Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
File: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft (raw, json)
Hash identifier: M8IbQYKYB6gntbG07VFkqtr0sRl2GoOKExVT7B62WLg=
Subject key identifier: 9B:FD:D3:87:3D:E0:59:A5:2D:41:53:40:70:8F:1B:AA:91:0E:5B:44
Authority key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Certificate issuer: /CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Certificate serial: 0199FCFD7D3387E7063E54EF37BE567AAD96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
Manifest number: 0B4C
Signing time: Sun 19 Oct 2025 15:01:34 +0000
Manifest this update: Sun 19 Oct 2025 15:01:34 +0000
Manifest next update: Mon 20 Oct 2025 15:01:34 +0000
Files and hashes: 1: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl (hash: 2jIY27B6i3/nDC0c4thSL4mum+PAMW8IyS2uGRFGpDE=)
2: dKbYijsCo6cz-c8VDyBQbX6KvIQ.roa (hash: s+UDqFCEg39f4gk9fs9ZUXaGmiKaVpMOQ/J8CYcOuY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:7d:33:87:e7:06:3e:54:ef:37:be:56:7a:ad:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Validity
Not Before: Oct 19 15:01:34 2025 GMT
Not After : Oct 20 15:01:34 2025 GMT
Subject: CN=9bfdd3873de059a52d415340708f1baa910e5b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:65:aa:b2:e4:a6:58:9d:d8:7b:0b:52:db:f8:
69:56:ff:3f:2e:2c:b9:45:b1:96:05:7e:51:74:88:
a5:a7:73:ee:9b:7b:ce:55:8b:6a:99:b8:5d:25:03:
50:42:83:a5:ef:2a:df:d1:19:20:a9:e9:69:fe:22:
8c:2c:da:05:29:19:18:9f:d3:50:22:82:94:82:eb:
fe:d9:38:b9:f8:c4:c3:d5:66:05:44:10:96:49:2e:
56:80:64:74:fb:41:f8:22:26:47:67:22:4f:04:71:
35:69:05:8f:55:03:b5:40:1b:b8:bb:ef:b4:2c:fe:
fb:41:09:f2:ba:dc:3d:ed:6d:2b:77:b7:f5:c5:8e:
9e:be:21:42:0b:cb:f2:5a:bf:03:0d:c2:c1:c9:1b:
e4:1b:42:60:a8:3a:cc:b3:9b:c7:bb:dc:62:bf:bd:
74:b6:bc:02:b4:df:fa:5f:64:0e:8a:dc:af:26:68:
40:b6:9b:70:19:77:01:76:bb:ba:c6:2a:14:1c:0d:
d5:60:ea:74:9e:bd:c4:b3:ed:9f:98:6a:28:6a:19:
ef:5e:82:8f:6a:65:d7:17:94:c8:62:cc:60:5b:f4:
83:37:ca:a0:46:04:bf:64:c5:d7:e6:0a:93:63:f3:
e0:94:7c:03:7f:db:f6:3e:0d:0c:40:01:14:03:47:
24:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FD:D3:87:3D:E0:59:A5:2D:41:53:40:70:8F:1B:AA:91:0E:5B:44
X509v3 Authority Key Identifier:
keyid:DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:a0:73:bf:3b:fb:49:2a:d8:60:d8:b6:0a:28:22:77:19:52:
f8:29:81:85:a1:4c:c0:d4:b9:e0:7b:d0:95:88:07:a6:c6:15:
89:16:04:3a:a5:22:71:f6:0d:b4:cd:28:d5:54:dc:e5:25:62:
55:ca:4a:a4:4b:eb:b6:6c:c8:56:03:4f:6c:e2:81:8c:99:af:
35:7c:a4:f6:06:45:69:9f:11:2e:a7:c8:8a:e7:70:87:a1:5f:
d9:f6:c9:99:d6:72:cd:2d:9e:f3:78:1a:cd:5c:66:3b:d4:e4:
a3:0f:cf:56:ca:db:f1:d7:8f:71:c1:12:19:31:02:fb:b1:6c:
7c:0f:0d:6b:cf:f1:e7:04:b2:00:c9:90:9d:52:26:78:94:0e:
ed:41:d5:58:c0:8f:41:32:d2:bc:65:55:94:3c:b6:5c:bd:51:
aa:01:f4:33:71:99:1a:f0:03:ec:3e:dd:3b:53:f9:71:82:c3:
c7:cf:8a:64:53:8b:d3:90:bc:99:3e:20:00:1f:d5:47:14:92:
91:93:04:3a:da:df:6e:84:62:90:ce:a4:2a:d5:21:75:dc:41:
40:ff:72:6a:93:73:1c:32:86:3d:80:f3:7a:ba:46:5c:9b:32:
3b:df:aa:18:93:d0:94:98:06:87:cd:1f:76:12:6b:ad:63:0e:
92:4a:70:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:05 2025 by rpki-client