Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier: DpHF9aKuqBhEmQpkV0vs//9PHhvtuOkCxfD+GLD4JRk=
Subject key identifier: CF:A8:78:85:7C:95:C2:86:27:72:A2:87:78:A6:33:12:E7:F3:A3:93
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 0198D515DCBD9D7ED2A4D86C6515CFF94783
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number: 1213
Signing time: Sat 23 Aug 2025 04:00:36 +0000
Manifest this update: Sat 23 Aug 2025 04:00:36 +0000
Manifest next update: Sun 24 Aug 2025 04:00:36 +0000
Files and hashes: 1: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: Wi3P5bz45Rvp9WFA2AAaVdlf0nnfFtjz1F20k8ZmCbQ=)
2: I5wQnrgvMCaYn9C8yDvoLQWI0Fs.roa (hash: LLp7jSaPRxKkmfQPCgmC3oWPlWcodXukIf+OL2Y6Xy4=)
3: h62oWk5e6sS8zDCwC47t23u4hGk.roa (hash: KIOG5EX7T8Dsm3c4MU4hyZU5pek+PylPfC7rdsiyJoY=)
4: jGoTTL_48yWV-ohs_hgmOjEwT4E.roa (hash: Q0KSsruo9YLV5d/ARziN3CSGqP5OR6gQhOox+XP9FnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:dc:bd:9d:7e:d2:a4:d8:6c:65:15:cf:f9:47:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Aug 23 04:00:36 2025 GMT
Not After : Aug 24 04:00:36 2025 GMT
Subject: CN=cfa878857c95c2862772a28778a63312e7f3a393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:05:05:c2:ce:c7:0b:25:da:95:93:72:03:65:
95:a1:ec:4c:ea:0d:80:47:43:b6:90:45:83:4c:65:
31:3a:2b:33:30:b7:74:2a:6c:8d:69:9d:62:9b:1f:
dc:39:02:44:2e:10:0f:fa:62:6a:68:45:32:ce:83:
9e:f4:f8:16:ba:ef:3e:79:04:db:9f:e5:ca:5b:a7:
2e:15:20:b3:3b:b0:cc:52:2e:84:38:41:01:3d:d9:
08:5e:43:8f:67:52:93:49:41:ae:2f:25:4a:65:32:
9e:90:fa:48:17:9a:fd:7e:04:11:a5:3b:fd:a3:06:
4e:30:cb:5a:79:60:28:01:e9:b2:a7:58:63:05:a7:
64:ac:60:9c:40:0a:56:81:27:a2:b3:fc:38:44:d2:
b5:3d:85:99:37:a5:d1:99:c6:60:a9:9b:5e:9b:a7:
79:13:5c:48:61:96:e8:0e:09:ad:53:64:40:71:3b:
47:96:6b:b6:ba:77:01:bf:6f:18:04:c8:84:64:a7:
c8:67:a5:43:b9:aa:aa:ed:9a:c0:39:60:5f:fa:11:
a0:08:78:99:e4:58:d4:ad:84:0e:dd:2e:b2:06:16:
e6:3b:2e:4d:b1:e1:11:7a:f0:80:75:8f:f7:a8:27:
dd:5d:2a:66:a7:8d:93:50:b0:21:f1:61:f8:95:c4:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A8:78:85:7C:95:C2:86:27:72:A2:87:78:A6:33:12:E7:F3:A3:93
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:eb:ea:32:3d:03:79:fa:2f:9d:b9:58:f2:63:28:78:ad:29:
28:55:25:18:da:d9:47:7c:05:f0:49:03:79:35:1d:46:01:26:
e5:a0:19:24:de:a0:74:5a:70:73:b0:d2:c5:11:20:72:54:1b:
dc:ce:e7:6d:14:8a:5d:8b:df:99:3e:26:c9:a8:89:57:7c:74:
23:78:d1:16:3c:4f:11:10:07:ef:f0:fa:97:f5:77:21:ec:22:
ec:45:05:9f:9a:d1:fd:5a:04:0d:75:da:66:a7:6d:5e:ee:7e:
18:0d:23:9c:66:61:80:a0:8c:27:e1:e7:93:43:80:24:16:91:
04:f0:06:a6:80:c6:7a:05:39:e6:75:f8:63:0c:b8:67:d2:e1:
a8:b6:31:89:b8:a0:5e:5b:40:ed:2d:41:ae:18:46:9e:c5:1b:
dd:f3:76:d9:33:c0:21:44:3f:69:13:7e:a6:64:88:b8:ca:11:
6f:89:d8:62:a8:12:35:13:b8:ba:e0:2b:30:ce:b1:92:81:76:
40:4d:ad:77:fd:57:f2:77:5c:e9:df:a5:47:03:49:93:7a:2b:
47:d7:24:11:af:72:04:02:16:3b:68:11:64:8d:ce:ee:2e:0d:
15:28:dc:94:5b:14:9b:69:8a:e1:ec:b0:ea:e5:2e:e4:86:79:
05:14:3e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:57 2025 by rpki-client