Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
File: 3pj4NjKYKX-6uupodyArXEQOWpA.mft (raw, json)
Hash identifier: vLQbyQA70aT+cdS94o9GRdbPuaTAdhGGU4IAGuIP0r4=
Subject key identifier: E8:3C:85:96:BD:DB:EB:2D:D7:3F:47:27:8C:A5:F8:A5:CE:C7:E1:37
Authority key identifier: DE:98:F8:36:32:98:29:7F:BA:BA:EA:68:77:20:2B:5C:44:0E:5A:90
Certificate issuer: /CN=de98f8363298297fbabaea6877202b5c440e5a90
Certificate serial: 019921B23CD8CBDEFCCB2FBCBE807EAE17C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pj4NjKYKX-6uupodyArXEQOWpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
Manifest number: 0D00
Signing time: Sun 07 Sep 2025 01:02:33 +0000
Manifest this update: Sun 07 Sep 2025 01:02:33 +0000
Manifest next update: Mon 08 Sep 2025 01:02:33 +0000
Files and hashes: 1: 3pj4NjKYKX-6uupodyArXEQOWpA.crl (hash: yNrMecxTFMES2Qcx2ZMoq+CZOjjyCPLvhu1z8x1lF88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3pj4NjKYKX-6uupodyArXEQOWpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:3c:d8:cb:de:fc:cb:2f:bc:be:80:7e:ae:17:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de98f8363298297fbabaea6877202b5c440e5a90
Validity
Not Before: Sep 7 01:02:33 2025 GMT
Not After : Sep 8 01:02:33 2025 GMT
Subject: CN=e83c8596bddbeb2dd73f47278ca5f8a5cec7e137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:65:7c:7d:aa:e5:e9:fe:dc:66:63:0b:dd:71:
62:56:20:df:16:10:df:21:67:22:16:d4:51:8d:59:
4a:fe:7e:28:be:93:31:7e:7f:c0:31:b7:cd:08:4e:
41:02:c9:59:03:5d:eb:65:f0:65:94:c8:ac:39:cf:
30:ba:07:50:a2:7a:da:5c:56:61:42:63:c0:02:f9:
28:88:56:d0:db:82:94:88:ac:c6:f6:bb:2c:0f:1f:
7c:fc:27:d1:89:d1:23:81:cf:ea:1a:9e:a9:ad:a5:
1f:6b:79:44:e9:50:7a:cf:5d:c6:71:96:2d:43:5c:
2f:d4:98:f6:3a:63:a7:28:cc:09:54:5d:0f:58:6c:
02:78:16:b8:24:30:95:ee:db:f9:f7:d5:41:06:a4:
0f:06:fb:3e:dd:c9:08:23:e5:02:20:1e:8f:6a:a5:
2e:0f:a5:d9:13:8d:9f:6b:9b:73:d9:13:2d:00:c8:
a2:d1:2e:1d:2c:a1:b6:c1:13:d5:61:81:b7:9f:76:
61:45:30:f4:87:a0:19:f8:74:ff:7e:e3:8a:cf:0b:
f7:7a:42:69:46:8b:9f:ea:d8:94:40:4a:55:4a:59:
13:8b:d2:60:cd:12:ff:50:7f:8b:23:c1:75:02:04:
8c:aa:bb:ea:51:a0:e7:87:5e:c4:1f:0e:23:c3:9f:
7b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3C:85:96:BD:DB:EB:2D:D7:3F:47:27:8C:A5:F8:A5:CE:C7:E1:37
X509v3 Authority Key Identifier:
keyid:DE:98:F8:36:32:98:29:7F:BA:BA:EA:68:77:20:2B:5C:44:0E:5A:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pj4NjKYKX-6uupodyArXEQOWpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/680e29-7d83-4558-b411-e7fbd50e0349/1/3pj4NjKYKX-6uupodyArXEQOWpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:b6:c7:58:ad:90:20:05:c5:3c:cd:7f:06:c3:d2:ad:92:10:
73:ae:44:c5:cd:7f:e2:bd:64:60:e0:73:59:87:26:d3:a9:e5:
95:5f:ec:91:0e:c0:00:a4:aa:0b:d6:9b:f2:02:fd:71:6f:83:
7b:a7:89:cc:fa:7f:91:27:63:f0:e6:a5:ca:33:ae:69:60:34:
38:c9:1e:1b:97:51:ce:81:70:90:dd:42:aa:8e:1a:ff:84:5d:
08:ba:24:d8:a2:33:97:96:68:d9:06:70:bb:e9:39:75:d6:74:
00:50:3d:1d:8b:f3:19:76:72:95:57:ed:29:5d:ea:60:5e:14:
ba:7b:09:1e:e3:bc:02:63:fd:9b:47:8e:51:3d:63:85:50:29:
fd:6f:58:79:4e:6e:16:ca:de:06:30:eb:5a:f8:e9:ea:1f:f2:
c8:b6:ed:98:83:42:6c:30:e4:55:8b:ab:28:9a:93:71:c3:3f:
18:fe:af:c3:e3:f1:c3:64:bd:aa:c2:83:12:02:ed:43:cb:14:
48:14:18:6b:d4:63:4c:58:24:f4:6f:34:95:5d:5d:d9:eb:0e:
d9:8f:86:32:ab:5a:aa:5e:49:78:49:f0:3c:72:f6:8c:3b:92:
ba:fd:fc:b4:74:77:62:55:66:0e:e6:ba:d4:ce:bc:fc:ea:37:
49:65:4c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:47:27 2025 by rpki-client