Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: IBDy6NY5e13rN+d2NxG+MIi8/76FYVtSm+XfXsCf3Ug=
Subject key identifier: 82:BC:46:A1:AD:D5:F4:28:0B:6D:B1:49:97:DD:43:3E:38:B1:01:D5
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 0198D7060106E9DC565681905937CA52A8F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 13:02:31 +0000
Manifest this update: Sat 23 Aug 2025 13:02:31 +0000
Manifest next update: Sun 24 Aug 2025 13:02:31 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: PcBTVxjehqyxuNnUX1VsYzv15U4oAk3tboQvlxH4nys=)
2: OwG4_h94ip7CzANECDf39dfwNGk.roa (hash: XIXqYD1CZdADAiBPHja+pimegzmDxikS2efUTrBV4t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:01:06:e9:dc:56:56:81:90:59:37:ca:52:a8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: Aug 23 13:02:31 2025 GMT
Not After : Aug 24 13:02:31 2025 GMT
Subject: CN=82bc46a1add5f4280b6db14997dd433e38b101d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2c:7c:c2:91:53:1c:bc:3d:17:16:e5:b7:53:
d9:f1:5b:d0:e4:50:08:b3:a0:fd:1e:50:ae:3e:2a:
0f:d0:ab:2f:f1:c1:55:7c:b8:b7:42:70:ac:06:c4:
de:46:9e:12:17:a2:1a:d9:57:68:b1:58:9b:6e:89:
70:e4:51:28:46:4c:0c:68:85:1e:4b:0f:8f:e0:a4:
80:c3:ed:f0:96:a6:97:32:d2:a8:2d:15:57:5c:e7:
ec:9d:00:3f:97:0a:99:e0:58:63:e1:7b:cc:9c:6a:
84:cc:76:00:2d:dc:79:fb:ca:00:fc:be:8a:1d:3d:
bb:8d:ca:ad:e7:0f:27:b0:2f:bf:99:24:2e:2b:ed:
98:78:56:79:aa:52:22:a4:11:85:f8:e1:6d:f9:da:
b8:b6:4f:58:65:51:1e:b7:f3:50:df:f9:9f:8e:44:
cb:2b:79:1c:87:f9:9c:96:5c:70:30:67:33:cf:e9:
df:51:26:c3:ae:fc:00:d9:f0:c3:99:9a:e1:ee:75:
20:0b:0e:2d:a8:46:39:1b:d6:ba:47:ae:e9:88:fa:
db:e1:51:fd:b6:90:cf:7d:90:6f:1a:ef:6f:28:42:
38:6d:61:a8:e1:94:98:89:70:17:08:8f:3b:9e:f6:
1a:d8:71:aa:a4:e7:49:4c:be:88:41:02:9e:52:66:
ec:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BC:46:A1:AD:D5:F4:28:0B:6D:B1:49:97:DD:43:3E:38:B1:01:D5
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:5c:ec:b4:60:1a:5d:f2:68:8c:d7:ab:fd:6a:c7:e2:20:a6:
00:ea:dd:2a:c5:d9:e2:bf:41:cf:6a:d1:76:b1:ea:b5:86:3d:
81:24:b9:21:1f:ca:f6:b3:c9:f3:93:f7:fb:12:d9:e8:2d:d0:
61:9e:3f:ea:b5:11:1b:0f:9e:a3:29:df:c3:26:3e:cc:cf:fa:
bc:37:a3:80:77:26:bb:31:aa:55:c5:1e:49:4a:00:8f:64:33:
68:7a:a9:2f:72:70:51:ef:c5:49:a6:05:2d:11:86:8b:ce:bf:
7b:ef:08:ae:02:1b:f4:04:66:44:2e:71:ec:bb:f0:b2:9c:da:
6d:61:fa:a7:8b:e3:ee:d2:f5:6a:10:2f:12:d9:bb:83:43:04:
07:c1:9d:42:30:5c:9c:80:ff:7a:23:58:cf:15:46:f8:4f:37:
ab:d2:0b:ef:0d:b1:ec:d7:e9:03:3f:b1:f8:6d:a9:5e:fe:05:
59:bb:6a:e4:54:07:00:c1:c5:d0:32:2a:d2:aa:e3:52:91:e3:
3d:66:46:d8:bc:ef:a9:c6:a6:02:0c:f8:54:78:e5:65:28:d0:
45:79:86:5a:a4:77:60:4f:13:18:ea:7a:1d:63:84:81:27:34:
34:56:f7:68:7b:65:93:a4:15:d7:ef:bd:f5:be:7a:50:1c:5f:
e9:6b:53:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBgEG6dxWVoGQWTfKUqj3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNzFhMTI5YzhiMDg5OTU5NDIxOTllYTZkMWIyMjgyNjUz
NTBkMGIwHhcNMjUwODIzMTMwMjMxWhcNMjUwODI0MTMwMjMxWjAzMTEwLwYDVQQD
Eyg4MmJjNDZhMWFkZDVmNDI4MGI2ZGIxNDk5N2RkNDMzZTM4YjEwMWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyx8wpFTHLw9Fxblt1PZ8VvQ5FAI
s6D9HlCuPioP0Ksv8cFVfLi3QnCsBsTeRp4SF6Ia2VdosVibbolw5FEoRkwMaIUe
Sw+P4KSAw+3wlqaXMtKoLRVXXOfsnQA/lwqZ4Fhj4XvMnGqEzHYALdx5+8oA/L6K
HT27jcqt5w8nsC+/mSQuK+2YeFZ5qlIipBGF+OFt+dq4tk9YZVEet/NQ3/mfjkTL
K3kch/mcllxwMGczz+nfUSbDrvwA2fDDmZrh7nUgCw4tqEY5G9a6R67piPrb4VH9
tpDPfZBvGu9vKEI4bWGo4ZSYiXAXCI87nvYa2HGqpOdJTL6IQQKeUmbsTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIK8RqGt1fQoC22xSZfdQz44sQHVMB8GA1UdIwQY
MBaAFN1xoSnIsImVlCGZ6m0bIoJlNQ0LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iNDk5YjYtMDFmNC00NDJjLWJlNzYt
YzBkOGM4NjY4OTNmLzEvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9iNDk5YjYtMDFmNC00NDJjLWJlNzYtYzBkOGM4NjY4OTNm
LzEvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVzstGAa
XfJojNer/WrH4iCmAOrdKsXZ4r9Bz2rRdrHqtYY9gSS5IR/K9rPJ85P3+xLZ6C3Q
YZ4/6rURGw+eoynfwyY+zM/6vDejgHcmuzGqVcUeSUoAj2QzaHqpL3JwUe/FSaYF
LRGGi86/e+8IrgIb9ARmRC5x7LvwspzabWH6p4vj7tL1ahAvEtm7g0MEB8GdQjBc
nID/eiNYzxVG+E83q9IL7w2x7NfpAz+x+G2pXv4FWbtq5FQHAMHF0DIq0qrjUpHj
PWZG2LzvqcamAgz4VHjlZSjQRXmGWqR3YE8TGOp6HWOEgSc0NFb3aHtlk6QV1++9
9b56UBxf6WtTRQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:25:14 2025 by rpki-client