Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: FyUARGXGcWnUkIjx1DJZuhlyKfT4ne49OLGJS5f0oRs=
Subject key identifier: 24:24:C7:5C:83:0E:6D:D7:08:3D:F7:CE:89:6A:9A:CE:4B:32:17:17
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 0198D5F18B3B42E83192B33EBE1197731BA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0E2F
Signing time: Sat 23 Aug 2025 08:00:33 +0000
Manifest this update: Sat 23 Aug 2025 08:00:33 +0000
Manifest next update: Sun 24 Aug 2025 08:00:33 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: AwwGclqTKbzA9tXR0W+f7xkSRS/NWoqTgtvRJg8F7v0=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:8b:3b:42:e8:31:92:b3:3e:be:11:97:73:1b:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Aug 23 08:00:33 2025 GMT
Not After : Aug 24 08:00:33 2025 GMT
Subject: CN=2424c75c830e6dd7083df7ce896a9ace4b321717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a1:61:f0:f8:0a:86:69:64:58:6f:9d:d1:05:
e5:6b:93:f1:7f:7a:89:a5:40:a0:91:04:6c:e0:29:
a9:e0:76:f5:c2:ce:6f:a5:42:1a:70:a9:40:8a:05:
70:71:7f:d2:94:51:f8:f5:8e:de:50:80:ec:75:85:
28:f5:34:c5:29:90:04:05:be:0e:70:be:12:0f:7b:
b8:b7:4d:31:f1:22:10:21:4e:5f:b6:34:c4:03:d3:
4f:d3:b1:39:f2:ec:fa:14:89:06:eb:14:93:c2:06:
e5:6e:54:18:02:af:a4:a2:94:84:1f:5f:c4:a3:db:
f6:75:68:b3:5e:7d:df:1f:0b:e6:6b:fb:72:3d:93:
5f:72:be:af:02:f2:cd:76:26:09:ae:4b:39:6f:15:
f0:0a:cf:02:02:f7:bb:7f:7e:1e:5b:f7:e0:50:05:
11:11:f0:04:8e:a7:f9:e3:21:14:db:84:4d:47:a2:
bc:86:a5:02:14:74:bd:6b:6f:45:2c:eb:d6:65:b2:
53:da:ab:2d:27:39:30:db:88:a2:4e:7b:bc:24:27:
45:74:bf:79:c6:ed:89:cc:ba:29:57:46:79:ee:52:
a5:e7:8f:ad:26:c0:ac:a9:6d:59:f3:51:15:35:82:
ed:4c:0e:ca:84:b5:87:87:fb:77:9b:af:5b:d8:e9:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:24:C7:5C:83:0E:6D:D7:08:3D:F7:CE:89:6A:9A:CE:4B:32:17:17
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:8f:fa:ee:b7:60:07:83:2a:49:d0:97:0a:27:5b:6e:a2:1b:
00:99:02:3a:f0:ca:e9:e5:55:76:38:12:86:ef:0c:78:09:9f:
00:2a:c1:bf:16:3b:3d:cf:47:a2:37:47:c9:7a:73:6f:d4:9b:
7b:c3:f7:27:dc:55:b4:a4:06:fb:b4:80:e1:0b:f1:07:58:d5:
d7:c9:26:48:ed:b4:f4:30:f5:70:db:d7:31:99:68:41:78:f5:
57:f8:38:7e:a6:57:d1:02:fb:36:ce:5a:bb:e8:ff:67:da:da:
29:bd:9f:3e:12:02:9e:c1:03:63:70:00:12:5b:cd:69:38:0c:
9b:79:18:b4:91:ed:e5:62:49:1f:75:2c:58:9c:c6:b5:b2:27:
6f:58:10:b4:21:65:6c:42:55:8b:7a:ae:c1:4d:88:26:a1:f6:
52:37:1f:a6:91:28:29:6b:11:5e:b1:f3:a4:b1:e9:13:3e:99:
e6:20:f1:d5:37:46:01:0f:ef:35:29:97:31:c4:a6:bd:45:b7:
51:95:ba:e4:63:15:b2:7e:01:eb:8b:ce:54:f5:43:59:da:f2:
7c:a8:42:10:ab:f4:77:c6:4b:2f:8c:a7:e0:33:6c:b8:50:8d:
bc:72:ff:6e:fb:8c:50:f3:93:8f:ea:97:69:a9:98:7b:1d:e3:
b5:23:bd:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:58 2025 by rpki-client