Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: hIGNeEY8PJ5ASbK2A78rPK1sVZa7vPK7nGKe7kfSCEQ=
Subject key identifier: 3C:0A:C2:A2:CB:2D:A5:58:42:2E:4C:35:E3:B1:85:65:ED:85:69:A1
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 0199180934C767085598F8B4E6C1AECFB3E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 15FD
Signing time: Fri 05 Sep 2025 04:01:20 +0000
Manifest this update: Fri 05 Sep 2025 04:01:20 +0000
Manifest next update: Sat 06 Sep 2025 04:01:20 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: hrQsNvHrLe9DF5ENGoZy0qnIihIpmg9c9Y6LUVvNIWk=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:34:c7:67:08:55:98:f8:b4:e6:c1:ae:cf:b3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Sep 5 04:01:20 2025 GMT
Not After : Sep 6 04:01:20 2025 GMT
Subject: CN=3c0ac2a2cb2da558422e4c35e3b18565ed8569a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:51:a7:e3:87:f0:cd:22:fe:40:3b:3d:44:32:
cf:01:01:9e:64:6b:9d:1a:8f:11:eb:e2:5b:83:5e:
55:59:af:22:bc:39:34:84:83:43:53:5f:39:ab:de:
1e:bc:14:51:75:53:ab:19:1f:77:cf:ed:16:b0:74:
45:1b:c3:57:52:0f:58:40:ee:1f:cf:41:78:bc:8a:
b0:c9:4c:49:18:40:23:1b:59:ac:e6:20:3b:07:af:
94:54:7f:88:d1:f9:ec:da:11:17:83:1d:17:1d:37:
de:39:5f:42:12:db:77:8c:6a:0e:8d:93:06:25:0c:
6c:1d:54:f0:57:44:99:2d:5e:08:ac:84:fc:39:27:
0e:3a:c4:c3:d1:23:df:f0:6d:57:20:da:90:22:84:
2f:b6:58:59:05:d9:55:69:38:0b:f2:a2:dd:7f:dd:
17:27:3a:72:e7:e6:e5:d4:31:73:22:e7:36:73:a6:
9a:f2:df:09:dc:a4:71:d2:d8:66:49:a5:a8:52:a0:
7a:2a:62:ff:29:fa:38:93:96:5a:ac:af:0c:a0:df:
b2:fb:cc:2b:37:14:d0:35:cd:45:53:ba:d7:36:40:
8b:da:03:f8:8f:06:cb:9c:b1:30:4a:8b:7c:41:6d:
b2:30:c0:9b:a0:5c:d2:2f:7e:51:68:c0:2d:80:7f:
00:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0A:C2:A2:CB:2D:A5:58:42:2E:4C:35:E3:B1:85:65:ED:85:69:A1
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:da:56:82:66:04:12:44:0f:77:4e:a3:b1:89:ae:fd:05:75:
98:78:48:a2:ef:14:3a:f4:99:c0:8b:8a:ca:01:f4:0f:4f:4f:
69:b7:3d:7d:29:4d:e5:32:8c:74:7a:7f:ae:a1:9d:c6:f8:2f:
25:71:2b:13:1a:fa:53:be:6a:b0:82:55:e3:bc:2d:38:c3:69:
f9:bb:c6:89:d1:c8:37:80:1f:7d:57:51:33:2c:7e:1b:b2:87:
b6:1f:1c:2b:0f:3c:ad:cc:77:ed:cd:8e:0e:38:e7:fb:5b:05:
e4:a0:16:79:47:ae:fa:3e:b1:58:eb:69:a4:9f:6f:df:03:57:
f7:a3:bd:e9:a2:56:da:c2:05:90:1d:31:ac:d7:bb:56:0b:88:
11:c4:5d:39:dd:50:20:c3:87:c3:eb:68:47:4e:fe:ad:ca:0e:
43:6a:39:e3:26:ec:5c:65:ab:34:14:99:a1:48:63:7a:27:fb:
79:03:62:78:98:63:3d:ef:89:e7:0e:9c:ee:32:2b:7b:66:b9:
10:44:21:bb:69:50:44:4e:68:d2:9b:2d:37:44:81:80:8c:f1:
97:c0:09:b8:23:00:e4:a7:e1:e3:c7:78:53:df:e6:64:1c:29:
43:d2:ef:c5:8f:3e:95:3e:ce:e2:80:33:eb:40:9b:a3:5e:bb:
4c:e8:b7:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYCTTHZwhVmPi05sGuz7PjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl
OGI2ZmEwHhcNMjUwOTA1MDQwMTIwWhcNMjUwOTA2MDQwMTIwWjAzMTEwLwYDVQQD
EygzYzBhYzJhMmNiMmRhNTU4NDIyZTRjMzVlM2IxODU2NWVkODU2OWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+FGn44fwzSL+QDs9RDLPAQGeZGud
Go8R6+Jbg15VWa8ivDk0hINDU185q94evBRRdVOrGR93z+0WsHRFG8NXUg9YQO4f
z0F4vIqwyUxJGEAjG1ms5iA7B6+UVH+I0fns2hEXgx0XHTfeOV9CEtt3jGoOjZMG
JQxsHVTwV0SZLV4IrIT8OScOOsTD0SPf8G1XINqQIoQvtlhZBdlVaTgL8qLdf90X
Jzpy5+bl1DFzIuc2c6aa8t8J3KRx0thmSaWoUqB6KmL/Kfo4k5ZarK8MoN+y+8wr
NxTQNc1FU7rXNkCL2gP4jwbLnLEwSot8QW2yMMCboFzSL35RaMAtgH8AvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDwKwqLLLaVYQi5MNeOxhWXthWmhMB8GA1UdIwQY
MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt
NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw
LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGNpWgmYE
EkQPd06jsYmu/QV1mHhIou8UOvSZwIuKygH0D09Pabc9fSlN5TKMdHp/rqGdxvgv
JXErExr6U75qsIJV47wtOMNp+bvGidHIN4AffVdRMyx+G7KHth8cKw88rcx37c2O
Djjn+1sF5KAWeUeu+j6xWOtppJ9v3wNX96O96aJW2sIFkB0xrNe7VguIEcRdOd1Q
IMOHw+toR07+rcoOQ2o54ybsXGWrNBSZoUhjeif7eQNieJhjPe+J5w6c7jIre2a5
EEQhu2lQRE5o0pstN0SBgIzxl8AJuCMA5Kfh48d4U9/mZBwpQ9LvxY8+lT7O4oAz
60Cbo167TOi3zQ==
-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:25 2025 by rpki-client