Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
File: 3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft (raw, json)
Hash identifier: GcH0MFiappCcFLZQ5uUJ66FtjadZqm/S/1TCvFwoqtk=
Subject key identifier: 4D:E1:A2:FB:CC:CC:AD:E4:6D:8D:A8:A7:BE:3B:82:92:98:24:F6:36
Authority key identifier: DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A
Certificate issuer: /CN=dd75fc8c45d36101008837119cbfa84aee19e29a
Certificate serial: 019846D1F1B732BDAB652A09FF7BB8CCA904
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
Manifest number: 0592
Signing time: Sat 26 Jul 2025 13:00:20 +0000
Manifest this update: Sat 26 Jul 2025 13:00:20 +0000
Manifest next update: Sun 27 Jul 2025 13:00:20 +0000
Files and hashes: 1: 1eJwg5skWWcGDXFLNTcOwNfaXOs.roa (hash: 7FGDI31rrxDDlErzYzWSkDOB2c3i2HKAdvNrAxAMr8I=)
2: 3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl (hash: 6T1i8XGtBoWjCAiu/4itgd2TmR4V/qLijqTlcrGVfj8=)
3: Pu9BTwuj73Y1OYZEEjY0ZHH4Hw0.roa (hash: wFwRyxZLAd3FNxCgO3OSOt8i3+YrAeILPNwkW0awCVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:46:d1:f1:b7:32:bd:ab:65:2a:09:ff:7b:b8:cc:a9:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd75fc8c45d36101008837119cbfa84aee19e29a
Validity
Not Before: Jul 26 13:00:20 2025 GMT
Not After : Jul 27 13:00:20 2025 GMT
Subject: CN=4de1a2fbccccade46d8da8a7be3b82929824f636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1a:6b:8e:87:a8:69:3e:12:c8:eb:99:15:9e:
d9:63:16:e6:a3:75:88:5c:e9:fa:94:85:de:d6:aa:
1f:bc:af:79:f9:f6:65:3e:0d:a2:c3:b3:77:95:d9:
9e:9a:ed:47:80:ac:45:3e:60:55:48:50:4b:43:ff:
32:c6:3b:d2:e5:5c:a4:ca:de:9e:b8:2e:f6:45:ca:
ca:59:79:2a:75:67:a0:c9:ba:24:15:fb:6d:42:ac:
ba:15:94:5c:6d:70:d1:85:35:0b:c5:c0:6d:ad:a4:
2f:ad:9f:c6:17:ed:0f:5b:20:55:44:ce:52:41:e2:
28:d9:95:f9:16:ca:ce:51:37:97:47:8a:3a:84:21:
90:cf:4c:0e:67:4f:6d:39:a9:ec:b2:85:cd:5c:a1:
91:31:9e:ef:30:ab:5f:80:e7:a0:70:72:6a:04:cc:
86:06:49:87:b5:8a:5e:b9:1d:5f:89:26:5c:03:30:
a8:2f:36:a6:c5:54:cc:19:cf:2e:87:9a:cc:b5:86:
54:5a:61:9d:c7:2d:bd:25:1b:20:a5:2e:c9:07:1f:
c3:33:0a:49:2e:69:cc:b3:b1:f0:d8:d4:83:c1:12:
45:db:4b:d4:3d:30:b4:d6:6e:d6:f9:40:93:81:57:
49:51:20:e8:5f:7b:96:ff:11:c3:29:ac:91:5b:c9:
c7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E1:A2:FB:CC:CC:AD:E4:6D:8D:A8:A7:BE:3B:82:92:98:24:F6:36
X509v3 Authority Key Identifier:
keyid:DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:16:17:76:6e:5b:c1:29:2a:65:bf:ff:ef:19:1f:89:db:84:
9d:c7:37:14:c6:bb:34:32:59:38:4e:e0:b2:5b:e8:67:5f:5d:
4a:db:00:3b:33:bf:b5:1c:00:ef:44:75:bc:ca:d5:ef:af:06:
2f:80:ec:56:e2:d7:9c:13:fe:3f:77:db:1c:3b:7a:fb:27:27:
50:62:38:44:e3:5d:83:ff:26:11:f0:83:f3:02:3b:67:e8:af:
63:5c:85:ef:c9:02:20:a7:ee:e7:c8:28:d1:9b:bc:70:d2:37:
ba:f0:c4:3c:8a:c7:26:f5:03:09:17:89:47:9f:70:b1:af:56:
42:c2:2e:00:47:02:12:08:28:05:81:ca:c6:fe:90:04:56:bf:
8c:64:b1:59:91:56:99:e5:39:82:1a:5f:fa:84:20:f4:9a:0a:
a3:ce:d5:52:0d:cc:56:db:7b:53:4c:37:92:7e:27:cf:ee:8f:
70:65:f1:b9:d7:2d:cf:9d:72:1e:20:f1:87:6e:d0:31:09:5c:
88:88:2f:12:54:bf:7a:a9:42:ad:df:23:52:78:e0:7f:f9:f6:
fd:10:b8:30:7f:b5:6f:8d:a3:34:e2:40:c5:cd:49:d4:9f:fe:
a2:3e:f5:0a:a0:96:fd:7e:4f:b1:08:34:47:22:6b:66:46:68:
dd:6a:b3:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:28:41 2025 by rpki-client