Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: p961xUzGReYpE/S19mLMSi5xlr6tuTrT7v+Td1Sk6R0=
Subject key identifier: 5C:D4:EA:A2:9B:81:AD:39:96:ED:7D:40:EF:E8:D5:C9:7A:28:CF:76
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 0198D515AC681167C375EB4A150C93D5569F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 1657
Signing time: Sat 23 Aug 2025 04:00:23 +0000
Manifest this update: Sat 23 Aug 2025 04:00:23 +0000
Manifest next update: Sun 24 Aug 2025 04:00:23 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: ZeZzIIovqPUw73Ysq9PpjRYsKjfR4dhhm/PWGr27UzA=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:ac:68:11:67:c3:75:eb:4a:15:0c:93:d5:56:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Aug 23 04:00:23 2025 GMT
Not After : Aug 24 04:00:23 2025 GMT
Subject: CN=5cd4eaa29b81ad3996ed7d40efe8d5c97a28cf76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:28:fe:d4:68:12:02:91:32:5e:2a:14:6e:
62:23:ea:58:99:6e:62:78:b0:c6:fb:44:62:46:73:
10:ac:6a:bd:ab:f1:cb:a1:8d:28:33:c4:9e:58:cf:
34:2f:42:7b:d5:67:25:93:82:74:98:17:42:63:21:
4a:34:a5:4a:e2:0d:66:98:97:2e:5a:90:48:99:6c:
13:88:a8:bb:af:54:0f:7c:a6:66:56:2a:84:c4:0a:
7c:ba:9b:b2:38:df:04:81:9f:b6:6b:b3:07:f6:e8:
17:85:5d:8a:43:03:7d:70:ec:ba:b0:de:87:fb:65:
e7:43:c2:39:22:f2:e2:32:64:66:49:1f:1b:7c:bd:
26:e9:3e:ec:56:93:8c:68:a0:7b:2b:44:ee:bd:41:
ff:27:a7:ef:34:08:8f:bd:d4:38:48:fd:66:49:47:
f9:40:2d:77:9b:18:b6:da:5e:bf:38:98:da:8b:6a:
47:80:96:ea:52:e7:2b:78:0b:32:e2:79:c1:1f:83:
98:af:da:ac:74:54:36:65:97:34:35:c1:24:36:b0:
ee:90:74:80:53:18:af:87:78:cc:d7:d9:1a:fc:5d:
f9:1d:8d:5c:3e:51:99:23:5e:52:5b:9b:ff:36:3c:
71:f6:e1:1a:57:5b:cf:28:a0:cc:3f:07:53:41:eb:
26:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D4:EA:A2:9B:81:AD:39:96:ED:7D:40:EF:E8:D5:C9:7A:28:CF:76
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ce:58:32:6f:66:d7:d9:82:cd:4d:2e:c3:8d:b9:19:db:e3:
0d:7f:49:91:37:d6:1c:6d:6c:e1:72:f5:6e:df:d6:62:4e:15:
12:be:29:1c:7c:e2:8e:2f:cf:71:fa:71:02:24:6c:83:71:73:
7d:f7:47:c6:79:8f:c4:13:63:43:51:2d:ff:2b:87:79:77:76:
0b:78:67:cb:82:d2:1c:91:3b:2f:59:1b:57:25:bd:f3:83:78:
7c:14:88:50:79:7a:26:e0:c3:26:58:ec:7f:fa:dd:33:3a:8d:
72:90:a4:32:15:8a:d1:8f:a0:56:31:b0:e6:ab:95:d4:09:5b:
2b:9f:f2:db:bd:0e:20:9f:f9:72:a9:4a:cd:a5:7b:15:ba:64:
cb:56:39:0f:77:41:7e:ac:5d:b0:aa:7f:9e:db:7a:64:7d:f4:
7f:b5:ba:63:11:4b:4d:1c:59:a5:4a:27:bf:20:64:db:68:ac:
2c:8b:22:6a:79:fa:f2:ea:4c:b4:a3:7f:ec:c9:b1:c0:61:5c:
1d:f1:4b:e2:a7:f1:b2:5e:fc:18:94:66:14:97:43:de:4d:81:
a7:37:51:e7:f8:94:8c:80:a9:ec:ec:89:54:d7:83:fe:6c:2d:
b6:eb:a3:1a:b5:97:1a:d8:2c:6e:8b:04:bd:c4:c2:f9:03:c7:
62:e7:c9:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 07:02:52 2025 by rpki-client