Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
File: 3-ytVuquEjX6eI5OrTkiwpbig6U.mft (raw, json)
Hash identifier: 9x3ob2isDSK/i49xJMcetki0yfbGUO3YSZtfDnBA0E8=
Subject key identifier: 88:F6:01:5F:34:F1:63:C8:FA:81:E0:9B:DF:3D:8E:FC:78:12:E2:21
Authority key identifier: DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
Certificate issuer: /CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Certificate serial: 0198D54EAB81C1B6E20C099084450527F848
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
Manifest number: 0182
Signing time: Sat 23 Aug 2025 05:02:39 +0000
Manifest this update: Sat 23 Aug 2025 05:02:39 +0000
Manifest next update: Sun 24 Aug 2025 05:02:39 +0000
Files and hashes: 1: 3-ytVuquEjX6eI5OrTkiwpbig6U.crl (hash: B8ppNuT1XSbhERTCSSVE1xf4BMgxta1PKWn1RKH9FUc=)
2: ghemx7_KeR2Mo7Zd7b3Yw7Rm5m0.roa (hash: dfuZiKRSGnfBsJSrGQVK/jOI9vvcNJZDWJg5sUNCJuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:ab:81:c1:b6:e2:0c:09:90:84:45:05:27:f8:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Validity
Not Before: Aug 23 05:02:39 2025 GMT
Not After : Aug 24 05:02:39 2025 GMT
Subject: CN=88f6015f34f163c8fa81e09bdf3d8efc7812e221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2e:50:9d:d3:13:ed:2a:9e:08:b0:20:fa:87:
bf:ce:d1:45:ab:00:f3:4d:2d:04:40:d7:90:92:7d:
a9:22:9e:44:90:db:3a:2a:e9:e4:74:c6:ac:c4:04:
22:ed:ea:7b:64:7e:45:c4:63:79:90:d6:c1:71:fd:
12:f6:d3:d8:64:03:de:e0:25:97:01:72:27:96:6a:
ef:a7:38:e7:03:a1:ed:17:55:8e:7c:c1:db:a8:dd:
0a:83:72:67:67:4d:51:6d:ea:3c:b2:cd:f7:3d:0f:
b8:91:fb:74:bd:19:2f:bf:4c:9b:e8:67:81:15:81:
cf:5e:6b:a1:f1:35:f6:40:88:30:4f:be:2d:44:ad:
6a:f3:51:fd:d3:51:9a:11:76:53:c1:1e:64:5f:81:
e4:3a:67:eb:1e:e6:b8:2b:0e:8c:37:14:f5:88:3a:
86:e4:07:9a:0b:9b:10:73:71:0c:b7:87:e4:13:c7:
22:cf:87:2a:48:c0:5d:09:74:20:d2:22:1c:51:cf:
2f:ab:b9:7f:00:d3:b3:c2:97:27:16:75:0b:0c:97:
c1:67:2a:10:ec:0e:97:f2:69:11:c0:bc:d0:37:a5:
46:e7:2e:c6:3e:c4:11:4a:30:6b:56:85:ec:66:3d:
e2:25:94:35:7e:7b:47:d8:a3:87:01:30:95:ce:8f:
1f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F6:01:5F:34:F1:63:C8:FA:81:E0:9B:DF:3D:8E:FC:78:12:E2:21
X509v3 Authority Key Identifier:
keyid:DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:04:39:87:c6:1f:16:fa:19:2e:34:1f:b2:3a:dd:7b:72:b5:
f8:f8:ce:67:cb:e8:a2:2f:19:7d:80:8d:06:52:11:66:4b:75:
e8:59:0c:de:6b:06:0e:dd:92:39:35:c5:e6:c0:f4:a9:0b:08:
e2:36:ae:6f:1e:75:36:a7:60:81:da:b7:b2:5a:eb:48:0c:c4:
38:cc:3e:b3:4c:80:c5:60:bc:c5:2b:0c:50:f5:75:19:a7:80:
f7:e1:18:d9:2f:95:bc:9f:25:ad:0b:83:cb:17:d3:99:4f:c3:
1a:07:11:ab:41:97:a5:92:a7:da:c5:63:05:72:58:4d:8c:d4:
0b:2f:c1:46:84:3f:c5:c6:0f:3c:45:33:a5:b2:f4:16:08:ec:
d7:da:db:78:94:23:e1:f4:72:f9:69:59:2c:f5:69:f1:db:06:
60:0a:c1:03:a5:88:5e:f7:d0:47:5d:21:c3:a1:10:5c:47:bf:
0a:79:84:39:89:97:07:1e:9c:d0:5e:17:62:45:99:d1:2d:03:
5e:1f:88:2b:63:c7:fd:d2:3c:93:f5:4f:49:96:a9:63:16:e5:
6d:28:46:e0:12:42:14:b4:83:55:76:83:ab:e7:91:94:24:9d:
c8:f9:77:72:d4:06:b6:a9:52:4b:4a:25:f7:a3:bc:3e:33:7a:
52:02:5d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:33:08 2025 by rpki-client