Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: wJQRalfrm/3BlX5M7vCTDMy+mmj2OqmOh0T4r4H3cvs=
Subject key identifier: ED:D5:63:03:41:06:FA:93:EB:46:FD:0C:5E:F9:F6:E2:A8:7D:5B:6C
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 019A7113052B06F99EB694AE7156DF5A9EAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: 021A
Signing time: Tue 11 Nov 2025 04:01:03 +0000
Manifest this update: Tue 11 Nov 2025 04:01:03 +0000
Manifest next update: Wed 12 Nov 2025 04:01:03 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: IJAGQkCF6nbso+5k5MIgD4sdus3nlNW/KwWklq8FZJc=)
2: 4YPbiAtEI4aIVwSYoOB9atG5l_o.roa (hash: 5G9M3UH6Px38TdWKWNsZTcUTomaq2supA1BUuPBFOUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:05:2b:06:f9:9e:b6:94:ae:71:56:df:5a:9e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: Nov 11 04:01:03 2025 GMT
Not After : Nov 12 04:01:03 2025 GMT
Subject: CN=edd563034106fa93eb46fd0c5ef9f6e2a87d5b6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:50:bf:c5:29:94:1b:8e:d1:0d:83:b8:e4:d2:
dd:51:94:65:1e:81:89:03:9f:7a:6a:d4:65:64:d2:
77:74:92:b1:b5:a0:44:23:54:ab:f1:71:ab:59:d1:
bb:bd:dd:95:f6:c8:25:29:f6:c7:5c:54:a4:26:b0:
c0:6c:8e:d1:3c:60:46:8a:47:8d:2e:e2:67:ed:90:
7f:28:39:8b:79:c8:03:3e:4e:ad:f6:59:b6:ea:6d:
e7:7f:56:01:64:bb:bb:29:b8:db:15:c0:30:8e:5b:
1b:0b:7a:1e:d4:38:9f:b9:a7:e8:df:c6:7f:ef:ab:
aa:e2:c4:47:f2:ad:7b:24:f2:ff:f5:46:16:dc:c5:
5a:75:71:cc:37:11:fa:9a:1e:1b:58:3a:c6:fe:df:
f0:02:44:79:6f:8e:78:b5:c6:24:e9:4a:ae:a4:02:
12:34:88:c1:68:07:65:20:c9:c8:8e:58:43:ee:bd:
00:70:79:c2:f1:06:c9:82:33:4e:26:89:44:45:59:
a0:51:ba:b5:bb:e4:18:d9:a8:76:06:c3:83:74:01:
15:6f:05:a6:a8:a7:07:5c:38:cf:f1:e7:fd:6f:30:
0e:12:4b:51:f7:3f:2d:c9:c7:f4:d2:ce:23:a4:a2:
17:ec:24:56:70:67:4e:3f:59:1e:fc:03:8c:27:73:
21:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D5:63:03:41:06:FA:93:EB:46:FD:0C:5E:F9:F6:E2:A8:7D:5B:6C
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d8:40:bb:aa:52:80:83:f3:07:d3:7c:b6:3b:97:7d:39:8a:
c2:fa:ee:fa:0d:ca:4d:24:77:ed:b7:76:53:e1:4c:da:61:04:
c2:be:77:cf:60:b4:8c:f1:a9:0a:c8:bb:06:61:05:a6:b1:a5:
09:66:10:18:4c:a0:67:c9:88:69:18:7b:67:07:c1:1d:a0:97:
83:52:6c:1c:b4:d3:35:f1:be:ba:b6:c8:72:a8:04:82:18:d2:
dc:b1:33:8d:40:e5:e7:a7:ce:3e:e3:bb:0d:90:66:79:18:45:
a0:6c:9f:dc:21:f2:90:26:2d:7e:ac:93:ea:e5:ba:f1:76:59:
33:85:c3:06:99:79:c0:0b:d1:64:ab:a3:c7:8d:22:dd:5e:37:
f4:c5:3b:03:a0:26:02:1a:c9:0c:ec:0b:40:a1:64:a8:45:94:
fa:08:7f:20:de:75:2a:7c:2b:d6:59:83:a6:3b:29:f1:bb:e4:
c9:82:e2:7c:f7:4f:3d:dd:ce:22:64:f0:db:d4:41:09:4a:ba:
83:37:cd:bb:f7:d7:99:f4:ac:4e:2e:3b:c1:bb:ea:a7:b6:de:
0c:75:c4:81:91:68:2c:ba:ff:50:0e:4d:57:cf:40:c6:be:a9:
ec:59:a5:f8:be:2b:d7:c7:9b:74:4d:9d:e8:86:59:04:34:7a:
50:2a:00:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:12:21 2025 by rpki-client