Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
File: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft (raw, json)
Hash identifier: 9fkEl9VvmxP2cHzKPWn0VumeTp124jj3BAK+ZEfxBkk=
Subject key identifier: C0:B7:06:99:CC:4D:F2:29:7E:3C:4F:87:8F:CE:56:3C:C0:5F:C5:E3
Authority key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Certificate issuer: /CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Certificate serial: 0198D960A9DC73A04F2D3E9FF930F9F25472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
Manifest number: 0AB5
Signing time: Sun 24 Aug 2025 00:00:47 +0000
Manifest this update: Sun 24 Aug 2025 00:00:47 +0000
Manifest next update: Mon 25 Aug 2025 00:00:47 +0000
Files and hashes: 1: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl (hash: 8GSiwC3dAO4aDYgwr4SXmuwoYDoBdy3RhqSvhpWbyLg=)
2: dKbYijsCo6cz-c8VDyBQbX6KvIQ.roa (hash: s+UDqFCEg39f4gk9fs9ZUXaGmiKaVpMOQ/J8CYcOuY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d9:60:a9:dc:73:a0:4f:2d:3e:9f:f9:30:f9:f2:54:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Validity
Not Before: Aug 24 00:00:47 2025 GMT
Not After : Aug 25 00:00:47 2025 GMT
Subject: CN=c0b70699cc4df2297e3c4f878fce563cc05fc5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1e:5e:c8:3d:db:68:9a:cd:99:2a:93:e4:36:
a0:51:6c:2a:e9:4a:6d:39:72:7a:c8:29:12:ad:67:
50:cb:59:81:78:7a:a9:b8:57:a9:5d:70:bc:3d:57:
86:bb:18:b7:57:ec:74:2a:df:da:ee:5a:4c:f7:dd:
77:1c:15:12:9c:c0:11:3b:d6:9b:a3:0d:3a:ef:26:
77:66:c7:43:eb:cd:a4:52:6c:e7:a4:50:02:80:fd:
bb:54:a6:80:0c:ff:38:7d:be:95:65:0e:74:50:be:
4f:18:6a:b8:ab:c5:cf:14:3f:57:7c:23:e1:e1:d2:
2f:28:48:61:3f:3f:9f:8d:75:42:07:91:65:c8:07:
8b:31:1e:9a:44:51:cc:a9:23:cf:0a:db:23:74:d6:
7b:f4:f7:33:29:c2:ab:b1:fd:39:24:49:ca:d2:58:
3c:15:ea:ea:90:25:e1:71:0c:0d:fe:f5:d7:31:d6:
65:d2:9f:ab:d7:2a:6b:37:d8:84:19:a7:e6:8a:c5:
95:24:d8:12:da:19:41:1b:c3:11:c7:d0:18:71:0a:
11:41:e1:2f:71:29:e0:c2:67:71:79:27:9b:45:9a:
c9:14:12:78:37:fa:d1:40:ad:d6:cf:96:92:a7:b4:
4f:bc:99:34:68:3a:9f:fa:65:71:8b:75:b2:8f:46:
fe:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:B7:06:99:CC:4D:F2:29:7E:3C:4F:87:8F:CE:56:3C:C0:5F:C5:E3
X509v3 Authority Key Identifier:
keyid:DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:f6:8e:81:52:c8:48:e4:bb:44:c2:65:9e:73:fe:18:70:a1:
a6:f3:77:ff:7c:d5:2a:7f:c9:33:cb:b0:1a:f4:89:c8:af:39:
9b:22:39:88:08:bf:ce:02:8d:c6:3f:34:3e:a8:92:45:d9:20:
9c:3e:e5:13:2e:e5:26:a1:aa:01:a0:dc:aa:cd:c7:3e:cf:51:
c0:d0:3b:a5:a8:fb:9d:08:0e:13:25:cc:4e:78:04:6f:b5:07:
12:83:b0:c1:e1:63:22:42:2e:30:4d:15:cf:8e:47:10:6e:b5:
bd:46:11:e2:ae:28:3d:9e:5a:8b:77:7e:d2:01:65:08:70:d7:
f4:b9:49:be:2c:27:6c:44:09:dc:3d:d7:2d:7b:24:2b:7e:95:
80:15:d7:d3:53:a5:84:49:3d:a2:5b:70:01:db:e2:44:cd:58:
d8:ba:8f:41:03:04:a6:e5:8b:61:e5:30:0e:2b:d4:81:3f:4e:
81:1e:4b:a3:59:ea:bb:4d:f4:88:c2:c4:91:9d:a3:d3:a3:c4:
33:74:88:07:39:ed:df:a5:9f:31:c7:21:8d:1a:1a:fa:f0:13:
d0:47:c4:07:c4:ac:af:1b:50:76:5a:7b:5c:0e:85:c3:5d:86:
c4:6c:d5:4f:4c:c9:55:7a:fb:44:73:e4:97:12:e7:09:c0:d4:
7e:78:f0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:34:25 2025 by rpki-client