Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: KLWKthbsdrzxZQUacsehqhQ791XT57WWIWUwiILNoDI=
Subject key identifier: 7D:36:55:83:5B:3E:4B:AC:FE:73:E2:AB:64:64:AC:10:00:50:62:CB
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 0198D885071CFF13F6C8AF34518FA9ABE648
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 10E5
Signing time: Sat 23 Aug 2025 20:00:53 +0000
Manifest this update: Sat 23 Aug 2025 20:00:53 +0000
Manifest next update: Sun 24 Aug 2025 20:00:53 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: wP1HgrAso9l/HIYCrWLz4/8TGf0y2a1r/CZg3DEvgnw=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:85:07:1c:ff:13:f6:c8:af:34:51:8f:a9:ab:e6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Aug 23 20:00:53 2025 GMT
Not After : Aug 24 20:00:53 2025 GMT
Subject: CN=7d3655835b3e4bacfe73e2ab6464ac10005062cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:20:8b:f9:c2:4d:2b:78:90:08:fc:fd:38:d4:
92:7a:d8:23:c6:d3:28:2b:e4:b5:2f:96:96:0b:f0:
82:df:d3:58:5c:af:ae:80:1b:5e:28:bf:f9:05:60:
e2:f0:97:1c:0f:8f:4f:3e:21:34:15:e3:83:69:93:
22:c7:9c:16:88:e4:69:4d:ea:dd:8e:d8:b2:95:62:
5e:00:97:e5:6e:fb:0e:e9:66:6b:cf:8c:2d:bc:c9:
1e:13:f5:1e:9e:ad:de:06:d2:5b:e9:11:8b:8b:9f:
8e:e4:79:38:3a:93:ae:46:8c:9d:10:39:0c:db:e7:
2f:d5:92:ca:dc:3b:f4:7d:c4:07:6f:8d:9b:9d:c1:
83:5c:96:09:5e:2f:c4:02:8b:91:7c:02:58:07:8c:
dd:c7:59:11:1d:7e:c8:05:bb:d1:bf:23:6a:7c:89:
97:87:40:36:df:61:b6:73:b5:9e:f9:ce:b9:a8:3f:
39:5a:18:f1:32:c4:21:46:32:24:1b:24:65:6c:a3:
2f:0f:1e:51:c7:b1:71:eb:b2:59:ad:ad:86:2c:d5:
f8:15:7e:5a:20:cf:94:99:a7:37:7b:35:69:5d:02:
1d:37:4c:c7:ed:72:19:f5:2f:8d:ad:c4:dd:07:1d:
1e:34:45:cb:54:f5:f6:47:96:21:02:14:c7:15:0d:
bb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:36:55:83:5B:3E:4B:AC:FE:73:E2:AB:64:64:AC:10:00:50:62:CB
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:9d:4c:a8:97:5b:78:2e:1f:f8:d5:36:c8:5c:2d:1f:88:ba:
96:54:62:fb:5b:d7:a4:7b:34:c2:b1:c8:db:89:28:24:39:72:
ec:ae:58:30:52:6f:4f:9d:08:29:0f:45:fe:13:d1:db:1b:1c:
7f:59:65:6a:9a:db:13:37:3b:f3:e3:c6:f7:00:e4:01:55:23:
ac:97:49:45:a1:dd:a4:5b:67:3d:bc:ad:bf:ef:08:a4:67:d9:
e7:8c:04:26:1c:78:5d:a3:ce:84:94:9d:db:65:57:43:88:8a:
54:90:8f:71:66:36:40:39:71:9c:e2:38:82:84:d0:94:f7:ea:
82:d8:8c:90:a0:02:c2:7b:89:37:10:3a:0b:39:b5:85:c6:24:
ef:0a:c3:16:50:6f:d0:80:83:a8:9f:76:e3:21:3b:db:19:4f:
c1:11:aa:34:57:49:b2:26:e2:d4:55:54:48:ac:90:ef:f9:e0:
63:91:39:bd:e9:4e:72:a0:7d:6c:15:4d:ee:4c:84:08:a3:9c:
ba:35:cc:e0:c0:94:c2:1d:a4:52:83:b9:39:a2:4e:4e:56:b9:
34:75:87:c2:23:ca:26:1c:6e:57:38:9a:f1:39:fd:ba:96:b1:
27:fc:b0:36:4b:87:ef:a2:c6:e4:36:51:bd:e1:03:64:cc:51:
68:f1:02:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYhQcc/xP2yK80UY+pq+ZIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODVkYzZiNjE0M2ExN2ZlYjQ5ODIwZWE1MjAwNDg5NThm
NDhhZGMwHhcNMjUwODIzMjAwMDUzWhcNMjUwODI0MjAwMDUzWjAzMTEwLwYDVQQD
Eyg3ZDM2NTU4MzViM2U0YmFjZmU3M2UyYWI2NDY0YWMxMDAwNTA2MmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyCL+cJNK3iQCPz9ONSSetgjxtMo
K+S1L5aWC/CC39NYXK+ugBteKL/5BWDi8JccD49PPiE0FeODaZMix5wWiORpTerd
jtiylWJeAJflbvsO6WZrz4wtvMkeE/Uenq3eBtJb6RGLi5+O5Hk4OpOuRoydEDkM
2+cv1ZLK3Dv0fcQHb42bncGDXJYJXi/EAouRfAJYB4zdx1kRHX7IBbvRvyNqfImX
h0A232G2c7We+c65qD85WhjxMsQhRjIkGyRlbKMvDx5Rx7Fx67JZra2GLNX4FX5a
IM+Umac3ezVpXQIdN0zH7XIZ9S+NrcTdBx0eNEXLVPX2R5YhAhTHFQ27cQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH02VYNbPkus/nPiq2RkrBAAUGLLMB8GA1UdIwQY
MBaAFN2F3GthQ6F/60mCDqUgBIlY9IrcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQt
NGFjODU2YTgxODJkLzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQtNGFjODU2YTgxODJk
LzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANp1MqJdb
eC4f+NU2yFwtH4i6llRi+1vXpHs0wrHI24koJDly7K5YMFJvT50IKQ9F/hPR2xsc
f1llaprbEzc78+PG9wDkAVUjrJdJRaHdpFtnPbytv+8IpGfZ54wEJhx4XaPOhJSd
22VXQ4iKVJCPcWY2QDlxnOI4goTQlPfqgtiMkKACwnuJNxA6Czm1hcYk7wrDFlBv
0ICDqJ924yE72xlPwRGqNFdJsibi1FVUSKyQ7/ngY5E5velOcqB9bBVN7kyECKOc
ujXM4MCUwh2kUoO5OaJOTla5NHWHwiPKJhxuVzia8Tn9upaxJ/ywNkuH76LG5DZR
veEDZMxRaPECEw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 22:46:48 2025 by rpki-client