Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft
File: 3XzvizrZIDFjCqyiJqntebpgVYY.mft (raw, json)
Hash identifier: Nfdmk0oIz15RG7H5RFp9KBquD1wELcjR4e7gQoPlFMc=
Subject key identifier: 40:99:ED:0A:A4:63:73:11:C7:57:41:EE:8F:C4:92:49:1A:1B:2D:E6
Authority key identifier: DD:7C:EF:8B:3A:D9:20:31:63:0A:AC:A2:26:A9:ED:79:BA:60:55:86
Certificate issuer: /CN=dd7cef8b3ad92031630aaca226a9ed79ba605586
Certificate serial: 0198D58393F6B5B4436DB6FA37C0B0616D5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XzvizrZIDFjCqyiJqntebpgVYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft
Manifest number: 01B0
Signing time: Sat 23 Aug 2025 06:00:26 +0000
Manifest this update: Sat 23 Aug 2025 06:00:26 +0000
Manifest next update: Sun 24 Aug 2025 06:00:26 +0000
Files and hashes: 1: 3XzvizrZIDFjCqyiJqntebpgVYY.crl (hash: Nr+Ou5fh8xsoKVMGL/IUpu1Jhl9ZWBMfzYV7iltik8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XzvizrZIDFjCqyiJqntebpgVYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:93:f6:b5:b4:43:6d:b6:fa:37:c0:b0:61:6d:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd7cef8b3ad92031630aaca226a9ed79ba605586
Validity
Not Before: Aug 23 06:00:26 2025 GMT
Not After : Aug 24 06:00:26 2025 GMT
Subject: CN=4099ed0aa4637311c75741ee8fc492491a1b2de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:63:4a:8a:ba:33:77:e1:aa:0b:d5:02:1d:a4:
46:ff:fb:92:f3:93:ec:ab:0e:a1:3c:62:8f:20:5a:
90:5d:aa:26:bf:e4:3e:71:60:3e:c9:24:25:7e:e9:
72:41:0a:77:79:9a:03:68:ee:d4:d1:71:fc:cc:b1:
fb:8b:cf:66:9a:fd:5d:72:ed:da:b7:e9:5d:59:9a:
8f:a1:90:35:8c:d7:67:35:f3:b1:91:cb:d4:14:10:
13:b0:f9:f0:51:9b:ed:78:98:33:55:f8:44:af:50:
c2:43:37:81:2e:08:a2:f3:38:ee:c7:48:b3:97:ce:
81:1d:8e:b1:e6:e1:29:cb:b2:14:38:97:fc:37:e6:
36:5b:3a:c4:e4:3f:c2:47:19:0a:07:6e:44:f5:d5:
9a:4c:fc:8d:0a:05:1e:3a:17:5c:da:46:69:9d:ad:
ab:4c:e9:76:fb:50:a5:5e:66:25:92:a3:b1:28:19:
74:16:88:6c:d5:7d:80:6f:ba:cf:d7:fb:9e:15:50:
a5:5e:68:2c:64:90:b4:dc:39:b3:a3:cd:8d:4f:11:
3e:db:c3:a0:79:c6:79:eb:1a:45:48:4b:8d:a6:33:
6d:0b:87:32:ba:d0:86:62:e9:c3:8a:b5:12:cd:68:
46:3b:08:9b:3b:ec:cb:33:17:7a:21:61:11:a3:86:
e2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:99:ED:0A:A4:63:73:11:C7:57:41:EE:8F:C4:92:49:1A:1B:2D:E6
X509v3 Authority Key Identifier:
keyid:DD:7C:EF:8B:3A:D9:20:31:63:0A:AC:A2:26:A9:ED:79:BA:60:55:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XzvizrZIDFjCqyiJqntebpgVYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d98b0-4a4d-4190-bd85-372f65d99a9f/1/3XzvizrZIDFjCqyiJqntebpgVYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ed:3e:58:af:c3:06:39:4d:d7:d3:5d:bf:d2:72:ee:48:a2:
ae:ba:c8:5b:db:08:90:9b:10:9a:39:1c:17:52:5d:0d:78:57:
21:d9:d5:05:20:5b:1a:86:61:ba:a8:9b:28:6c:56:92:2a:b8:
fe:34:61:0f:79:65:a0:f7:e4:9f:27:58:cb:42:b9:ad:2f:18:
0a:4b:4d:d9:a4:03:36:66:8e:fd:ef:21:eb:46:d7:b7:ef:14:
fc:05:6e:31:a9:7a:f2:35:45:1b:d4:55:72:7b:91:cc:0e:ab:
03:4a:77:3a:d7:84:69:7e:f5:43:f7:f2:2e:9f:30:9d:59:e2:
96:55:cc:cb:67:65:de:8f:f0:78:7c:18:9f:99:68:e0:0f:99:
e4:e2:5d:b9:1b:67:31:de:e0:5d:d3:0a:36:e2:8b:8f:8d:0e:
87:eb:15:e1:14:3d:b3:b3:8c:2b:6a:ab:59:53:4a:5c:91:23:
58:10:65:8a:bc:7a:01:39:66:46:96:c0:76:85:85:49:c6:db:
6f:32:5d:76:97:d7:38:42:4f:7b:e0:ee:e4:81:4b:ea:3b:6a:
4e:85:38:be:ba:ab:f8:c6:95:04:ad:26:6f:2c:07:5e:cf:05:
01:af:62:0f:eb:1d:95:82:de:ce:a5:35:fd:a1:db:30:37:0d:
87:43:50:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg5P2tbRDbbb6N8CwYW1dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkN2NlZjhiM2FkOTIwMzE2MzBhYWNhMjI2YTllZDc5YmE2
MDU1ODYwHhcNMjUwODIzMDYwMDI2WhcNMjUwODI0MDYwMDI2WjAzMTEwLwYDVQQD
Eyg0MDk5ZWQwYWE0NjM3MzExYzc1NzQxZWU4ZmM0OTI0OTFhMWIyZGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2NKirozd+GqC9UCHaRG//uS85Ps
qw6hPGKPIFqQXaomv+Q+cWA+ySQlfulyQQp3eZoDaO7U0XH8zLH7i89mmv1dcu3a
t+ldWZqPoZA1jNdnNfOxkcvUFBATsPnwUZvteJgzVfhEr1DCQzeBLgii8zjux0iz
l86BHY6x5uEpy7IUOJf8N+Y2WzrE5D/CRxkKB25E9dWaTPyNCgUeOhdc2kZpna2r
TOl2+1ClXmYlkqOxKBl0Fohs1X2Ab7rP1/ueFVClXmgsZJC03Dmzo82NTxE+28Og
ecZ56xpFSEuNpjNtC4cyutCGYunDirUSzWhGOwibO+zLMxd6IWERo4biiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECZ7QqkY3MRx1dB7o/EkkkaGy3mMB8GA1UdIwQY
MBaAFN1874s62SAxYwqsoiap7Xm6YFWGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1h6dml6clpJREZqQ3F5aUpxbnRlYnBnVllZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xZDk4YjAtNGE0ZC00MTkwLWJkODUt
MzcyZjY1ZDk5YTlmLzEvM1h6dml6clpJREZqQ3F5aUpxbnRlYnBnVllZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8xZDk4YjAtNGE0ZC00MTkwLWJkODUtMzcyZjY1ZDk5YTlm
LzEvM1h6dml6clpJREZqQ3F5aUpxbnRlYnBnVllZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATO0+WK/D
BjlN19Ndv9Jy7kiirrrIW9sIkJsQmjkcF1JdDXhXIdnVBSBbGoZhuqibKGxWkiq4
/jRhD3lloPfknydYy0K5rS8YCktN2aQDNmaO/e8h60bXt+8U/AVuMal68jVFG9RV
cnuRzA6rA0p3OteEaX71Q/fyLp8wnVnillXMy2dl3o/weHwYn5lo4A+Z5OJduRtn
Md7gXdMKNuKLj40Oh+sV4RQ9s7OMK2qrWVNKXJEjWBBlirx6ATlmRpbAdoWFScbb
bzJddpfXOEJPe+Du5IFL6jtqToU4vrqr+MaVBK0mbywHXs8FAa9iD+sdlYLezqU1
/aHbMDcNh0NQaQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:10:38 2025 by rpki-client