34b041ef96e633188a8571d89879a889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:43:d7:cb:9a:0e:47:7e:87:89:6f:ea:06:
b5:e9:9f:69:13:07:9d:66:a0:1b:07:9a:dc:09:1f:
4d:b6:b2:d2:e2:e6:31:1f:09:eb:3e:b2:4f:66:14:
1d:38:53:a3:fe:0e:85:5f:73:bb:76:8e:84:26:2d:
c1:d6:19:b1:36:0a:4b:18:0b:42:32:cc:1f:b8:39:
b1:bc:e3:6c:eb:39:9b:a1:7b:a8:13:d1:68:31:da:
f6:95:29:6f:1a:02:c5:6e:75:ac:d8:bc:1e:ab:59:
f4:4d:8c:08:6f:10:dd:d9:cf:04:5e:a5:36:2a:94:
d4:a7:2e:c9:93:f6:aa:cc:83:53:c4:87:69:cd:57:
f8:23:aa:81:50:00:69:ec:28:24:c8:71:e6:35:18:
0d:01:06:96:d1:89:d7:e3:56:cc:8c:30:88:9e:f6:
5a:01:e8:d6:1a:ed:73:61:8b:8f:f3:1b:12:8d:3b:
38:ca:79:cc:ee:9f:5d:c3:d9:e0:f1:8a:92:34:39:
b4:a9:b2:69:60:51:08:e9:a0:65:45:57:09:ff:66:
33:7a:5f:96:33:10:ae:50:eb:3c:33:e0:49:c7:e6:
b1:f6:4c:1a:1e:e5:fd:7e:6e:90:ae:bc:6b:78:a4:
a9:7f:d2:0a:3c:c2:f4:3c:ff:44:7a:86:3f:d4:39:
96:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:81:93:3C:34:B0:41:EF:96:E6:33:18:8A:85:71:D8:98:79:A8:89
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:0d:ab:73:8c:23:27:c6:96:34:b7:0c:0a:65:7b:c9:4c:48:
e2:64:f0:c6:11:01:9a:a7:ea:6d:7d:0f:bf:c8:e9:b5:0f:f0:
e1:f4:06:b2:76:84:87:d4:83:de:73:2b:f7:e2:c2:73:3e:d9:
be:85:5d:63:bd:b3:f9:2d:42:e5:c9:e2:3d:98:c6:0e:fb:a9:
8e:b3:f8:97:ef:07:38:ba:2f:d2:c3:c8:cb:ea:66:02:25:16:
7a:55:09:1f:e7:05:dc:7e:93:66:6e:69:83:dc:d8:8f:53:40:
be:5c:19:ef:fd:85:7e:f2:a4:5b:e6:02:f1:33:e5:b5:8b:0c:
17:96:70:26:65:09:6e:d9:0b:a4:a1:97:fb:83:71:28:b9:bf:
0d:6a:16:a4:3d:45:f7:d6:20:a1:48:69:51:5c:bc:3c:ff:d7:
9f:eb:ac:84:1b:8b:11:13:27:86:c5:39:ed:38:04:5a:66:d6:
fc:4f:f9:31:cd:50:6e:2b:b0:0c:b0:80:94:e1:d2:69:d5:02:
02:16:a5:f3:b8:04:6b:1f:0d:bf:09:e4:88:86:b5:ea:ee:d5:
8f:de:73:41:c9:05:30:e2:29:78:27:dc:46:ac:de:63:82:b7:
e4:39:04:2d:0a:52:1b:24:5f:70:78:68:44:d3:8e:ee:07:f1:
33:d8:fe:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:31:08 2025 by rpki-client