Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
File: 3j4BZ79YLOzkjWxtApqCzeJyqdU.mft (raw, json)
Hash identifier: +vc9OQCPm9grPjESbfxmoDXlCZ18G1z1Z/t58151f9c=
Subject key identifier: 74:BC:71:11:DD:C3:F1:E3:5C:43:59:5E:0B:20:4A:89:50:05:A3:52
Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Certificate serial: 0198D4047F905E92E23B668EBCA6BF86132D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
Manifest number: 15DC
Signing time: Fri 22 Aug 2025 23:02:01 +0000
Manifest this update: Fri 22 Aug 2025 23:02:01 +0000
Manifest next update: Sat 23 Aug 2025 23:02:01 +0000
Files and hashes: 1: 3j4BZ79YLOzkjWxtApqCzeJyqdU.crl (hash: h2ryRhEku1iud3/vDfNmsVoSkh7OeznuVz7hIgbaucI=)
2: WK3H-x4lvtSz5PAYVzf83jx6Xhg.roa (hash: IHyV2nIBoBadJ+LZrUqe4zccqPuVek6+/UVCrBQ/9jA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:7f:90:5e:92:e2:3b:66:8e:bc:a6:bf:86:13:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Validity
Not Before: Aug 22 23:02:01 2025 GMT
Not After : Aug 23 23:02:01 2025 GMT
Subject: CN=74bc7111ddc3f1e35c43595e0b204a895005a352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f3:02:59:89:3f:4f:04:b4:3c:81:5c:98:89:
ab:cc:0b:ec:5d:92:e0:10:95:37:79:58:10:18:d3:
cc:57:e9:94:b3:57:38:35:bc:ad:4a:ac:c2:90:1d:
83:db:74:70:41:a9:15:c3:e0:4c:22:6e:52:9c:ff:
f8:27:37:74:18:a4:f5:5c:c7:9c:47:6e:3f:6c:55:
c7:c3:db:72:43:87:67:1f:11:12:b4:99:87:3b:53:
ee:83:b7:bf:e2:88:cb:6a:ff:71:82:08:b3:b5:f7:
3f:f2:d8:c4:30:93:00:20:d0:f8:aa:54:79:df:80:
81:30:4f:21:a3:b3:08:90:f5:6d:28:61:80:9f:f2:
11:de:01:c4:c4:77:c0:aa:e3:58:9d:44:b3:9d:58:
92:a4:1e:13:27:63:b2:d3:0e:7a:50:8f:b0:2d:ad:
f2:01:5e:00:f0:93:32:a9:57:cd:4a:2a:f1:7d:4a:
fb:99:7e:43:85:df:36:67:3a:b6:ab:ee:6f:1a:68:
3b:47:7b:2b:91:b5:58:f3:60:41:55:32:b1:ca:6e:
ff:e2:e1:f8:33:4d:93:b8:c5:fb:53:34:e8:91:56:
01:06:65:32:53:ac:db:bf:37:c9:2c:f2:35:67:cf:
44:3a:89:6f:05:0d:a8:74:97:63:0b:48:47:35:6a:
2a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BC:71:11:DD:C3:F1:E3:5C:43:59:5E:0B:20:4A:89:50:05:A3:52
X509v3 Authority Key Identifier:
keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:6b:94:49:09:61:43:92:27:09:26:34:08:0c:84:84:df:81:
26:e3:21:7a:dc:f1:b1:2d:21:2a:bd:65:e6:cd:4c:b7:db:d1:
be:6c:60:2a:d5:68:9d:c1:48:ce:f5:c7:7a:98:6e:5f:0f:58:
76:d6:c9:10:5d:bc:89:b5:60:0c:02:d6:c6:5e:56:a4:14:67:
40:ae:0b:ba:af:7a:6a:85:9a:f6:f0:08:a6:04:c2:29:14:42:
ad:bf:1e:15:e5:53:a0:16:2e:97:e4:43:78:66:12:d4:18:05:
83:63:c3:92:53:35:c4:38:5c:c2:66:ed:31:b0:0d:58:d7:e7:
b8:7d:ee:b6:b8:fc:b5:ff:98:20:76:95:40:f3:5f:ad:dc:ac:
92:8a:e2:6a:6a:e8:50:5b:68:6e:4f:2d:c5:bd:b3:56:5d:5d:
2c:8e:fe:c0:60:bf:a8:78:51:cf:86:27:94:f5:da:c3:58:88:
a8:bc:de:93:db:73:d9:8c:c9:8a:a7:9f:ad:76:1e:6b:2c:90:
10:3d:6a:5c:22:b1:fc:d0:b0:79:79:dc:03:7f:aa:b0:37:d8:
b4:09:74:57:1c:71:d6:49:70:43:35:ce:13:3d:ce:b6:1a:bf:
6b:73:3e:7b:21:3d:6b:4b:ca:06:ee:14:d4:7c:e4:f0:91:bd:
99:2e:7b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:59 2025 by rpki-client