
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft
File: 3kK6kvCUZ8GIi16eNEiVB0SweYE.mft (raw, json)
Hash identifier: pWJsrOAmxjPo79qa7wFASdSO8uRF+0hV87TpSHcNM9s=
Subject key identifier: 83:51:2C:F9:3B:63:92:6C:FB:29:76:91:C9:18:30:B0:67:D1:1C:A5
Authority key identifier: DE:42:BA:92:F0:94:67:C1:88:8B:5E:9E:34:48:95:07:44:B0:79:81
Certificate issuer: /CN=de42ba92f09467c1888b5e9e3448950744b07981
Certificate serial: 0198D65F8FDF00ED359104163F184B772EF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kK6kvCUZ8GIi16eNEiVB0SweYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft
Manifest number: 10B9
Signing time: Sat 23 Aug 2025 10:00:43 +0000
Manifest this update: Sat 23 Aug 2025 10:00:43 +0000
Manifest next update: Sun 24 Aug 2025 10:00:43 +0000
Files and hashes: 1: 3kK6kvCUZ8GIi16eNEiVB0SweYE.crl (hash: rfGiuW7I1xMEzt605WaQzG9rryr88Kq4Shvom1QI0po=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3kK6kvCUZ8GIi16eNEiVB0SweYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:8f:df:00:ed:35:91:04:16:3f:18:4b:77:2e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de42ba92f09467c1888b5e9e3448950744b07981
Validity
Not Before: Aug 23 10:00:43 2025 GMT
Not After : Aug 24 10:00:43 2025 GMT
Subject: CN=83512cf93b63926cfb297691c91830b067d11ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:18:40:c8:58:68:c4:9c:66:c5:b9:d9:f9:8b:
92:3f:2e:1d:77:de:ac:75:5c:5d:fc:85:b6:a0:df:
37:7e:fb:e6:25:e2:2a:34:1c:56:ea:3d:09:13:ef:
52:14:dd:af:00:74:60:21:86:92:80:ce:c6:5f:73:
cf:e8:e9:fb:c6:a9:8d:6d:70:69:3f:54:78:5a:26:
a3:b6:62:bb:c8:1b:42:9e:fb:78:f8:97:3c:cb:6c:
6d:36:64:2b:49:6a:aa:10:78:b6:20:60:4c:2d:63:
7e:3e:90:fc:e5:ee:0b:6c:64:22:34:e2:0a:7a:40:
a8:15:4a:4e:17:37:24:8d:c1:9e:d6:82:f3:3a:48:
16:46:ce:f5:62:27:c7:17:12:95:9c:fa:e3:44:ee:
77:1d:ba:d7:25:84:ce:49:bf:08:98:71:8b:85:ff:
b1:83:a7:4d:73:a2:e6:34:9d:74:7b:ec:1f:da:e8:
a3:d4:e5:d5:b1:45:e2:6f:57:37:af:fb:ad:cd:82:
6c:66:19:2d:ab:cd:2a:43:94:df:14:a9:1b:b9:f5:
8e:e6:2b:90:91:8e:51:b4:59:77:5e:24:a9:8e:3c:
c6:d1:a9:ac:08:b0:81:62:2b:2e:73:40:5e:1f:23:
23:ef:53:e3:eb:7a:a1:34:f5:f3:4c:85:f9:a4:8c:
6d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:51:2C:F9:3B:63:92:6C:FB:29:76:91:C9:18:30:B0:67:D1:1C:A5
X509v3 Authority Key Identifier:
keyid:DE:42:BA:92:F0:94:67:C1:88:8B:5E:9E:34:48:95:07:44:B0:79:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kK6kvCUZ8GIi16eNEiVB0SweYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/3ff463-0e3d-4e77-bd13-5b3b4b913cf8/1/3kK6kvCUZ8GIi16eNEiVB0SweYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:f8:38:50:64:8e:98:b4:af:ae:ab:01:05:c0:73:95:25:5d:
54:4a:85:b8:d5:29:6a:95:22:6e:de:ca:6d:ce:b9:06:b4:7c:
3c:85:ec:e1:c0:3c:e1:d0:ff:14:9c:4d:17:2f:2e:a8:42:e7:
33:47:8d:8a:47:dc:15:f5:4a:94:09:1f:de:e5:01:92:ef:e2:
d1:73:e3:c9:b2:bf:f3:d6:d9:9d:20:75:22:9c:4c:f2:5c:99:
f5:da:19:0d:49:ee:8a:be:22:e6:84:d6:83:5d:2b:50:53:98:
40:2f:00:74:dc:04:af:b6:e7:fd:ba:f6:89:fe:de:25:10:85:
d5:51:03:03:96:09:a2:7f:be:d2:c6:6a:d2:89:55:ab:41:d0:
0f:c8:a6:28:b5:31:ca:27:53:0a:27:19:cb:17:5a:ca:1d:74:
8b:7d:e2:7b:60:d8:41:94:c0:d2:00:cb:34:75:06:38:f7:30:
57:ca:78:fe:bb:e9:61:40:e4:2e:13:dd:5c:9a:76:f0:cd:74:
08:15:9f:65:6b:57:ac:d3:aa:0f:e6:42:ac:5a:ef:3b:ca:0f:
25:bd:09:2f:75:cf:3b:1d:4e:1d:aa:af:89:b5:da:f6:f5:28:
2a:92:35:8a:eb:a4:a4:5e:bf:d2:6d:08:20:33:67:df:97:66:
57:c0:1d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:02:23 2025 by rpki-client