Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: eIG3ntb3M42lZEFjNDAvlu+7gTPBcQEEWqZx2GLOT0c=
Subject key identifier: 92:1F:3F:40:A5:0E:05:C0:FF:8C:40:B9:63:5C:6B:E2:73:01:C0:E9
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 01992F358C7FEECF66CF47BFA349A6250680
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 060B
Signing time: Tue 09 Sep 2025 16:01:02 +0000
Manifest this update: Tue 09 Sep 2025 16:01:02 +0000
Manifest next update: Wed 10 Sep 2025 16:01:02 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: t23Wlj6EeOQ9SofJ8i25VCv5+fRXdxBpCX3VzSLdBHo=)
2: Vnw9H8iqt-gts3LY3CEVf7p6PaE.roa (hash: s2vDBc3kUppwqWxQSMIljxY/yV7+Xm77EH+5A9yGbgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 16:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:35:8c:7f:ee:cf:66:cf:47:bf:a3:49:a6:25:06:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Sep 9 16:01:02 2025 GMT
Not After : Sep 10 16:01:02 2025 GMT
Subject: CN=921f3f40a50e05c0ff8c40b9635c6be27301c0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:50:65:7d:aa:31:26:8a:9e:fb:6a:84:a4:33:
f9:b0:0f:48:79:66:66:fb:f9:88:31:c1:10:48:37:
fa:ad:25:df:e1:f5:7d:55:41:11:c0:a2:aa:20:06:
0c:72:0e:45:4c:b4:f0:90:f3:4f:d3:fc:1f:22:a2:
30:6b:10:30:7b:ad:07:4b:d6:db:c9:3c:a6:b2:f9:
7e:c7:ad:59:8b:ff:c8:ef:94:7a:29:d7:9f:63:f5:
b5:25:4b:0a:c4:c6:55:b6:f5:35:15:f7:07:37:51:
91:e1:a6:f7:1a:5f:86:7f:e2:10:16:52:1a:6e:c1:
db:d1:b8:d3:5f:be:44:e8:21:ba:4d:e3:8b:e9:51:
68:72:7b:b5:46:99:e8:61:2d:44:e1:a2:cd:b5:dd:
2a:25:2a:e5:70:41:5e:63:3a:c8:0d:2b:0e:f7:4b:
bb:0c:bd:d3:9f:50:72:57:38:67:45:9b:73:ea:51:
ce:9e:41:e1:99:be:b7:86:0b:41:13:13:52:93:9f:
04:7e:3a:dd:60:be:38:0c:b9:90:8d:08:6a:0e:20:
b8:4d:b6:39:01:62:a4:74:5f:39:18:2e:69:be:49:
f9:73:ba:c1:f4:57:a6:6d:c1:48:2e:c9:86:10:0f:
74:ea:a2:ca:fb:b2:65:54:fa:9f:e7:26:92:c6:d1:
b6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:1F:3F:40:A5:0E:05:C0:FF:8C:40:B9:63:5C:6B:E2:73:01:C0:E9
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:e6:55:c8:c9:bd:43:7e:d9:c2:7e:92:27:1d:4c:72:85:83:
ba:91:01:58:3f:35:4b:a5:ca:c5:9d:02:30:4b:ad:bb:33:29:
76:8d:49:cc:1b:05:b5:3c:8f:15:cc:55:2a:db:ca:90:19:27:
9f:b0:42:2b:86:89:86:db:52:bb:b5:f3:a8:84:06:5c:2e:f3:
fc:57:02:9c:15:1a:88:43:56:d9:fe:17:70:ba:44:e0:c2:4d:
3f:f8:5d:fb:db:c4:f9:f5:c2:76:d2:19:9d:c7:ff:fe:ef:54:
d1:60:96:a6:a0:1e:84:ed:30:95:de:58:ca:c6:dd:b5:02:1b:
62:40:d9:3a:49:c8:89:e2:37:f3:87:cc:9e:07:8d:38:ea:d4:
79:4a:30:22:2e:d4:36:37:41:9d:7f:9e:7c:83:f4:b3:27:56:
42:58:98:6c:77:9b:51:3f:e4:d8:32:93:c3:18:09:76:f3:9f:
2f:bd:55:81:37:bb:bc:9c:6f:33:ce:07:4b:ca:91:04:14:57:
fb:e6:d4:85:e9:e8:a2:b2:4c:65:93:1c:05:42:e0:c2:ba:4f:
fb:bb:82:ef:ae:38:a2:cc:27:9c:a0:9f:7f:f8:9e:e6:fb:db:
89:a8:f0:57:24:c1:c3:6e:1e:d7:b1:50:15:24:e4:3d:0f:49:
7b:df:65:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 20:45:56 2025 by rpki-client