Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
File: 3tRskpaCjJwCVTCqaEFgmt8FaaA.mft (raw, json)
Hash identifier: /GImU8AtunBKRR3koe5NGk8G9hnHgJfd9Ms+W53WUbY=
Subject key identifier: 06:6C:BE:84:54:45:DE:10:67:0D:54:39:89:0B:43:40:C5:F1:E5:7A
Authority key identifier: DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0
Certificate issuer: /CN=ded46c9296828c9c025530aa6841609adf0569a0
Certificate serial: 019922C384FE666CA52ABE8F79A92151E6FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
Manifest number: 0389
Signing time: Sun 07 Sep 2025 06:01:02 +0000
Manifest this update: Sun 07 Sep 2025 06:01:02 +0000
Manifest next update: Mon 08 Sep 2025 06:01:02 +0000
Files and hashes: 1: 3tRskpaCjJwCVTCqaEFgmt8FaaA.crl (hash: /UNEydGrEsk4stgsvO7gMb9zWyayEnf6zvb/CzJ1D90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:84:fe:66:6c:a5:2a:be:8f:79:a9:21:51:e6:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded46c9296828c9c025530aa6841609adf0569a0
Validity
Not Before: Sep 7 06:01:02 2025 GMT
Not After : Sep 8 06:01:02 2025 GMT
Subject: CN=066cbe845445de10670d5439890b4340c5f1e57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:8f:47:7c:e3:c0:cc:b6:6a:ef:da:90:4b:
e8:a6:e8:29:b5:23:ce:16:08:59:be:84:99:22:e1:
30:14:3e:42:1c:2f:4d:ad:01:4e:ec:82:40:be:06:
44:ad:df:31:c9:49:b3:d9:eb:34:13:a4:58:f1:f1:
85:97:b5:7b:8b:05:cb:1d:27:b1:29:49:09:a5:fd:
dc:10:6a:1a:2b:52:94:91:21:4c:31:8c:aa:19:97:
a9:41:38:77:da:6f:35:3b:ca:d0:03:e8:92:7e:5e:
6a:4f:7b:d4:69:7c:95:88:77:a2:a5:14:2f:69:b7:
c2:12:42:3a:ec:70:f9:94:c8:5e:c1:ec:51:2a:97:
bc:21:27:9d:d9:3a:12:93:e6:9f:2f:08:8f:71:54:
e2:54:b7:3a:a3:cf:46:75:dc:e6:1d:27:aa:1a:60:
f3:a1:d9:cb:ee:af:00:68:7d:0b:84:c0:d4:ad:2b:
c0:26:49:5e:ce:5c:d2:57:5e:f6:69:e6:be:8c:9b:
e0:14:13:56:10:65:04:9b:42:95:4b:49:54:fe:a2:
ab:f2:12:59:5b:bf:12:33:67:31:c6:1b:df:19:18:
69:61:ba:c9:4e:aa:3c:cb:45:ef:5a:57:04:f1:99:
7b:48:30:b4:12:1d:4f:c0:3b:f5:1b:45:21:26:55:
e5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:6C:BE:84:54:45:DE:10:67:0D:54:39:89:0B:43:40:C5:F1:E5:7A
X509v3 Authority Key Identifier:
keyid:DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:40:ff:a5:31:3b:eb:b8:fd:01:02:86:80:6c:b1:f1:44:c4:
cb:17:51:18:ac:f1:5e:51:ce:ab:0c:73:ad:a5:5f:8f:d1:67:
3f:5e:03:11:2e:7e:03:5f:bb:0d:a2:c1:bc:aa:19:54:c5:df:
a0:60:70:ee:1c:e6:56:28:1f:67:c7:48:b2:bf:45:b8:e3:70:
5f:41:28:ef:4d:ba:2d:dc:4c:6d:f3:f2:a2:b0:64:ea:c7:81:
9d:21:f4:75:e9:22:a8:db:01:f5:3a:32:73:6f:e4:4e:9d:ac:
e9:26:32:f1:24:57:f3:aa:dd:30:42:fa:40:bc:23:b7:59:46:
a0:7d:7f:91:ba:b6:6e:8c:fe:2e:cd:5c:4b:a5:45:30:bf:42:
f0:a2:91:93:91:14:69:c2:a6:53:c2:70:9f:c5:4f:52:bc:b8:
60:b2:7e:20:c9:d0:6b:18:fa:bd:76:26:e9:4f:72:cf:cf:dd:
90:a2:50:74:e4:10:e1:44:2d:7f:01:90:7c:d3:39:71:c2:88:
58:32:2b:d9:05:78:f9:c5:ce:6e:94:33:13:14:a4:aa:ee:90:
32:da:35:1e:75:4d:ce:3e:2d:a0:b3:81:43:e4:e2:e3:05:89:
a2:a3:17:6f:38:9e:49:38:ed:08:d3:3c:60:3c:1f:80:24:fb:
78:0d:60:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw4T+ZmylKr6PeakhUeb+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlZDQ2YzkyOTY4MjhjOWMwMjU1MzBhYTY4NDE2MDlhZGYw
NTY5YTAwHhcNMjUwOTA3MDYwMTAyWhcNMjUwOTA4MDYwMTAyWjAzMTEwLwYDVQQD
EygwNjZjYmU4NDU0NDVkZTEwNjcwZDU0Mzk4OTBiNDM0MGM1ZjFlNTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMaPR3zjwMy2au/akEvopugptSPO
FghZvoSZIuEwFD5CHC9NrQFO7IJAvgZErd8xyUmz2es0E6RY8fGFl7V7iwXLHSex
KUkJpf3cEGoaK1KUkSFMMYyqGZepQTh32m81O8rQA+iSfl5qT3vUaXyViHeipRQv
abfCEkI67HD5lMhewexRKpe8ISed2ToSk+afLwiPcVTiVLc6o89GddzmHSeqGmDz
odnL7q8AaH0LhMDUrSvAJklezlzSV172aea+jJvgFBNWEGUEm0KVS0lU/qKr8hJZ
W78SM2cxxhvfGRhpYbrJTqo8y0XvWlcE8Zl7SDC0Eh1PwDv1G0UhJlXlqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZsvoRURd4QZw1UOYkLQ0DF8eV6MB8GA1UdIwQY
MBaAFN7UbJKWgoycAlUwqmhBYJrfBWmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2Et
YTAwMDdiZDVhY2U3LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2EtYTAwMDdiZDVhY2U3
LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMED/pTE7
67j9AQKGgGyx8UTEyxdRGKzxXlHOqwxzraVfj9FnP14DES5+A1+7DaLBvKoZVMXf
oGBw7hzmVigfZ8dIsr9FuONwX0Eo7026LdxMbfPyorBk6seBnSH0dekiqNsB9Toy
c2/kTp2s6SYy8SRX86rdMEL6QLwjt1lGoH1/kbq2boz+Ls1cS6VFML9C8KKRk5EU
acKmU8Jwn8VPUry4YLJ+IMnQaxj6vXYm6U9yz8/dkKJQdOQQ4UQtfwGQfNM5ccKI
WDIr2QV4+cXObpQzExSkqu6QMto1HnVNzj4toLOBQ+Ti4wWJoqMXbzieSTjtCNM8
YDwfgCT7eA1gqQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:25 2025 by rpki-client