Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: 6FK2E3DzGoPYdYyniS0eiG4Zs8UrU4j/CnzOW/uU/i0=
Subject key identifier: CD:55:89:E1:1C:0A:96:6D:72:42:F0:1F:8D:35:1A:0E:B2:95:C4:FE
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 0199FCFD23A4025905DB3D436CA4C25ADEA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 15:01:12 +0000
Manifest this update: Sun 19 Oct 2025 15:01:12 +0000
Manifest next update: Mon 20 Oct 2025 15:01:12 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: Qsbb2W6viueoSQXS8eyR8o5LcTFOA2oHH5CjGsJegus=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:23:a4:02:59:05:db:3d:43:6c:a4:c2:5a:de:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Oct 19 15:01:12 2025 GMT
Not After : Oct 20 15:01:12 2025 GMT
Subject: CN=cd5589e11c0a966d7242f01f8d351a0eb295c4fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f4:f8:2a:e8:7b:96:fd:48:0a:66:ca:7f:7d:
f2:3d:c9:c9:57:47:ce:a7:75:46:66:e4:70:0b:24:
9b:fa:ba:5e:34:75:62:3c:a2:56:a4:cd:d1:8a:ba:
b3:32:66:a0:8b:78:6e:e8:93:f9:69:78:40:6e:f3:
03:2b:e9:d2:7f:7e:c8:eb:9f:f5:f9:b4:c7:ac:64:
0b:10:f4:57:2b:20:16:a1:f2:6c:bb:4e:bd:92:b4:
0c:63:10:64:a0:08:0d:04:b8:58:d9:d3:af:5e:26:
97:de:89:95:eb:21:11:0a:31:37:0f:6e:46:36:55:
03:da:a5:8a:4e:9b:79:80:ee:ce:4d:a1:cb:ce:12:
ba:d1:8c:d0:f8:db:9d:f5:ff:40:a1:d4:34:50:cf:
89:67:77:19:31:28:91:db:c6:a2:19:f1:14:15:fc:
d6:a6:21:7c:90:c8:d3:b1:bc:3a:cc:d9:25:1b:5b:
10:f3:42:b4:6f:e3:18:d7:9b:07:ec:de:c9:f8:d0:
2e:0f:88:5d:8d:79:88:03:fc:8a:03:f9:93:f0:2c:
65:71:c5:d7:f4:e9:2e:b2:5f:90:05:11:6c:19:42:
6b:9a:e6:c0:33:11:d8:d2:a0:99:d5:ca:65:51:a9:
ff:d9:93:12:5f:d0:a8:e6:d8:18:7c:59:af:26:71:
f0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:55:89:E1:1C:0A:96:6D:72:42:F0:1F:8D:35:1A:0E:B2:95:C4:FE
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:b2:bc:df:b1:4d:cc:20:9a:0f:a4:21:d7:c5:0f:56:8e:81:
bc:d5:c4:82:55:bb:b0:3b:cd:2d:51:12:95:41:f7:53:f8:94:
82:d0:8e:21:f6:77:51:a8:3f:b6:8d:88:38:9d:8f:14:40:cf:
ff:a5:bc:51:10:83:da:8b:13:04:34:43:e9:44:50:3f:73:19:
52:e3:8d:0e:17:ea:9d:d4:45:c5:1a:76:a7:74:d8:ee:a9:c4:
34:1a:1e:9c:27:c9:b1:03:07:96:be:51:4d:94:b3:8f:c4:3e:
61:c8:3c:68:56:0e:71:77:56:06:17:06:b8:bb:be:68:33:c5:
6a:80:24:8a:33:1c:f6:03:4b:ff:63:20:2d:9e:ff:a9:dd:a3:
99:06:f7:84:e2:0f:e3:3d:c2:16:c0:98:0d:99:4b:80:7a:cd:
53:44:b1:4f:dc:2d:ad:df:de:a8:ae:34:9e:82:3d:54:86:9f:
53:90:88:7b:dd:19:15:9f:e5:48:48:19:ee:37:0d:fa:dd:16:
1e:be:cf:bd:c7:53:eb:40:1b:27:2b:04:e7:d8:32:0d:1c:22:
a3:07:71:3c:a3:aa:ab:36:78:b4:46:dc:8c:68:b1:b8:27:5b:
65:72:84:3b:b0:7b:fc:30:4a:dd:5a:e3:54:6d:f4:23:04:ec:
6d:4f:fd:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:39:14 2025 by rpki-client