Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
File: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft (raw, json)
Hash identifier: tf0SXmgi2etuOGmFcIKr/mKRUEgGIZwP5Nuu5gBufwk=
Subject key identifier: 3A:05:0A:74:3F:14:82:5D:22:0C:29:FA:52:A4:CC:B5:B6:5F:22:46
Authority key identifier: DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
Certificate issuer: /CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Certificate serial: 0198D4A829C4D2BB6E2E7C7FD3E1AA9C0118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
Manifest number: 0967
Signing time: Sat 23 Aug 2025 02:00:47 +0000
Manifest this update: Sat 23 Aug 2025 02:00:47 +0000
Manifest next update: Sun 24 Aug 2025 02:00:47 +0000
Files and hashes: 1: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl (hash: WSxp91Cx67K3RFij6xjgyePEEoXRrv6kOrzRJvgMCtM=)
2: vrZbrmq-YLZHy_jTQFADJGPxi-I.roa (hash: SoRxaIEIcm9lF/KB/PtX621zexUgH5AtUpObYQIQZW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:29:c4:d2:bb:6e:2e:7c:7f:d3:e1:aa:9c:01:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Validity
Not Before: Aug 23 02:00:47 2025 GMT
Not After : Aug 24 02:00:47 2025 GMT
Subject: CN=3a050a743f14825d220c29fa52a4ccb5b65f2246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:05:31:96:b1:48:09:80:e8:26:83:5b:0c:
d4:b1:09:50:ff:96:96:63:9e:56:c9:62:7c:d1:19:
22:42:f1:7f:e7:38:31:7c:30:bc:c7:59:bf:61:af:
89:73:a3:12:95:d9:e0:4c:2d:a0:75:71:fe:d3:d7:
95:5f:15:72:c4:26:cd:db:ef:78:57:7a:5d:88:d7:
a8:53:74:81:e8:b3:8c:75:73:68:13:82:cd:7a:1e:
f1:c2:d5:3f:6a:67:f0:ea:fa:1f:52:bd:22:f6:ef:
bf:ab:c8:35:87:f0:9d:e2:20:65:09:a6:e1:f4:7d:
74:21:71:60:a4:f3:fc:57:00:38:89:c5:00:31:0d:
77:71:3c:0f:f5:e6:46:64:99:dc:4d:4a:2b:0c:32:
4a:77:c1:8d:02:57:d7:df:8e:d2:a4:d6:ed:a8:35:
02:34:8d:b5:3e:82:3f:4e:81:59:8c:dc:8f:f3:ed:
9e:71:01:fa:3c:66:d8:94:36:17:09:53:0a:7f:d0:
0a:13:b8:de:45:da:c9:19:6d:0c:d3:be:7c:5e:c7:
70:5f:57:40:e5:09:02:f8:7a:65:b7:a5:a1:41:fe:
94:a0:6b:be:d1:6d:35:4c:f5:b9:21:64:4e:63:38:
02:e0:b0:ea:f7:92:97:91:9e:e6:25:ef:e4:8c:b8:
e7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:05:0A:74:3F:14:82:5D:22:0C:29:FA:52:A4:CC:B5:B6:5F:22:46
X509v3 Authority Key Identifier:
keyid:DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:47:43:fa:80:02:2b:f4:8f:aa:1c:cd:c6:33:54:20:59:cc:
d5:6a:d1:d9:eb:30:8c:79:9e:58:07:87:e0:e5:ce:0a:81:f3:
64:3b:bb:42:cf:93:2b:1a:b9:b5:3e:db:ea:5e:b9:af:17:e9:
ef:d8:9f:34:e5:ce:03:55:e5:53:ac:54:15:68:3f:06:11:0f:
b8:fa:d6:a6:b5:03:e1:3b:8d:aa:db:ec:86:66:38:4b:2f:8e:
74:7d:dc:68:8e:65:af:a2:c9:74:b3:b1:47:de:6d:06:f1:5a:
bb:d8:40:e3:49:0f:f2:6b:b3:56:ff:8f:48:af:84:19:d2:53:
24:46:47:a0:ad:9b:b8:2c:03:14:a1:52:4f:9a:77:21:60:ac:
d0:15:7c:20:b5:d4:58:04:53:26:37:5c:4f:9d:8c:ba:d7:f6:
f8:cd:50:d6:97:53:0c:d6:d0:8b:48:6e:79:e5:37:61:3b:50:
38:9a:18:c6:8e:28:39:8c:f1:61:67:23:bb:16:08:6a:70:1d:
43:66:8b:b3:2c:79:1c:b5:91:41:87:31:c2:b9:12:7d:48:22:
92:29:85:8c:8b:2a:e7:a4:e8:c3:46:18:30:38:5f:a0:14:bf:
6c:d7:76:7e:f7:28:06:64:37:f5:6f:3c:f6:54:76:e9:d3:53:
09:d1:97:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:16 2025 by rpki-client