Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: OA6GjskcBGWlWxCT5VgW+K2uVZ9qFEWrDJ1toZ3IHz0=
Subject key identifier: 6C:C5:F6:72:8F:42:14:82:AE:35:BA:17:7A:68:62:97:4E:FB:B9:19
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 0198D583E2F8DF86BBB598530C40F4EAE1CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0AB5
Signing time: Sat 23 Aug 2025 06:00:46 +0000
Manifest this update: Sat 23 Aug 2025 06:00:46 +0000
Manifest next update: Sun 24 Aug 2025 06:00:46 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: Ate1XTnDeUW6ySh4AYcVKNitiHS4X5gL5hkysOreFP8=)
2: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (hash: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e2:f8:df:86:bb:b5:98:53:0c:40:f4:ea:e1:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Aug 23 06:00:46 2025 GMT
Not After : Aug 24 06:00:46 2025 GMT
Subject: CN=6cc5f6728f421482ae35ba177a6862974efbb919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:32:af:3e:5c:8b:1d:27:39:f5:4b:65:c5:66:
0e:c2:46:f2:05:cb:fd:7f:b6:48:00:30:55:ce:0d:
e4:a2:b0:68:91:9c:d1:17:74:0d:76:d2:b5:70:fb:
ee:c4:1a:6b:e0:e7:0f:2a:da:3f:1c:4d:9f:47:c5:
ea:1c:ae:50:3c:06:7d:93:0b:2b:87:32:3a:c3:93:
b0:2b:0b:1c:5d:d6:1e:55:da:c1:4f:ef:5b:86:c3:
08:5c:24:fb:cb:bc:8a:03:a5:ed:8d:1b:a9:99:85:
5d:f1:7a:b7:e9:05:45:70:8b:ec:9a:3d:6a:cc:5e:
eb:4a:25:41:be:f1:7a:c2:c0:bb:9a:de:73:3f:53:
fe:95:6b:94:c4:5a:b4:94:51:25:52:e9:56:8d:8a:
aa:90:15:ee:da:71:aa:ba:46:d3:a6:b1:7d:41:83:
0c:43:56:2b:5a:56:fa:70:1f:63:b1:1a:75:fb:35:
17:f6:b4:61:e1:28:60:1a:77:27:3c:a6:f6:72:0a:
a6:c0:b2:db:8f:eb:3e:89:52:aa:e0:58:c0:ea:95:
49:a2:0a:ab:c5:98:cd:b4:8b:0e:4e:57:35:4d:fd:
ca:bb:46:2e:a0:d6:fb:1d:e2:5c:2a:c4:44:ff:33:
bd:d3:9f:61:13:b7:32:35:3b:83:65:95:c3:30:19:
6e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C5:F6:72:8F:42:14:82:AE:35:BA:17:7A:68:62:97:4E:FB:B9:19
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:b0:77:10:38:92:28:f4:61:3e:19:64:9a:8a:2e:96:dc:7d:
e7:b7:c6:dd:64:48:74:c9:26:a8:0c:6a:01:b4:94:11:c7:32:
d8:59:0d:ef:98:f9:eb:bb:ed:b6:09:71:59:77:39:7c:93:c5:
1b:d2:19:94:ca:5e:5e:14:ad:e3:ec:98:99:a0:74:6b:43:89:
33:c7:f6:92:77:aa:f2:9a:5b:ec:cc:dc:f5:e2:65:81:bc:18:
9c:e6:61:1a:47:1c:86:6f:76:9b:8f:23:c1:fb:5e:ec:0c:e5:
20:d3:74:2d:26:0c:30:da:d7:a8:b8:6c:89:f7:81:11:32:8a:
1c:e3:e5:d5:f9:1a:98:77:63:ed:32:91:8d:aa:58:3a:5a:21:
fb:31:ee:38:7d:4e:91:25:74:0f:04:19:4d:77:80:4a:f6:8b:
e4:1d:d3:56:97:2d:9f:d9:85:b3:f2:24:4f:08:4f:ca:04:52:
c3:3d:50:16:52:27:bd:9c:58:ed:3e:2f:b8:49:61:84:6d:53:
ef:d9:f9:6c:73:fb:c5:42:87:1e:54:78:4e:5b:96:85:59:74:
77:ad:d1:75:68:bc:91:fa:ca:7d:0f:10:eb:ea:2b:28:ab:62:
78:72:ed:fe:62:9d:98:38:d1:81:6f:d4:bf:02:97:99:0a:1d:
56:95:21:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:05 2025 by rpki-client