Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
File: 3kVs200UA0XD3K6_x2NNTnzcuRM.mft (raw, json)
Hash identifier: euZqIh8Eo6a3HAhTe8BA91SL47Bls5PG83ZAi4tX7Oc=
Subject key identifier: AA:38:AE:5F:13:CF:02:12:1C:DA:90:D8:5C:DE:05:81:94:03:A5:40
Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Certificate serial: 0198D84F5F1F64E3505314C37EB556508097
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
Manifest number: 1654
Signing time: Sat 23 Aug 2025 19:02:16 +0000
Manifest this update: Sat 23 Aug 2025 19:02:16 +0000
Manifest next update: Sun 24 Aug 2025 19:02:16 +0000
Files and hashes: 1: 0wxplS04ynQiI1r3ArdsiKBCEOI.roa (hash: WDNF73KtUANe5OGg5Z8hCbK6QAlz8jWNq6iQlKA1l4A=)
2: 3kVs200UA0XD3K6_x2NNTnzcuRM.crl (hash: QNciHQ0lMMj/WlGP1dfDR0Cdn6JhIZi6amLLuL+AIrg=)
3: JIEsiChTD9veiUWmlJ3B4QQpFuc.roa (hash: G8sz8HlJFis3zSSNKaXy4CKewTagYcW3tdUbj5SB5rw=)
4: erY5eOsE13MYDYGdz-7KiRAOTog.roa (hash: NmXI2cVM6emkr8oTXJbXMbKgJl7gRO9hnwaW3QZ2P/k=)
5: g4ZCPviGonmRGPJlO9nSng_S-lo.roa (hash: NBfLnaWFnRjJb4HXfFDgN4fD3VeUZZnkBAnPok8zBDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:5f:1f:64:e3:50:53:14:c3:7e:b5:56:50:80:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Validity
Not Before: Aug 23 19:02:16 2025 GMT
Not After : Aug 24 19:02:16 2025 GMT
Subject: CN=aa38ae5f13cf02121cda90d85cde05819403a540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:08:a4:d5:1d:b0:f2:a0:a2:cc:9a:07:e7:18:
3c:0a:ad:99:3e:11:b3:2d:ec:ac:7a:f7:ed:cf:d0:
89:59:0c:bf:b0:36:7e:dd:88:fd:c6:fa:bf:1d:d8:
98:dc:c8:05:cf:41:14:2f:d7:f8:b0:e8:97:59:65:
e1:81:71:8d:df:06:42:49:90:bf:41:3b:fc:a6:57:
09:78:54:cd:2d:fc:31:82:f6:a1:33:3a:75:7d:19:
32:7e:40:a5:52:2b:9c:0c:bb:1f:7c:ab:b4:c6:51:
c7:07:be:92:81:16:2d:64:c2:03:ae:44:1a:6f:2e:
18:49:f0:3a:5d:e6:f6:f5:c5:a8:ff:89:c6:15:05:
94:84:08:25:ed:ca:a7:df:8f:c5:db:46:d4:29:f7:
3a:cf:95:d8:a7:b1:e6:f8:db:81:c4:75:90:ca:c3:
f5:ff:83:00:7d:0b:77:c5:f8:c6:29:c3:ca:cf:37:
a9:05:ca:3a:c6:73:42:6a:c1:fd:35:67:73:a5:fe:
de:12:bb:ce:55:6a:ee:80:78:27:73:fd:22:0e:8e:
fe:7f:8a:39:94:c8:56:83:f4:c6:71:76:98:24:a4:
4e:92:0f:99:4c:d2:fd:27:2c:cb:40:0f:20:ba:50:
e2:8c:e6:7a:1a:24:9f:fb:ff:a0:92:ad:04:ec:43:
d7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:38:AE:5F:13:CF:02:12:1C:DA:90:D8:5C:DE:05:81:94:03:A5:40
X509v3 Authority Key Identifier:
keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:96:03:79:32:62:18:9f:d0:9d:f2:27:51:d2:0f:91:00:61:
07:32:13:0f:df:54:92:cc:01:81:76:28:9d:7e:79:ac:74:6f:
b8:43:7d:f0:a5:0e:ea:c6:87:04:5e:83:b4:bf:ef:d0:81:02:
fc:46:f0:e9:5d:87:c1:61:3e:24:61:eb:45:4a:05:e7:a9:2f:
dc:10:34:d2:00:86:0d:79:bf:41:e1:ce:b2:d6:a7:a5:58:c9:
ab:c9:e2:4f:4e:8f:d6:5a:6c:72:8a:fd:72:2a:47:65:b5:d7:
26:27:38:22:28:40:a1:9c:ec:7b:75:9b:37:27:d4:6e:97:1a:
5f:58:68:41:7b:03:9c:71:29:01:4f:72:7a:a9:42:0d:3d:12:
66:a5:bb:75:a4:28:1a:f7:c4:25:de:42:35:ca:0e:fe:18:98:
c6:59:29:7e:28:8f:7b:92:e1:81:2f:af:fe:09:59:0e:8e:0a:
37:3e:4c:6b:59:fa:93:eb:86:87:ad:12:18:ef:f5:16:3f:7c:
74:09:63:a4:9d:52:6b:03:ce:d1:c1:0e:8c:b3:6b:95:62:da:
d5:79:ac:ba:dc:bf:98:43:78:b7:d2:90:3b:65:b1:71:17:25:
45:61:d8:20:1b:24:ee:61:1a:5c:d8:be:04:49:9b:5a:aa:a5:
dc:0d:47:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:01:31 2025 by rpki-client