Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: /4EAY9FbVGaWrhG/1/RY9Ru0667oudnOPv7w81D/P50=
Subject key identifier: 92:93:BB:C5:74:8C:6B:8C:D0:DF:5A:A5:E8:6A:09:30:C1:F9:26:85
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 0199FCFD28CEACDE752A235CD9238F1E8658
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0B4E
Signing time: Sun 19 Oct 2025 15:01:13 +0000
Manifest this update: Sun 19 Oct 2025 15:01:13 +0000
Manifest next update: Mon 20 Oct 2025 15:01:13 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: E5eyMoODz7YNuzn0dojyUW1UuPH58yXkHE4/UU8gxZk=)
2: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (hash: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:28:ce:ac:de:75:2a:23:5c:d9:23:8f:1e:86:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Oct 19 15:01:13 2025 GMT
Not After : Oct 20 15:01:13 2025 GMT
Subject: CN=9293bbc5748c6b8cd0df5aa5e86a0930c1f92685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:52:e6:6a:93:38:b8:0b:09:79:3d:57:a2:d5:
25:6e:8e:a6:b2:0e:e2:7d:e1:53:60:1b:cd:a7:c8:
b8:68:44:f6:31:59:02:5d:c2:fb:e1:78:de:f3:a3:
e2:04:d4:ab:ae:f3:62:b8:c7:99:2e:6c:7e:0e:f5:
13:05:19:5a:7d:14:ab:c2:b1:33:47:8d:b9:f7:07:
9b:fd:ff:48:1d:2a:d3:3b:bd:52:3f:01:2b:cf:87:
b8:c3:9a:41:2c:19:0d:a5:80:d1:ce:0e:ce:98:f1:
8c:72:6b:18:7a:92:7c:a5:de:e0:89:05:6f:31:14:
7f:0e:73:19:87:93:8b:5d:33:09:8a:fb:5d:c5:6b:
a4:97:e5:ba:30:28:e7:6b:cc:0e:07:88:5c:27:40:
35:1c:1e:1e:06:30:8a:7c:73:e2:76:92:4a:f9:ad:
de:73:bb:ef:95:83:35:b0:b2:35:76:8f:df:d4:a3:
3d:61:8e:86:85:bc:b1:1c:3e:1e:3d:2c:b7:84:93:
12:1d:c2:49:d1:d8:78:28:78:57:32:49:09:07:1a:
d5:f0:66:9f:9b:96:fd:43:a1:7f:46:26:d5:56:36:
22:f4:43:08:bc:df:18:72:40:23:14:d1:c2:2b:c6:
61:0b:6f:88:27:2d:d4:84:ed:c8:38:13:60:31:81:
50:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:93:BB:C5:74:8C:6B:8C:D0:DF:5A:A5:E8:6A:09:30:C1:F9:26:85
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:87:5f:78:0b:6f:59:c7:2f:d8:c0:f5:67:ee:19:40:8a:0d:
1c:7b:d4:5e:76:4b:52:24:22:ff:97:ee:8d:b3:e8:f3:3b:85:
ea:35:9e:e5:b8:b6:3f:ed:0a:7a:cf:44:b4:52:d5:4f:0a:8e:
ac:00:ff:d6:37:ce:9f:1e:20:28:ac:50:5e:62:af:57:59:c3:
83:b6:d3:8a:66:5f:a2:74:49:c8:ec:12:fb:dc:02:d7:e1:8c:
7a:aa:ab:1f:ab:9a:78:a1:31:01:fb:b6:6e:07:37:6e:44:d7:
d8:c5:53:1e:6c:68:99:6a:1b:55:ca:40:a5:06:65:20:12:61:
1a:fd:93:ab:af:35:54:54:0e:4e:fa:26:2a:eb:1d:37:9b:2e:
ad:9a:a1:32:40:9c:3e:c3:50:46:15:75:ab:c7:d4:53:5c:18:
2a:8e:da:45:5a:2d:8a:ae:71:76:89:4a:ef:e1:67:05:08:c2:
61:4f:8c:f2:ba:d0:58:5e:b2:32:19:6a:de:d4:95:1b:04:e4:
2b:6e:e0:a1:32:09:1d:bd:23:2a:d1:62:ec:1a:b2:95:6d:ab:
9b:40:a4:ed:07:8a:26:03:8e:3e:d3:44:55:b2:e6:a5:ad:d7:
55:0b:87:12:ef:40:43:10:4d:75:fc:d9:15:47:a7:04:9e:36:
d6:ad:19:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:17:34 2025 by rpki-client