Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: Q+ENZVTbLONTH3tkX5RHuir5/XUv+XQoCFZG5f85JOE=
Subject key identifier: 15:85:5F:74:72:9E:7F:E4:EE:A7:DF:B4:4A:BA:3F:C6:82:C5:B6:FB
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 019922C3153AE2BC39CA75CD5C2EE7CA8799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0905
Signing time: Sun 07 Sep 2025 06:00:34 +0000
Manifest this update: Sun 07 Sep 2025 06:00:34 +0000
Manifest next update: Mon 08 Sep 2025 06:00:34 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: Ok3jBxp1KEf8Apo6pDeiLTIf4F2N14J7L3ttHqu5frM=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:15:3a:e2:bc:39:ca:75:cd:5c:2e:e7:ca:87:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Sep 7 06:00:34 2025 GMT
Not After : Sep 8 06:00:34 2025 GMT
Subject: CN=15855f74729e7fe4eea7dfb44aba3fc682c5b6fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:09:55:00:0d:32:17:39:7d:94:f7:00:13:2d:
83:5e:7c:df:50:9d:60:90:c8:6b:80:b2:fb:5a:0d:
09:03:46:8e:86:44:c1:62:cf:d8:9b:4b:63:ab:46:
cf:b8:88:b1:01:53:30:11:34:ba:d8:e7:3d:a7:c0:
5b:4b:e1:2d:47:48:72:2d:f7:94:4e:c2:a9:7b:95:
ee:57:01:bf:af:0e:9f:38:98:61:54:97:fc:ed:9a:
9d:45:e5:ff:ab:16:11:03:d0:3f:1b:01:42:99:7b:
fd:55:a2:6f:d5:dc:bb:ce:0c:0f:ea:57:ab:2a:e8:
dd:49:f3:11:61:39:66:24:8e:9c:6c:fd:9e:e1:b1:
9b:8d:a8:76:b3:ae:bf:ef:a1:5b:9f:08:f4:10:64:
29:9d:a3:48:11:30:de:24:1a:39:e6:d5:fc:57:1c:
f8:fc:64:86:9b:4a:59:87:2e:a9:2d:9a:53:f9:f2:
ae:bb:85:b1:ab:9f:1c:c8:f8:31:b6:08:21:31:02:
76:dc:53:f6:a4:35:c5:a7:f2:6a:a7:63:c1:6d:78:
1e:a2:a5:ef:ed:d4:eb:ce:69:a1:ea:b8:dc:4b:dc:
9c:eb:5a:b8:12:dd:02:5b:39:51:5e:ed:fc:df:75:
95:77:74:05:ca:45:b9:78:1c:e0:aa:81:10:52:4c:
61:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:85:5F:74:72:9E:7F:E4:EE:A7:DF:B4:4A:BA:3F:C6:82:C5:B6:FB
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:e8:37:c0:9f:29:11:c7:5b:86:9b:f4:a0:ba:eb:c8:9d:f7:
b6:65:e2:1f:26:c5:26:54:5c:a5:04:76:34:f2:0d:c9:69:dd:
c6:02:6c:af:de:86:3e:7a:a6:d0:15:23:b5:cb:4b:18:5b:cd:
70:e2:8c:2b:e0:92:7e:7d:2d:dc:a9:68:62:42:26:6d:3e:61:
ea:4d:69:c5:a6:46:47:f5:95:3b:8b:9f:ae:6e:18:e9:f1:91:
b8:2f:05:98:29:af:54:28:a3:f8:7e:e0:85:9e:41:ff:02:da:
1f:a3:9f:6b:15:62:6f:7a:b0:5b:70:19:4a:c6:90:15:d8:58:
ec:89:99:67:6f:34:18:3a:6c:ef:d7:d9:17:cd:90:fe:25:46:
a6:e1:c0:82:ad:85:a4:49:db:25:a6:7c:a1:18:5e:c2:13:c1:
c3:65:3f:a9:c8:56:9e:83:3c:5a:23:75:04:36:27:27:a5:c4:
e7:dc:ae:71:2e:96:55:b0:4d:0a:8b:6e:49:9c:f7:37:81:79:
86:46:71:d7:1e:cf:b4:2d:e9:f1:9c:45:2d:07:b0:e8:6b:b4:
d6:09:f4:e9:10:4d:7a:8f:ec:91:17:00:8c:24:ce:06:df:cb:
27:a4:de:07:0d:36:e6:f8:d6:2d:b8:56:cc:2d:ab:37:3a:3c:
9b:e7:bc:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiwxU64rw5ynXNXC7nyoeZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYmU1MTdlNzQ3NWUxN2MwNjk2NDM5MTBmZDZmNzdiMzE3
Yjg1MzgwHhcNMjUwOTA3MDYwMDM0WhcNMjUwOTA4MDYwMDM0WjAzMTEwLwYDVQQD
EygxNTg1NWY3NDcyOWU3ZmU0ZWVhN2RmYjQ0YWJhM2ZjNjgyYzViNmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtglVAA0yFzl9lPcAEy2DXnzfUJ1g
kMhrgLL7Wg0JA0aOhkTBYs/Ym0tjq0bPuIixAVMwETS62Oc9p8BbS+EtR0hyLfeU
TsKpe5XuVwG/rw6fOJhhVJf87ZqdReX/qxYRA9A/GwFCmXv9VaJv1dy7zgwP6ler
KujdSfMRYTlmJI6cbP2e4bGbjah2s66/76Fbnwj0EGQpnaNIETDeJBo55tX8Vxz4
/GSGm0pZhy6pLZpT+fKuu4Wxq58cyPgxtgghMQJ23FP2pDXFp/Jqp2PBbXgeoqXv
7dTrzmmh6rjcS9yc61q4Et0CWzlRXu3833WVd3QFykW5eBzgqoEQUkxhcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBWFX3Rynn/k7qfftEq6P8aCxbb7MB8GA1UdIwQY
MBaAFN6+UX50deF8BpZDkQ/W93sxe4U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAt
ODlmNWM0ZjMyOTcwLzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAtODlmNWM0ZjMyOTcw
LzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI+g3wJ8p
Ecdbhpv0oLrryJ33tmXiHybFJlRcpQR2NPINyWndxgJsr96GPnqm0BUjtctLGFvN
cOKMK+CSfn0t3KloYkImbT5h6k1pxaZGR/WVO4ufrm4Y6fGRuC8FmCmvVCij+H7g
hZ5B/wLaH6OfaxVib3qwW3AZSsaQFdhY7ImZZ280GDps79fZF82Q/iVGpuHAgq2F
pEnbJaZ8oRhewhPBw2U/qchWnoM8WiN1BDYnJ6XE59yucS6WVbBNCotuSZz3N4F5
hkZx1x7PtC3p8ZxFLQew6Gu01gn06RBNeo/skRcAjCTOBt/LJ6TeBw025vjWLbhW
zC2rNzo8m+e8xA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:26 2025 by rpki-client