Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
File: 3jCrARAqrvMOvUyJHAOAm6rQOeA.mft (raw, json)
Hash identifier: ttKrK2Nm2Z75XyuvOGdCrWGnEtR0iKM1wF0TqVAGLe8=
Subject key identifier: A0:BB:E6:7E:69:7C:56:3E:2B:C9:48:92:2C:F2:B3:0B:07:16:4C:D0
Authority key identifier: DE:30:AB:01:10:2A:AE:F3:0E:BD:4C:89:1C:03:80:9B:AA:D0:39:E0
Certificate issuer: /CN=de30ab01102aaef30ebd4c891c03809baad039e0
Certificate serial: 0199FD348FAAB9B8E99085467117BC344F3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
Manifest number: A7
Signing time: Sun 19 Oct 2025 16:01:44 +0000
Manifest this update: Sun 19 Oct 2025 16:01:44 +0000
Manifest next update: Mon 20 Oct 2025 16:01:44 +0000
Files and hashes: 1: 3jCrARAqrvMOvUyJHAOAm6rQOeA.crl (hash: fPOS2TRr2flQmoigsmP4J/kETL6fDFPRMDA1az10PKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:8f:aa:b9:b8:e9:90:85:46:71:17:bc:34:4f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de30ab01102aaef30ebd4c891c03809baad039e0
Validity
Not Before: Oct 19 16:01:44 2025 GMT
Not After : Oct 20 16:01:44 2025 GMT
Subject: CN=a0bbe67e697c563e2bc948922cf2b30b07164cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3a:22:39:f4:7f:7d:19:59:95:e7:7c:80:23:
02:81:5b:27:3b:47:a9:6c:35:7e:59:1d:0d:48:a1:
d3:cb:41:8d:51:46:1e:43:b7:43:3d:b9:c1:0a:2c:
1a:82:39:cd:87:0c:cc:ad:a6:8f:d4:b8:31:89:26:
b9:a5:d1:5e:78:70:25:a1:6b:44:e3:0c:ce:d5:12:
a6:d9:17:ce:cb:1c:12:62:9e:1c:cf:d5:1d:f7:8e:
78:e3:d5:75:e9:a7:0a:3f:c9:9f:16:fb:ea:f9:35:
61:f0:56:f9:1d:42:ed:73:cf:4d:4b:62:6d:4a:d6:
cd:52:50:1d:4e:0a:e6:e3:5c:fd:aa:50:4c:68:0b:
ba:80:a3:9d:cb:ad:c4:f5:56:fd:19:5f:ef:0a:ac:
3b:4e:b3:7e:36:70:25:f4:59:0b:72:58:66:e0:41:
0d:ea:3d:fc:7e:35:8b:e8:d2:48:87:13:a4:1e:d0:
cf:b3:ce:bb:4d:00:34:65:67:cb:63:5c:1d:87:c5:
50:61:09:ae:97:aa:8a:ab:6f:94:c2:51:97:9b:fb:
58:58:74:75:a2:e2:c9:aa:72:fd:b9:06:00:69:fd:
87:d3:c9:1f:6f:4f:5c:84:01:da:4e:e7:b3:60:ce:
a5:a0:3a:d7:eb:c7:e5:93:65:e6:28:db:b8:0c:69:
1e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:BB:E6:7E:69:7C:56:3E:2B:C9:48:92:2C:F2:B3:0B:07:16:4C:D0
X509v3 Authority Key Identifier:
keyid:DE:30:AB:01:10:2A:AE:F3:0E:BD:4C:89:1C:03:80:9B:AA:D0:39:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3jCrARAqrvMOvUyJHAOAm6rQOeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/553de1-0ee5-4b25-a520-d42768c84df7/1/3jCrARAqrvMOvUyJHAOAm6rQOeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:66:b1:81:50:4d:46:36:3c:f9:e4:12:b0:5d:42:67:e5:65:
5c:cd:4e:45:5f:f1:74:93:49:51:e9:7b:fc:b6:d8:c9:51:41:
67:ae:4d:eb:16:1d:aa:8b:be:e1:0e:a1:e2:6b:cf:10:2a:0a:
5e:37:09:9a:d3:c7:49:1b:77:a9:45:e2:36:d6:f2:49:82:a1:
c5:d4:40:6f:4b:99:4a:b6:da:30:88:2d:42:72:d7:68:38:99:
ac:ca:3c:5f:53:a3:73:7e:e9:0c:a3:cc:73:f7:33:fb:93:37:
1c:67:e7:e5:b8:69:a3:c8:e7:a0:4f:3e:ef:99:14:0e:84:1d:
2e:34:c7:7a:ed:15:83:e6:05:53:94:45:57:fb:18:4f:e0:55:
85:ad:c1:9e:06:24:f3:8d:d7:bb:c2:28:48:23:94:f0:54:f4:
51:d0:40:12:09:4f:ba:b2:42:16:d3:c9:74:b6:1c:54:e9:c0:
69:a2:3a:a0:8a:40:62:83:aa:f3:d2:1c:75:a5:53:47:c5:7a:
b9:d3:da:38:6e:25:74:1e:f0:99:66:84:4d:99:d1:5d:ce:cd:
92:98:81:77:57:e2:b5:6e:d9:18:63:7e:39:66:26:6e:04:3d:
5d:2f:b3:2a:3b:20:12:13:18:9d:1a:97:39:74:9f:e2:92:de:
a0:8f:60:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NI+qubjpkIVGcRe8NE8+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMzBhYjAxMTAyYWFlZjMwZWJkNGM4OTFjMDM4MDliYWFk
MDM5ZTAwHhcNMjUxMDE5MTYwMTQ0WhcNMjUxMDIwMTYwMTQ0WjAzMTEwLwYDVQQD
EyhhMGJiZTY3ZTY5N2M1NjNlMmJjOTQ4OTIyY2YyYjMwYjA3MTY0Y2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzoiOfR/fRlZled8gCMCgVsnO0ep
bDV+WR0NSKHTy0GNUUYeQ7dDPbnBCiwagjnNhwzMraaP1LgxiSa5pdFeeHAloWtE
4wzO1RKm2RfOyxwSYp4cz9Ud945449V16acKP8mfFvvq+TVh8Fb5HULtc89NS2Jt
StbNUlAdTgrm41z9qlBMaAu6gKOdy63E9Vb9GV/vCqw7TrN+NnAl9FkLclhm4EEN
6j38fjWL6NJIhxOkHtDPs867TQA0ZWfLY1wdh8VQYQmul6qKq2+UwlGXm/tYWHR1
ouLJqnL9uQYAaf2H08kfb09chAHaTuezYM6loDrX68flk2XmKNu4DGkeCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKC75n5pfFY+K8lIkizyswsHFkzQMB8GA1UdIwQY
MBaAFN4wqwEQKq7zDr1MiRwDgJuq0DngMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2pDckFSQXFydk1PdlV5SkhBT0FtNnJRT2VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS81NTNkZTEtMGVlNS00YjI1LWE1MjAt
ZDQyNzY4Yzg0ZGY3LzEvM2pDckFSQXFydk1PdlV5SkhBT0FtNnJRT2VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS81NTNkZTEtMGVlNS00YjI1LWE1MjAtZDQyNzY4Yzg0ZGY3
LzEvM2pDckFSQXFydk1PdlV5SkhBT0FtNnJRT2VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkWaxgVBN
RjY8+eQSsF1CZ+VlXM1ORV/xdJNJUel7/LbYyVFBZ65N6xYdqou+4Q6h4mvPECoK
XjcJmtPHSRt3qUXiNtbySYKhxdRAb0uZSrbaMIgtQnLXaDiZrMo8X1Ojc37pDKPM
c/cz+5M3HGfn5bhpo8jnoE8+75kUDoQdLjTHeu0Vg+YFU5RFV/sYT+BVha3BngYk
843Xu8IoSCOU8FT0UdBAEglPurJCFtPJdLYcVOnAaaI6oIpAYoOq89IcdaVTR8V6
udPaOG4ldB7wmWaETZnRXc7NkpiBd1fitW7ZGGN+OWYmbgQ9XS+zKjsgEhMYnRqX
OXSf4pLeoI9gtA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:01:23 2025 by rpki-client