Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: 37NHk1HxTpFQ/fo4bRdOmxoR0CqLBaHlBkD3QWStnO8=
Subject key identifier: 70:DD:EB:C9:12:5C:B6:F4:15:0C:17:88:D7:D5:D6:91:A7:A1:7A:D6
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 019922FAEF94F45BEC29B6C1A253FA756D03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: 016D
Signing time: Sun 07 Sep 2025 07:01:34 +0000
Manifest this update: Sun 07 Sep 2025 07:01:34 +0000
Manifest next update: Mon 08 Sep 2025 07:01:34 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: LvDRvt4vT9X2mayxAaelSohbNZa8Ql4wly2FZdi5AlQ=)
2: 4YPbiAtEI4aIVwSYoOB9atG5l_o.roa (hash: 5G9M3UH6Px38TdWKWNsZTcUTomaq2supA1BUuPBFOUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:ef:94:f4:5b:ec:29:b6:c1:a2:53:fa:75:6d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: Sep 7 07:01:34 2025 GMT
Not After : Sep 8 07:01:34 2025 GMT
Subject: CN=70ddebc9125cb6f4150c1788d7d5d691a7a17ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d4:f2:a8:5f:7e:89:40:4f:b2:59:f8:be:a9:
d5:77:83:12:64:fd:74:fb:1d:09:ef:35:f2:2f:93:
e1:0f:96:8a:21:54:51:a6:bf:b5:7e:57:b6:ba:4f:
a7:6f:1e:14:2d:dc:2d:62:eb:03:f4:0f:21:a3:28:
92:fc:8f:87:e9:cc:be:73:f2:30:54:21:35:83:9e:
b2:18:3d:2f:4a:1b:53:cd:25:df:64:c6:4e:37:8a:
89:c8:0d:c3:98:39:c7:14:1d:be:3b:e6:f8:5f:7e:
7a:13:02:63:32:b2:ea:3a:4d:46:2d:f8:70:8c:e9:
c9:c3:32:7d:b8:74:0d:17:cc:34:e5:0d:ec:9a:08:
7b:fa:c9:d2:30:3a:9c:80:b9:e2:e7:71:1a:76:7d:
b3:df:60:dd:de:16:09:db:d3:e3:fa:ef:b9:8e:e6:
1d:26:8c:4a:de:28:5c:f0:51:e8:4b:8e:7f:a5:54:
44:50:ef:6a:c1:28:3a:96:bd:e2:ad:a5:61:c3:22:
5e:00:88:ad:03:99:a8:6f:71:51:ba:c1:2a:db:10:
8c:ad:65:d5:5f:3a:7a:91:31:c8:c8:85:39:ca:0b:
4a:f0:49:e2:5b:11:9f:7a:fe:6f:f6:75:d2:16:f7:
81:6e:1d:c7:0f:ea:38:02:70:b2:47:2a:c4:a9:59:
a4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:DD:EB:C9:12:5C:B6:F4:15:0C:17:88:D7:D5:D6:91:A7:A1:7A:D6
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:87:54:62:40:3a:26:b4:b3:36:67:ed:c5:65:6c:a1:27:88:
3e:b4:b6:45:a2:2b:7c:86:2b:c3:ae:8b:25:28:12:e2:6d:f3:
d7:a4:07:a0:65:31:1d:67:c5:58:f1:98:7a:d5:99:ba:12:ae:
ec:61:dc:8e:73:f5:4a:33:b7:a0:a3:60:ab:8c:c9:f6:e5:61:
10:59:1b:b7:44:de:5d:98:ad:4a:6d:eb:50:62:e8:f3:db:63:
92:03:a4:05:dc:cc:f9:60:e6:2e:2c:89:67:5d:a8:f1:86:c0:
1e:32:2e:fd:85:87:9e:90:b3:ff:b2:3b:96:3b:1b:de:22:f2:
1b:0d:8f:0b:3c:0b:12:1b:cd:0d:f3:00:3d:93:d7:00:68:b5:
49:ce:90:b4:1b:cf:e7:e9:45:f6:80:d2:f5:13:7a:7c:d6:f7:
79:ed:a9:4e:1a:4d:b0:76:81:68:0f:fc:9c:66:6d:dd:c4:64:
64:b7:22:f8:6f:91:97:9e:2f:fb:5a:dc:5a:b3:bb:88:80:ee:
19:91:42:1b:78:48:97:aa:2d:eb:7f:be:fa:c9:b6:11:49:12:
d6:ec:3a:ab:bb:8c:80:08:97:48:ad:87:a9:97:46:ec:4c:e6:
d3:31:98:7f:ad:3e:f3:cf:ac:b8:ac:51:08:6f:a5:58:d4:46:
b4:03:ea:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:25 2025 by rpki-client