Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier: KJPE+Hj8dTVlJqjVO4dI7re8HN4lOIhfvIV4JGhkaR8=
Subject key identifier: 4F:67:42:27:3E:F4:0F:74:86:F1:81:1A:7B:69:A2:0F:35:70:73:80
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 019A006C4BF3C51879868E3579B153147F6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number: 12AE
Signing time: Mon 20 Oct 2025 07:01:28 +0000
Manifest this update: Mon 20 Oct 2025 07:01:28 +0000
Manifest next update: Tue 21 Oct 2025 07:01:28 +0000
Files and hashes: 1: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: 7kke1GRn4FRl4/Xre4Y4SvfLMrxPZKwSl9e7MCLuz5o=)
2: I5wQnrgvMCaYn9C8yDvoLQWI0Fs.roa (hash: LLp7jSaPRxKkmfQPCgmC3oWPlWcodXukIf+OL2Y6Xy4=)
3: h62oWk5e6sS8zDCwC47t23u4hGk.roa (hash: KIOG5EX7T8Dsm3c4MU4hyZU5pek+PylPfC7rdsiyJoY=)
4: jGoTTL_48yWV-ohs_hgmOjEwT4E.roa (hash: Q0KSsruo9YLV5d/ARziN3CSGqP5OR6gQhOox+XP9FnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:4b:f3:c5:18:79:86:8e:35:79:b1:53:14:7f:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Oct 20 07:01:28 2025 GMT
Not After : Oct 21 07:01:28 2025 GMT
Subject: CN=4f6742273ef40f7486f1811a7b69a20f35707380
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:8b:02:cd:7c:02:96:9a:aa:69:b4:09:01:
4a:4b:ff:bc:09:28:cb:20:1a:52:49:8f:59:4c:aa:
34:be:66:e8:cc:2e:a2:38:f2:6e:43:2f:68:f0:b0:
04:ef:4d:d9:55:7b:68:13:58:82:0d:50:30:b7:4c:
68:26:8f:15:05:fc:2b:82:53:21:1d:ec:af:dd:44:
19:03:f7:3c:2c:d8:cc:7a:43:ad:fa:84:7b:55:34:
60:78:7b:c0:59:f3:2b:02:00:84:05:89:e1:e3:1b:
6e:a6:f7:92:0c:4f:e3:42:54:7c:df:da:e8:37:05:
a7:31:1d:1c:3e:54:bf:93:25:ba:8e:2c:25:95:40:
34:c1:e5:b5:f9:2a:17:9b:d9:b3:18:22:9c:58:a0:
95:61:72:ac:84:2a:94:87:7b:d7:15:1c:4f:48:bb:
29:f8:07:17:be:3a:81:91:07:49:8f:9b:50:f8:94:
e8:94:4d:e8:37:77:d2:ca:aa:2d:e4:d4:18:04:c9:
22:b7:a4:94:3b:84:9e:95:f2:aa:95:14:f8:1d:63:
d1:e8:be:fa:25:bb:4a:44:ed:99:23:89:12:e1:92:
d7:c0:32:73:e8:e0:13:92:47:ae:07:92:93:e5:ca:
d3:6e:e5:36:39:67:61:71:7e:1e:8f:ec:52:03:d2:
9a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:67:42:27:3E:F4:0F:74:86:F1:81:1A:7B:69:A2:0F:35:70:73:80
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:c2:c4:15:6e:be:d8:58:fb:c0:d3:32:df:9b:8c:82:39:7e:
54:c8:fc:75:a8:8e:6d:37:f9:e8:23:c3:be:6b:ff:93:b9:53:
38:d5:79:bd:77:b0:84:55:29:b5:75:77:c6:18:6d:f9:b5:9f:
e5:47:17:7c:93:b5:b2:7f:34:1c:be:10:64:cf:3c:38:0f:03:
64:5b:55:1a:7f:17:66:84:33:e4:b9:2f:f9:1e:e5:b4:16:36:
65:68:8e:f9:49:8b:1a:f6:6f:85:97:0d:37:8e:79:fe:45:a4:
11:a9:1f:33:a5:e9:9e:e9:fa:f2:51:2e:49:7c:57:fb:d5:cd:
f2:19:61:3b:3a:03:8c:0f:14:7b:93:ef:87:44:55:08:c8:24:
bb:80:8d:7a:f2:11:4b:55:86:7e:8b:7a:80:01:d6:fa:2c:6c:
9f:40:f5:fd:f0:e6:48:d0:f5:db:84:44:62:64:20:b0:c0:fe:
0f:fc:c1:54:8b:f3:a2:93:c2:7e:4d:1c:23:0c:1c:86:4b:a6:
ae:38:d5:7d:ed:7c:a9:ef:50:2b:33:10:b4:0c:d7:f5:46:c2:
99:52:b0:60:d3:d2:44:e0:12:0a:aa:68:84:ec:60:6e:79:5e:
19:b8:cd:80:37:1e:07:50:d6:91:05:3e:4b:02:17:72:da:b0:
45:7c:31:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:58:51 2025 by rpki-client