Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
File: 3k_14NZGWzwsc6LG4Q5WovpzFic.mft (raw, json)
Hash identifier: PCDWRzaEcQOzCTlvPklhSyfeVPVDej8+7jehurPU/H4=
Subject key identifier: 55:D7:07:FC:CB:0F:AC:D5:D7:5C:88:86:0B:AF:54:02:6B:F3:CF:CC
Authority key identifier: DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
Certificate issuer: /CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Certificate serial: 0199FB462E67F86EDED99A7ABFEFCF853CAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
Manifest number: 0E7A
Signing time: Sun 19 Oct 2025 07:01:44 +0000
Manifest this update: Sun 19 Oct 2025 07:01:44 +0000
Manifest next update: Mon 20 Oct 2025 07:01:44 +0000
Files and hashes: 1: 3k_14NZGWzwsc6LG4Q5WovpzFic.crl (hash: AH/Ae/wVHlbI9jIJ5pURWyDmPrRLXo69pSVzikzwYho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:2e:67:f8:6e:de:d9:9a:7a:bf:ef:cf:85:3c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Validity
Not Before: Oct 19 07:01:44 2025 GMT
Not After : Oct 20 07:01:44 2025 GMT
Subject: CN=55d707fccb0facd5d75c88860baf54026bf3cfcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:be:d2:73:dd:0e:e0:45:b9:59:b0:08:c7:98:
d1:bb:7d:77:9e:89:2a:09:cc:cd:d4:67:90:3c:16:
2f:75:e4:1f:2e:e9:c3:85:bf:23:e5:20:72:8a:72:
bd:34:5f:d5:24:cd:7f:19:c5:e3:3c:97:80:0c:86:
2f:ce:66:79:c1:85:f2:5e:a3:79:91:da:2d:5f:9a:
a9:71:9f:61:33:94:02:07:5e:f1:83:2b:17:2f:59:
ca:64:01:1c:16:a1:78:bb:d2:09:bf:04:04:1f:66:
f4:31:a4:34:0b:20:fa:eb:66:54:a4:68:95:7c:c5:
35:7a:7a:40:04:66:54:cd:79:64:00:65:dd:45:16:
bb:2e:48:e3:b4:9d:20:a4:0a:9a:70:5c:70:47:5c:
d5:e7:00:6c:24:0f:b6:04:a8:40:5f:2c:45:0e:9d:
41:d8:b1:7f:9b:27:46:e5:fb:54:ae:d5:42:22:58:
a9:09:48:3c:2a:8f:04:99:20:cb:30:d6:fd:65:14:
92:11:fb:2c:99:65:36:82:b9:67:9c:d9:8b:72:32:
3d:e6:f9:24:0a:32:08:eb:2b:e3:01:0b:a3:c5:46:
88:41:01:56:18:de:5c:db:a2:62:09:30:b2:50:65:
34:03:c7:07:fe:2a:aa:d4:ed:fa:dd:32:2a:3e:7d:
a4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D7:07:FC:CB:0F:AC:D5:D7:5C:88:86:0B:AF:54:02:6B:F3:CF:CC
X509v3 Authority Key Identifier:
keyid:DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:1f:96:6e:ea:e3:a6:72:8e:28:d2:57:1c:18:a1:eb:b6:a0:
30:9e:2d:e9:4e:2f:ef:fd:ae:fb:64:2c:53:bb:20:3d:37:78:
c2:40:33:ee:43:8c:86:32:95:60:b7:ac:19:e8:b1:5c:05:41:
68:0c:4e:17:ac:ba:1c:e5:c6:e7:dd:94:89:8c:70:10:a9:d5:
64:db:25:b5:52:3a:86:55:bc:c0:9f:42:06:a4:86:c4:ef:bb:
d7:7a:79:7e:37:8e:73:c6:bd:a9:78:f1:cd:37:da:b7:50:2a:
e6:cb:49:5f:42:79:f9:6f:9f:b8:9f:8e:2d:b4:1a:d0:fa:96:
93:a3:5a:c5:a2:03:32:55:e9:7a:e6:9f:bb:39:2d:5e:7d:d0:
c0:9a:95:5f:05:9c:90:32:bf:aa:d4:f7:83:8c:d2:2f:dc:c2:
41:0f:2a:ba:ee:85:9b:07:aa:95:10:10:d4:20:02:39:90:88:
21:f4:fb:fb:02:df:ce:20:4c:18:59:69:9f:db:9a:7d:68:b8:
a1:04:76:24:cb:3a:f4:89:7c:e4:72:d3:31:9f:42:71:eb:3f:
96:71:b5:3f:6d:7f:77:11:cd:04:91:24:27:25:64:33:12:b4:
8e:14:05:7c:7c:32:bc:1d:ab:68:c1:03:0b:a1:ad:3a:91:03:
c9:b3:f7:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:42:39 2025 by rpki-client