Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: /sdkEtkA70ul7VRhig4leK544Ay70hgRbVTIqXwDxIM=
Subject key identifier: 2B:71:5D:A5:96:3A:3E:7B:2B:03:9D:2D:7E:6B:A9:0E:FF:27:EE:51
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 0198D5F151AE41992D1843DAE4A66E0901B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 0A5B
Signing time: Sat 23 Aug 2025 08:00:18 +0000
Manifest this update: Sat 23 Aug 2025 08:00:18 +0000
Manifest next update: Sun 24 Aug 2025 08:00:18 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: taGNWYjqriLwyiz6UeVk/k1z1sYDyo0DRFsGzUzEnRs=)
2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:51:ae:41:99:2d:18:43:da:e4:a6:6e:09:01:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Aug 23 08:00:18 2025 GMT
Not After : Aug 24 08:00:18 2025 GMT
Subject: CN=2b715da5963a3e7b2b039d2d7e6ba90eff27ee51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a3:84:40:0d:7b:b0:1c:23:fb:56:19:11:9b:
14:f1:eb:aa:11:2e:d3:c0:8d:a9:9a:ed:0b:04:7d:
88:80:81:a8:d8:4e:0d:7c:2f:9b:6c:ac:70:98:bb:
3f:91:9e:7e:47:c0:57:2a:2e:6a:61:8f:67:1a:95:
d3:88:bb:e3:8b:9d:0c:99:c7:67:14:d3:0a:6e:c9:
08:b8:1f:ac:e5:61:e3:82:f5:56:89:2e:b1:b3:66:
38:d8:38:7f:c4:5e:18:bf:50:f1:de:cf:14:2c:8b:
e2:46:4e:5d:3f:cb:94:d5:e4:e6:41:6b:2e:e4:a7:
da:f9:e3:77:94:77:88:3e:c2:dc:b2:0e:92:6c:ce:
4e:aa:4d:ce:29:c0:57:15:59:b5:c6:2a:82:ce:dd:
5f:d1:09:fe:43:08:88:0c:c9:fd:3c:8b:a4:69:3e:
0d:f6:fb:6f:a0:b1:22:ad:22:0f:df:28:20:1f:af:
33:1c:f5:74:3b:ce:90:f9:cc:19:53:cc:b4:83:80:
97:40:f9:f7:72:44:a5:ff:ed:95:70:0b:f5:6c:0b:
ea:b1:b1:27:86:5e:2f:e5:57:4b:05:2a:cc:70:bf:
9d:60:df:30:36:85:95:48:3a:ef:02:a8:af:0e:a5:
16:bd:30:55:68:f4:0d:c4:6b:e3:07:59:32:ef:12:
30:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:71:5D:A5:96:3A:3E:7B:2B:03:9D:2D:7E:6B:A9:0E:FF:27:EE:51
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:6b:8b:69:f8:ff:28:e0:76:c3:bb:b3:69:2e:bb:e1:07:d9:
d5:0c:68:e6:4e:7b:15:f0:6a:67:bb:70:ec:97:57:13:e2:d7:
62:0c:73:37:c6:5f:31:e7:58:98:24:6d:8f:f1:38:98:8d:84:
74:d3:38:6a:6f:67:93:76:44:47:07:21:d2:09:ef:4f:43:0c:
be:d5:3c:ed:3b:06:eb:b3:14:12:06:d4:0c:f4:8c:cd:a2:9e:
9c:32:5a:13:be:b8:2b:ce:4d:85:b8:58:5f:0e:a3:34:c4:b6:
0d:ae:4c:d2:b4:b6:3b:bd:63:6c:b6:8b:4c:37:47:85:ec:ef:
55:9e:75:99:86:20:b6:14:a7:ac:7c:03:70:a1:f1:48:a1:39:
cc:2d:e8:0b:62:f0:e2:7a:74:7d:38:b6:80:0d:0a:57:3c:1c:
c2:d1:4b:c7:c6:e6:29:d2:3f:57:0e:23:03:a3:e4:c2:9c:54:
da:4d:ac:d6:93:48:4d:a6:8c:3f:8e:c2:fb:ab:9b:03:c2:64:
7c:5a:bf:5d:43:e0:f3:da:03:37:2a:99:fd:54:61:47:43:51:
73:c5:6d:e6:11:b3:8d:a6:80:fd:32:53:e7:c6:1f:72:66:78:
0e:14:08:2c:0c:f0:91:82:e8:be:06:40:99:55:36:3f:e8:c0:
31:f6:4a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:25:31 2025 by rpki-client