Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: ikwWk14IWQQpOFM043lp/AM0dGaWnm6J0ExtxntOVRQ=
Subject key identifier: F0:3F:45:1D:3A:A5:A2:01:74:DF:B0:BC:97:C6:84:5A:49:2B:2C:B3
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 0199FF59A1AF26C55F438566CEC3ED622312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0EC9
Signing time: Mon 20 Oct 2025 02:01:28 +0000
Manifest this update: Mon 20 Oct 2025 02:01:28 +0000
Manifest next update: Tue 21 Oct 2025 02:01:28 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: yLYI0FuJNE0ZcFeUBksMjnVj581u6ZVDF27zwn03FYE=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:a1:af:26:c5:5f:43:85:66:ce:c3:ed:62:23:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Oct 20 02:01:28 2025 GMT
Not After : Oct 21 02:01:28 2025 GMT
Subject: CN=f03f451d3aa5a20174dfb0bc97c6845a492b2cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:41:b9:12:ec:ce:3a:f3:22:e9:57:30:45:ba:
b1:6f:18:df:a1:50:43:a3:2e:3e:ce:48:4c:7c:4b:
12:b4:b0:d4:dc:5b:3f:cd:74:12:15:22:2c:a9:ef:
6b:17:d5:db:cc:cd:94:9d:7d:16:96:20:9a:89:33:
40:a9:b5:9a:a9:8a:e8:5e:a4:90:3f:90:66:cc:f7:
5d:15:06:29:a9:80:f5:70:25:9a:b4:df:67:f5:09:
79:96:a2:9d:5a:18:11:64:4f:ac:c2:39:76:25:c0:
b1:49:1b:29:99:69:08:6d:f3:a9:cd:19:61:d6:57:
e9:bc:13:f9:7f:e8:02:1d:c2:41:06:56:b8:75:a4:
73:61:2c:5c:e5:a0:c1:ae:56:46:8d:f3:82:b5:c0:
21:49:a5:47:23:94:1a:45:d4:55:9a:08:90:99:bf:
67:8d:63:89:37:9d:c5:0f:29:d5:af:04:7b:34:de:
5c:16:94:22:3d:56:08:f7:ce:d7:e7:e2:8e:a0:a2:
33:a3:be:21:8f:64:99:7d:ff:99:be:17:24:06:ae:
95:c1:05:7a:5c:4e:c8:4e:5a:e0:2a:2c:14:8b:62:
7c:4b:01:28:e6:90:ea:05:78:68:75:6b:f1:b5:cd:
2f:3c:f9:be:e3:7f:a1:83:a1:8d:77:b5:b9:6d:b1:
6f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3F:45:1D:3A:A5:A2:01:74:DF:B0:BC:97:C6:84:5A:49:2B:2C:B3
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:15:70:a5:b2:da:2d:55:ce:3f:7b:5e:71:2c:56:11:8e:21:
79:06:26:ad:06:bb:ba:2e:02:84:bb:0f:ba:11:5f:f1:b6:c1:
0e:d8:ef:ac:23:da:66:fd:56:30:23:79:00:2a:ee:c1:18:29:
04:18:27:9a:b8:fb:be:46:25:e0:c7:d7:6e:d9:db:ae:ea:4d:
34:ea:fe:a0:d5:43:f7:10:4d:95:9a:71:6e:a9:c8:0f:ec:58:
70:7a:c2:8d:b7:08:ac:97:d9:16:70:78:00:6e:01:5f:3f:58:
b9:19:a6:cb:c5:b2:be:ae:c7:a0:1e:9a:c0:7c:4c:f8:e0:5b:
1d:5a:2d:b4:81:9a:ff:1b:03:60:ab:7a:4f:76:5c:69:d7:0f:
13:5f:2f:8b:85:48:f6:e2:0e:85:93:77:80:65:6f:2a:96:af:
13:c9:b8:06:53:f9:1d:8d:e4:a0:6f:63:d6:0c:b3:05:9d:76:
50:46:24:e5:d7:64:29:10:ec:4c:ae:1c:35:89:0e:97:e7:a8:
09:4f:f8:b0:36:03:c6:d5:21:5f:4f:ab:bf:f4:68:0e:d8:76:
73:f8:6e:2d:95:54:31:37:7c:8e:c3:b5:fb:1d:ec:bb:39:63:
9e:9d:94:fb:8b:e2:a9:6e:c3:5a:ce:2c:21:3f:0e:48:73:5f:
fa:c7:af:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:57:51 2025 by rpki-client