Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
File: 3_XMSEiUO0_onSznH9weT_fX8-M.mft (raw, json)
Hash identifier: IdZj4c8xf5T31dCGHxpsUvbPKpCdZG2zuNmXYFGnZRU=
Subject key identifier: 8E:1A:18:E2:BF:D4:51:46:22:07:A3:CC:0E:16:A4:9B:59:2F:2D:34
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 0198D69820FCF01E8DBCDFC178C01D6F6BEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
Manifest number: 1626
Signing time: Sat 23 Aug 2025 11:02:30 +0000
Manifest this update: Sat 23 Aug 2025 11:02:30 +0000
Manifest next update: Sun 24 Aug 2025 11:02:30 +0000
Files and hashes: 1: 3_XMSEiUO0_onSznH9weT_fX8-M.crl (hash: edS1ifD6WglIyv1rUCpHDQlrVVmEdOTGPrVuZsXnuuU=)
2: EsL5vRvD6Hsz2Ac1BO5dG0iZtiE.roa (hash: 6YJicTgp9qVMpWAlIAbPHHma7brtZhgeBhN6tMg/gfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:20:fc:f0:1e:8d:bc:df:c1:78:c0:1d:6f:6b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Aug 23 11:02:30 2025 GMT
Not After : Aug 24 11:02:30 2025 GMT
Subject: CN=8e1a18e2bfd451462207a3cc0e16a49b592f2d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a0:c6:43:6c:4c:ee:0f:3f:31:e9:86:a4:9c:
d4:6e:41:7d:66:2a:80:c8:f8:9c:e6:ad:bc:28:4a:
c8:98:18:37:64:af:34:8b:88:59:45:ab:50:fa:55:
fe:87:a6:72:b1:d6:45:67:fb:3d:d5:50:40:d6:c2:
7d:59:4b:10:cf:24:7d:59:d1:5f:ac:07:13:59:54:
14:78:99:fc:ae:e8:fc:bc:b5:ab:2d:b8:ea:7e:d2:
a8:36:41:66:67:5e:98:35:a3:30:f9:7c:81:d6:8e:
b9:2a:2c:81:05:17:c6:d0:80:20:99:73:6d:9b:60:
e3:74:16:41:95:45:77:f8:76:67:e3:10:c2:1d:f5:
88:c8:ab:47:5d:e7:ff:1d:89:69:49:cc:58:8b:87:
0c:aa:61:b0:4b:f8:8d:20:c4:34:eb:72:05:0e:72:
98:dd:07:45:ed:ba:07:94:09:13:e5:8c:61:81:bf:
ab:2b:5c:9e:8d:c7:e7:ba:a8:0b:d9:61:8d:00:53:
db:65:93:ce:ee:dc:b8:53:d5:b3:e4:48:3d:e2:a3:
fd:50:31:35:46:6c:15:07:5e:9a:09:91:d6:be:2e:
8f:e4:28:d6:a5:08:88:ac:51:3a:19:81:4f:45:f3:
0a:c3:8e:ff:09:8a:7f:b7:c4:35:fa:a2:24:9f:eb:
1b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:1A:18:E2:BF:D4:51:46:22:07:A3:CC:0E:16:A4:9B:59:2F:2D:34
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:0c:a3:b0:d0:14:05:80:d8:8c:7c:f1:09:38:ba:c8:22:d7:
f0:5b:da:04:e3:16:68:31:e8:64:dd:c5:90:85:60:b5:a3:a9:
21:7f:09:a1:85:93:fa:3e:90:ce:77:97:39:66:bc:b4:31:b4:
d2:5b:87:7b:c9:ee:a5:53:f8:80:65:39:9f:48:e6:96:72:54:
1a:8a:9a:c9:db:57:f6:4f:41:dd:35:e5:6e:78:a1:9b:29:8b:
03:dc:a3:17:0f:3a:f8:62:67:b3:6e:08:3b:ef:7e:ae:47:3d:
58:5b:91:02:a4:9f:27:bb:0b:df:33:3e:1b:14:15:e9:1e:06:
a8:c0:ce:cb:d8:fc:7d:f2:21:83:c3:e5:1c:ff:d8:70:50:b5:
2e:6f:2a:29:f7:36:90:56:19:b3:7b:12:77:f9:e8:d2:04:1d:
fb:4e:67:be:6d:ed:5f:5f:93:77:10:8e:8f:bb:2a:77:10:ca:
0a:84:d7:82:41:88:e9:69:08:23:4f:57:36:7c:e5:7a:72:cb:
e8:cc:85:d8:77:5a:2f:5b:a4:87:0a:c5:d9:ce:9c:c1:89:f1:
3b:05:1f:47:16:ea:36:00:bd:53:f4:95:c8:af:b7:24:26:89:
82:03:e2:81:4e:23:bf:94:2a:62:31:49:9e:02:d9:62:11:bf:
81:35:1f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:05:04 2025 by rpki-client