Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
File: 3dya0lC4XNOZSUZbZoGy8d8U1qM.mft (raw, json)
Hash identifier: gGARZOY0sAaZHj2TlS+yIKFZ74w8K6E+QKDQHF7l1os=
Subject key identifier: C0:6C:46:B7:CF:6B:A7:C1:25:92:1A:DC:D2:A0:F0:5E:78:FC:38:1B
Authority key identifier: DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
Certificate issuer: /CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Certificate serial: 0198D5162357561F71D16C0AC4DA5794D0C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
Manifest number: 052F
Signing time: Sat 23 Aug 2025 04:00:54 +0000
Manifest this update: Sat 23 Aug 2025 04:00:54 +0000
Manifest next update: Sun 24 Aug 2025 04:00:54 +0000
Files and hashes: 1: 3dya0lC4XNOZSUZbZoGy8d8U1qM.crl (hash: ctBj8PQiaQ+2s2uvtDrlhPygPVf1UAvjYgMfkKx7EEQ=)
2: dA9DZPAABtlejc0G0adjQxYBv5c.roa (hash: 3UVeFl3N3ODI+QVLphkmL5y9dyL4Gw+YagDr/4SW4gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:23:57:56:1f:71:d1:6c:0a:c4:da:57:94:d0:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Validity
Not Before: Aug 23 04:00:54 2025 GMT
Not After : Aug 24 04:00:54 2025 GMT
Subject: CN=c06c46b7cf6ba7c125921adcd2a0f05e78fc381b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f9:73:4b:d5:2b:c8:10:72:50:f3:63:a3:d9:
58:75:ea:ea:23:4e:c4:f5:ea:0c:4b:ca:8e:e3:13:
53:6d:81:f3:fc:9c:aa:93:87:b5:89:61:3a:9f:45:
50:04:fa:cb:fa:62:bc:18:6b:01:41:f7:a7:22:7f:
c6:0a:7b:9d:57:b7:3e:15:38:bd:2f:26:12:9c:76:
24:36:41:36:6a:73:5d:07:88:e2:39:e1:35:99:4a:
f3:09:9f:af:c3:91:0a:83:c9:c1:c8:b6:6f:28:6a:
3b:bd:8f:79:b6:1f:3f:65:09:57:ad:50:a3:de:cd:
d6:38:2f:98:80:25:18:53:bb:50:45:7e:65:e8:5c:
5e:fd:9b:b1:e1:13:3d:d5:80:9a:cb:1a:f2:57:0b:
16:a8:2c:9c:ce:0b:56:4e:5f:b2:52:1a:a9:ce:c1:
cd:41:e7:7d:b1:37:85:b6:61:c8:8f:dd:df:f6:8e:
f7:3b:7c:5b:06:21:3c:50:3e:c4:ad:b2:40:b4:21:
07:c1:b2:bf:d2:6f:05:68:ef:6f:6c:cc:8a:52:07:
8f:b2:d3:6a:57:7a:20:77:29:b3:88:5d:ef:95:de:
c4:a2:25:de:62:95:77:51:fa:59:b1:62:db:6c:f6:
46:e8:5a:8d:71:f9:d9:0e:33:af:93:8f:d1:8c:6a:
fb:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:6C:46:B7:CF:6B:A7:C1:25:92:1A:DC:D2:A0:F0:5E:78:FC:38:1B
X509v3 Authority Key Identifier:
keyid:DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:a8:cd:e3:41:22:74:2c:df:99:ae:20:85:c1:7c:83:c5:ac:
e1:4e:98:20:ac:fb:39:51:78:88:84:28:eb:d6:cb:2f:7d:99:
7e:57:bb:92:7d:4e:7e:00:60:38:14:a5:15:a6:c1:b2:9f:3a:
ba:2e:36:18:0c:79:28:f3:e9:7a:f1:ac:51:8b:85:f7:4d:9b:
e1:85:e6:22:37:5c:b0:d2:1a:38:3f:41:92:06:46:bd:c4:bc:
31:01:a7:1b:43:01:a4:6e:d8:96:e2:9f:38:83:e8:71:5d:7f:
79:6b:06:76:ef:71:a5:ad:7e:bf:ca:1e:95:68:24:84:38:76:
95:a9:2f:c8:76:97:bd:c1:24:14:e7:3b:02:1d:b3:cb:e2:a3:
e1:1c:6d:39:bd:b0:f6:45:2e:88:9d:a0:e6:88:55:8f:34:83:
43:e3:8b:01:19:ab:76:8d:5c:3f:73:c6:87:8f:c8:79:30:14:
6d:ac:28:21:16:e1:eb:3e:d8:d2:a1:2d:25:a1:45:19:00:7b:
be:97:eb:80:67:bf:35:77:08:64:e5:b2:28:c3:f0:ef:31:c1:
5b:97:31:56:1c:92:10:7c:fc:d7:55:b4:69:c0:f6:b8:1a:17:
bc:5b:45:0c:6f:21:c9:28:a8:93:07:07:25:56:c1:76:02:ae:
5f:fb:a3:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:59 2025 by rpki-client