Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
File: 3RWKDaAyZt8UTImntuNadhxJmPc.mft (raw, json)
Hash identifier: 7llxsagFSsbkccqjU5uX2T+Rw43aCY4IpocphX8iu68=
Subject key identifier: 8F:D6:B3:33:9F:93:D2:BD:54:87:C3:12:55:06:49:CC:C0:05:33:57
Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Certificate serial: 0199FF599B4A73F43A8B52BB28BD359A81EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
Manifest number: 03DD
Signing time: Mon 20 Oct 2025 02:01:26 +0000
Manifest this update: Mon 20 Oct 2025 02:01:26 +0000
Manifest next update: Tue 21 Oct 2025 02:01:26 +0000
Files and hashes: 1: 3RWKDaAyZt8UTImntuNadhxJmPc.crl (hash: t8vXlgl7C3sZlxRUVf7WZp6WV3B6xm3QBdciK5XdMBc=)
2: hjp9r4jkfdcWh8tb4IbJ8JLqvhg.roa (hash: rpnDBu2YggoyGIw/C4Ub9AMkAXEhq0st1VH7UXhjugk=)
3: oyehTC9fC3RxVNTxQ-3Nace4xCo.roa (hash: 6amsBM8Jkzid3Hbf3NCrvWV5lgaxarQNmZ7omOl4H1Y=)
4: tWWoO6Q9xW9qzxs1LTkk9o7qkwc.roa (hash: dIS2lAatvIYTUHXvxYqBBEq9rurmrnQiuE0cglSeBdY=)
5: zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa (hash: JzeLYwYOJtUYF4eEhrs8y3e0iaiCpHB7RqKZXjFT6qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 02:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:9b:4a:73:f4:3a:8b:52:bb:28:bd:35:9a:81:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Validity
Not Before: Oct 20 02:01:26 2025 GMT
Not After : Oct 21 02:01:26 2025 GMT
Subject: CN=8fd6b3339f93d2bd5487c312550649ccc0053357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8c:55:d1:12:a0:73:3f:cd:38:44:ab:c2:67:
00:e5:43:12:c9:07:92:ea:71:62:61:45:45:e7:47:
23:48:00:ef:53:a4:82:93:45:a1:4f:49:3d:52:3c:
9d:d5:0a:be:1f:71:9b:79:28:c4:0d:54:d4:60:cb:
09:c8:7b:1e:bf:21:5d:e5:20:88:4c:4c:dc:ff:77:
de:f0:7a:1e:da:6b:ea:03:c1:2b:d9:1f:b0:82:15:
0c:1f:8b:8e:c9:e7:c8:4a:d9:d3:bd:55:13:c7:89:
a1:e8:e0:5a:f0:19:77:12:f6:a3:b4:e0:3b:7f:8a:
ac:6b:69:32:e6:9a:1e:74:64:cc:bd:24:1c:df:e7:
d4:55:f2:ac:f6:4e:9a:4f:d7:d1:84:12:35:3b:08:
97:71:8b:43:a7:2a:8f:86:70:78:94:72:1a:96:b2:
10:cf:e2:aa:c8:02:eb:42:d1:d1:9e:9b:d2:d9:64:
c0:b1:74:7e:99:8d:bb:5d:5a:a8:dc:1c:31:af:79:
d0:1c:c8:d3:fa:b7:ca:23:51:19:84:7d:7f:e7:4e:
92:6d:5c:ba:aa:95:e2:9d:09:df:5c:f2:ea:07:d9:
56:4c:74:25:29:bc:29:3a:98:64:23:e2:22:0c:9e:
a9:53:84:54:72:27:f6:16:47:2c:1c:e5:c4:06:a3:
7c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:D6:B3:33:9F:93:D2:BD:54:87:C3:12:55:06:49:CC:C0:05:33:57
X509v3 Authority Key Identifier:
keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:97:b8:a6:37:73:99:61:ee:13:58:1a:da:82:34:68:6e:20:
e2:ee:a9:73:a9:e9:63:90:95:32:21:c6:cf:39:b3:3c:43:db:
21:90:df:8a:24:a3:cb:20:6c:93:ab:05:73:35:47:6e:bd:9f:
2a:fa:9f:23:45:c2:9b:40:c1:ca:3b:fb:98:1a:42:9a:8f:b9:
a6:92:85:9d:96:18:14:48:73:d4:3e:51:8d:69:05:bc:de:ee:
29:61:21:48:f5:14:65:6c:3a:a4:7d:b1:34:97:f7:45:ac:d4:
74:d7:2c:a6:99:a8:53:24:08:7f:87:84:84:c6:94:05:bd:49:
dd:14:61:ee:e2:f0:a7:73:73:e0:f3:6c:be:e4:02:11:54:1b:
e2:92:fa:97:e2:48:2b:94:c8:b3:0a:8b:80:05:6f:c7:69:0d:
69:62:bf:4f:a4:ea:06:f1:10:77:36:5c:9f:48:96:29:e5:05:
e6:df:04:35:e6:4a:1c:39:09:b2:40:4d:8d:cb:df:52:e3:9d:
c5:eb:69:5c:5a:9c:65:2a:72:06:f0:74:72:d5:1e:c2:9d:2d:
67:74:ec:63:fd:7f:20:3a:98:cc:53:a4:57:82:8c:65:7e:22:
2e:5a:44:57:a2:f4:c7:a2:b2:56:4b:49:eb:ad:33:6c:dc:c6:
24:82:cb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:00:44 2025 by rpki-client