Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: TF1jOjqr548KuTP9U0m/2C8vFWrk4aascx+U/1lwHs8=
Subject key identifier: 5A:F1:A0:33:1D:84:EE:B9:54:1B:C7:C7:CC:18:BF:8A:5A:FE:16:8E
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 0199FD6B286BC0F8D6D9496976F6336FD900
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0AF4
Signing time: Sun 19 Oct 2025 17:01:22 +0000
Manifest this update: Sun 19 Oct 2025 17:01:22 +0000
Manifest next update: Mon 20 Oct 2025 17:01:22 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: C/aVvCs8m1mRVE3zsU4QjvhG+MTjSsAPrIn4f3nDG5I=)
2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:28:6b:c0:f8:d6:d9:49:69:76:f6:33:6f:d9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Oct 19 17:01:22 2025 GMT
Not After : Oct 20 17:01:22 2025 GMT
Subject: CN=5af1a0331d84eeb9541bc7c7cc18bf8a5afe168e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:85:ac:13:53:12:fc:88:7b:45:c3:9d:38:12:
3a:25:93:cf:0d:dc:7e:95:a6:b6:f8:74:8b:7e:e0:
52:f1:d9:b6:38:d9:0e:19:23:12:f4:e4:90:1e:ed:
be:21:ab:a5:5d:49:5c:7b:66:1c:bc:ae:ec:4f:9b:
2f:43:c8:c5:9c:7b:1f:d4:08:88:e8:a1:df:56:cb:
e4:1e:40:a3:3c:2f:89:6c:b4:8a:a3:7c:7d:49:cc:
15:f2:59:3e:d6:be:92:05:fc:76:fb:92:32:ea:95:
d1:c2:f7:ef:93:26:8c:a9:6d:ac:88:e6:d0:e6:e4:
86:75:26:d6:e3:26:5f:8b:a0:60:5d:4b:b0:07:8a:
0c:71:8b:41:18:c2:98:5b:22:29:e0:c1:18:49:e6:
64:94:1e:26:22:30:8d:d9:17:ab:3e:e6:b8:9d:d1:
ab:33:39:d0:cd:64:af:ab:eb:00:74:55:24:36:f5:
2f:b8:9a:6f:06:f5:87:c0:d4:be:69:41:a7:f6:4e:
3a:a7:bd:cc:f1:b4:bf:88:0b:ca:45:2a:e5:8e:1e:
ba:3b:31:e8:12:9e:0a:24:59:29:0d:9c:8b:fb:27:
93:34:46:c1:7a:5c:77:9d:f8:1b:09:d5:2e:c6:ff:
7d:92:20:60:d8:cd:37:c0:51:56:fe:04:ff:ae:ca:
d1:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F1:A0:33:1D:84:EE:B9:54:1B:C7:C7:CC:18:BF:8A:5A:FE:16:8E
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:49:67:a8:e1:3b:c9:9b:2e:11:3b:56:bc:b5:34:21:9a:41:
e3:77:fe:46:28:66:ff:13:59:67:ca:bf:17:45:c8:94:f9:f3:
ab:23:8b:2d:55:10:96:ba:d1:52:95:a4:82:45:82:c4:f7:53:
86:e0:00:e8:0e:15:80:c7:7e:3e:73:a4:fd:02:9e:db:69:4f:
ee:ab:d3:34:a9:ec:90:10:93:f4:a7:a1:e7:3c:de:ef:a2:c5:
14:10:ab:20:83:9a:78:6f:77:4a:50:74:5c:c9:09:f8:b3:d8:
25:c6:56:69:af:51:2c:57:e8:b9:9e:3f:19:f6:68:be:f4:27:
c4:31:f5:f1:bf:5e:70:b9:be:b0:80:7e:6e:d7:39:6c:62:ad:
ca:c8:c0:5c:e9:a5:63:91:e6:b2:9f:e1:b2:e1:e9:cf:57:6f:
4e:1c:34:5f:68:e3:55:e5:f0:9d:e7:b7:a4:bf:5f:96:86:c1:
ad:7a:60:c3:c3:13:b2:83:4e:32:c1:e6:e1:a6:d4:88:9a:92:
ec:b0:bd:37:a7:46:98:5e:75:bb:ff:5c:44:75:b0:34:d9:c0:
0f:f9:91:ff:18:e6:32:19:6c:ac:31:65:20:73:92:8e:33:05:
8d:8d:98:30:a6:70:c4:92:09:88:43:a5:56:13:d0:66:8c:90:
7f:a1:04:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:29 2025 by rpki-client