Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
File: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft (raw, json)
Hash identifier: NRJZBX/UDI7FNzh9QGKcE3Z01gFs8sXyp569YaEhYQE=
Subject key identifier: A0:04:C3:2A:93:71:78:AA:DE:99:12:EB:44:BE:07:50:86:FB:16:70
Authority key identifier: DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
Certificate issuer: /CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Certificate serial: 0198D660F6AE5BF69C98B2C1479EA2054174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
Manifest number: 0D3C
Signing time: Sat 23 Aug 2025 10:02:15 +0000
Manifest this update: Sat 23 Aug 2025 10:02:15 +0000
Manifest next update: Sun 24 Aug 2025 10:02:15 +0000
Files and hashes: 1: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl (hash: +ZTlJQfsalACY0Fyj+wQBEDiX1CWgI9aMhqJt9Q+1+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:f6:ae:5b:f6:9c:98:b2:c1:47:9e:a2:05:41:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Validity
Not Before: Aug 23 10:02:15 2025 GMT
Not After : Aug 24 10:02:15 2025 GMT
Subject: CN=a004c32a937178aade9912eb44be075086fb1670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:43:7f:28:c4:d4:c7:ef:e8:4d:ad:7d:d9:d5:
64:70:a6:8b:3f:5d:46:f8:9c:6e:05:fa:2d:a1:39:
16:ba:c8:78:22:9b:0f:8c:32:4d:54:0c:8e:8a:cd:
58:d8:4c:5d:a5:fc:5a:c6:e5:17:77:d9:cf:5d:c5:
ac:31:b1:4e:88:c9:1b:e7:b6:e8:a7:ff:9f:90:12:
aa:23:07:e5:e2:8d:e5:ad:0c:2a:8d:37:19:86:09:
06:5f:96:0c:d5:6c:07:f3:21:0f:78:4d:36:ab:3d:
d6:2b:29:e6:ba:ad:c1:9b:0e:34:e5:a5:a0:3b:08:
8e:5b:44:2c:5e:2a:5c:5e:52:4c:60:72:81:02:dd:
62:4e:b3:1b:e7:66:c8:06:c3:fe:ef:bc:4b:c8:f8:
be:ef:ea:a7:42:69:84:7f:44:11:c6:a4:fb:e6:74:
f0:ec:9f:69:4e:90:41:1d:89:8f:4b:16:17:16:9a:
e7:57:50:a4:e1:bd:27:96:80:fa:c2:70:35:5d:c2:
71:95:ef:17:fa:33:7b:4c:67:ec:c7:59:3a:e1:ed:
39:b8:63:b1:1e:52:60:cb:bc:39:bc:67:af:26:9c:
38:85:00:25:9c:b8:2f:33:3d:5a:0b:7f:4b:fd:4b:
d3:84:cb:3f:3b:ee:2c:03:1c:94:a8:2d:6d:c5:72:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:04:C3:2A:93:71:78:AA:DE:99:12:EB:44:BE:07:50:86:FB:16:70
X509v3 Authority Key Identifier:
keyid:DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:87:15:e6:9b:cc:35:f7:04:50:5e:ba:83:dd:b5:97:50:31:
fa:4f:a1:d8:a2:8a:8b:7f:4a:c1:ab:25:fe:30:fd:e8:8d:ac:
f4:ea:2c:51:39:be:89:95:a6:03:4a:2a:fc:1a:a9:3d:1a:71:
b0:69:fd:02:68:cd:1c:3f:eb:e0:2c:bb:10:9b:7d:bd:98:ed:
e6:4e:7f:60:b1:10:ad:60:1a:b3:0a:f7:8a:26:ee:b8:65:f2:
39:5e:d2:7b:85:7f:34:6d:5e:68:46:b9:f8:cd:21:62:b7:ee:
0a:35:6c:14:d4:22:ac:34:51:28:96:85:dd:fb:d5:a6:ee:d2:
23:23:52:cc:2e:0b:45:0a:93:03:14:ae:bc:c2:e5:93:01:e4:
fe:aa:bb:bd:97:a6:ce:66:84:c5:d1:e5:0f:08:29:4a:d1:e0:
29:3a:cd:fa:27:55:a8:f2:13:20:49:97:cc:13:b7:f6:71:74:
dc:69:b6:58:27:a4:c7:d4:c5:4a:2a:2a:e2:01:28:49:e5:4f:
a4:df:e1:a0:a0:30:41:af:9f:1b:78:35:a9:19:fa:ac:ed:c8:
a3:3b:c7:4a:9c:22:9d:62:10:73:6c:84:0a:62:3c:dc:65:a1:
a6:9f:f2:58:f8:20:d6:28:28:80:0b:5c:56:52:b8:75:7d:4d:
bf:d8:76:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:43:38 2025 by rpki-client