Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: Ax/HRjQMIgfLEqBHegIlwoBcHbeFyIhy2QsFnt3FnF0=
Subject key identifier: 7D:2A:45:A7:BE:2D:91:DA:EC:A1:A7:59:D5:22:51:D2:C6:F5:64:71
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 0198D5837C8851F637CD9B189B23F912701A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 06:00:20 +0000
Manifest this update: Sat 23 Aug 2025 06:00:20 +0000
Manifest next update: Sun 24 Aug 2025 06:00:20 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: bYnx6ADr50EJ5xKSniRE6LmM+g8SGVLj2pr9Wa4YBx0=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:7c:88:51:f6:37:cd:9b:18:9b:23:f9:12:70:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Aug 23 06:00:20 2025 GMT
Not After : Aug 24 06:00:20 2025 GMT
Subject: CN=7d2a45a7be2d91daeca1a759d52251d2c6f56471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8a:d6:1b:86:2d:a7:89:57:75:8d:40:2f:15:
4d:79:b8:91:11:6f:fe:9b:3f:56:74:9b:2d:4a:1d:
be:a9:f3:3d:63:1e:45:a8:bc:bf:b4:20:d7:2d:21:
c0:c0:50:04:ef:c6:a6:f7:48:f1:63:65:08:28:a8:
f8:fc:dd:21:53:c3:1a:09:9f:0f:04:8c:15:33:02:
10:b1:69:a8:6c:8f:47:9c:87:51:c5:77:a4:50:5b:
4a:37:5b:2c:e9:79:28:28:07:56:89:64:56:78:e1:
ef:74:32:4a:5b:3c:7d:a3:bc:a4:f9:3b:ce:4f:4d:
43:d5:c4:6e:88:e9:62:e4:06:e1:72:56:da:11:41:
28:73:1c:ff:b5:22:c6:ad:09:27:95:27:fe:5e:65:
62:6a:63:3b:8a:8b:fb:c5:24:7f:a2:67:7b:7f:6e:
cd:64:c3:9c:e3:a7:15:76:8a:20:0c:0f:ab:b1:c3:
1a:5f:14:5f:80:d7:a3:60:68:f0:ac:6d:06:0f:50:
b5:7b:c7:ef:f2:62:6c:a8:f2:da:38:74:a0:ad:67:
2a:eb:71:b1:58:4f:31:0c:29:71:d5:d3:c2:7f:d2:
2f:b6:ea:6c:2a:6b:21:af:b9:44:25:cd:1b:97:0e:
81:fa:05:38:1b:95:ad:eb:ee:42:f0:6f:62:2f:92:
fb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2A:45:A7:BE:2D:91:DA:EC:A1:A7:59:D5:22:51:D2:C6:F5:64:71
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:f6:93:a0:62:51:6c:26:9d:5d:b2:3c:87:b6:a9:a6:4b:5c:
70:78:74:8d:8e:bd:d5:b1:20:67:96:67:90:ba:e0:92:b4:6f:
24:bb:41:f0:a1:c3:23:43:9e:12:04:23:a5:61:2b:f3:b7:fe:
84:ca:2e:a3:90:da:be:c6:1e:ab:69:9d:68:67:d2:99:c6:a1:
26:0f:f1:60:74:4d:50:b8:ce:5b:d1:0d:a7:2d:47:2b:69:89:
6e:0a:bf:9d:dc:6e:b3:e1:f9:75:2f:06:9e:10:1b:60:12:4e:
38:8f:cf:b2:ca:42:18:42:3a:88:3a:27:ec:ce:c1:70:43:d6:
3e:f0:2a:7e:e5:f5:61:63:8c:7c:a3:d5:cb:64:97:8e:b5:b6:
82:c4:91:cf:da:cf:f8:d1:e9:71:9b:7a:3b:d5:5e:b9:78:2d:
d7:2e:ae:29:5f:75:f5:b4:36:a0:95:25:5b:34:8b:39:51:a6:
cd:e2:38:0f:3e:d6:15:71:50:31:bf:06:86:4a:c1:43:b8:34:
5f:21:6b:dd:fd:96:82:65:e5:1f:20:af:4d:96:53:ad:e0:e6:
49:44:56:61:a0:00:e3:d7:32:95:57:44:c9:25:ef:ac:a2:14:
c7:33:6a:ec:d9:da:aa:ca:35:c6:4b:95:06:fd:0d:c5:40:e1:
de:6d:e5:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:05 2025 by rpki-client