Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
File: 3j4BZ79YLOzkjWxtApqCzeJyqdU.mft (raw, json)
Hash identifier: yMa7ukhBrh3RimFTvBh71GQGCl9FV2JnCU8DdZskhrY=
Subject key identifier: 8B:BC:44:92:C0:C6:B6:F9:17:99:13:D7:45:F7:AE:38:28:60:7B:05
Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Certificate serial: 0199FD6B43ECAFB4BC3197A9DDFC4B6B5459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
Manifest number: 1676
Signing time: Sun 19 Oct 2025 17:01:29 +0000
Manifest this update: Sun 19 Oct 2025 17:01:29 +0000
Manifest next update: Mon 20 Oct 2025 17:01:29 +0000
Files and hashes: 1: 3j4BZ79YLOzkjWxtApqCzeJyqdU.crl (hash: lFWov5mSG529oS36VoglkRlFp7HYxJ2MicXkEecYB/8=)
2: WK3H-x4lvtSz5PAYVzf83jx6Xhg.roa (hash: IHyV2nIBoBadJ+LZrUqe4zccqPuVek6+/UVCrBQ/9jA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:43:ec:af:b4:bc:31:97:a9:dd:fc:4b:6b:54:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Validity
Not Before: Oct 19 17:01:29 2025 GMT
Not After : Oct 20 17:01:29 2025 GMT
Subject: CN=8bbc4492c0c6b6f9179913d745f7ae3828607b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:59:df:88:48:f7:23:10:33:e5:27:83:38:
4d:54:54:c6:dd:0a:68:5d:12:bd:c2:51:24:c5:09:
56:85:3a:30:f9:6e:6f:b5:1c:09:16:5b:ce:1f:40:
c8:8f:c0:c9:be:58:f7:5c:e4:3d:98:61:9f:1e:d5:
7a:ff:77:d3:94:aa:f2:bc:46:39:22:b7:9b:da:6f:
12:a1:5f:bf:8a:f4:3a:34:09:a5:26:d8:01:f7:94:
9d:83:e6:b4:eb:4e:73:6b:f9:db:d0:ce:4b:36:e0:
1e:f0:4c:ba:29:f4:38:97:07:da:a9:6e:5f:21:2d:
09:a3:01:a5:85:0b:c2:f8:ef:6f:e8:13:55:fe:0f:
d0:2b:97:5f:e0:d4:d5:b5:c5:19:51:a5:19:45:d0:
65:0c:4c:16:30:62:d2:a4:96:eb:42:6b:f7:cf:72:
d9:c4:30:e5:6c:6c:6a:2a:7c:ac:99:7d:85:55:ec:
47:30:97:ce:40:40:b6:da:b4:83:3b:92:57:ac:38:
d8:0c:ff:45:66:17:7d:9e:23:18:16:97:bd:a3:27:
6f:2e:82:92:75:e3:ce:d8:4d:f0:41:c4:57:b5:1d:
62:20:4f:bd:96:c0:25:78:9a:ac:4d:a1:47:2c:13:
3a:12:da:12:8b:2f:9d:72:82:74:56:05:9f:b8:5d:
81:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:BC:44:92:C0:C6:B6:F9:17:99:13:D7:45:F7:AE:38:28:60:7B:05
X509v3 Authority Key Identifier:
keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:00:25:8e:78:c6:f1:47:0d:65:39:0e:5e:30:f3:f6:55:94:
64:45:9b:9f:e1:07:7e:04:f8:17:de:fc:36:ae:1d:7a:3f:be:
31:a2:26:4d:05:7b:da:13:65:1e:bf:e4:3c:5f:0b:b8:9c:2f:
ef:43:5f:9b:5f:d9:87:26:e4:bd:bf:7c:3e:59:4c:fa:ae:fc:
f7:f8:ab:38:dc:e4:94:6b:93:2e:3c:ae:cb:48:f5:4f:e3:bd:
a9:e1:4f:d1:64:3d:ff:21:9d:bd:48:39:bf:76:80:de:b7:bc:
b9:b6:e6:5c:b5:33:2a:48:f2:50:e0:04:88:57:1b:5a:c7:c6:
4a:71:87:f5:11:b6:e8:61:0a:5c:c1:b7:75:e2:31:99:63:cd:
0a:2b:83:5f:b6:59:e0:53:6e:86:c4:06:a9:7f:66:3a:cb:2d:
7f:b9:5d:c3:82:b1:63:78:34:15:62:86:15:9e:3c:02:87:d0:
18:a1:82:9b:86:79:2c:3d:e7:27:b4:58:18:91:7f:db:e2:70:
92:48:b2:9b:5e:e2:53:7e:bb:5f:f3:2a:a3:d6:f7:fd:c5:d9:
cb:0d:b5:25:c8:e6:40:85:6b:a1:4d:be:08:d1:52:ae:bd:a4:
9f:05:00:e9:65:fe:c0:17:4d:d7:1f:77:bf:f3:25:c1:48:54:
92:5e:66:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:28:08 2025 by rpki-client