Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: P77aJje1Byqmh5u9NcTNLkUzeWA1pe4HSOFWhw1KbI8=
Subject key identifier: 46:43:9E:46:54:0D:97:4E:C6:63:83:30:C6:E2:7B:7A:36:A5:E5:CB
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 019A299E56E94F68827549DB280F56E6A0D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 1703
Signing time: Tue 28 Oct 2025 07:00:34 +0000
Manifest this update: Tue 28 Oct 2025 07:00:34 +0000
Manifest next update: Wed 29 Oct 2025 07:00:34 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: hcTHsd0vN3nEiLZl7lAm8RJTUnY5ULDLAriu0pxQX4I=)
2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 07:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:9e:56:e9:4f:68:82:75:49:db:28:0f:56:e6:a0:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Oct 28 07:00:34 2025 GMT
Not After : Oct 29 07:00:34 2025 GMT
Subject: CN=46439e46540d974ec6638330c6e27b7a36a5e5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8e:74:b8:e4:c4:cc:1a:06:e6:07:44:91:be:
eb:12:e6:1b:ab:5e:1a:4e:57:1b:8b:14:c0:6b:0c:
e2:e3:d1:b2:d2:25:93:cb:84:62:0a:8b:f8:4b:79:
7b:53:8c:4f:73:51:b5:a2:cb:cf:58:3b:aa:64:a2:
8c:b5:fd:71:ee:5a:78:fb:0b:a1:a5:57:f0:da:47:
fb:29:f2:61:e2:f0:50:39:b4:ea:2f:a0:62:84:e5:
db:67:b8:35:89:f4:a0:ce:3c:19:6c:b3:7c:43:db:
80:30:34:54:44:97:fa:3b:d9:5f:93:f1:46:17:82:
98:59:f7:c1:5a:36:f8:cb:14:9f:46:77:30:77:e3:
da:8c:29:4e:a2:3d:65:39:28:60:d1:45:28:9a:3d:
9c:f9:20:c5:d6:6f:89:3b:6a:fc:58:92:49:a1:e8:
f6:2f:05:81:20:92:94:9c:2c:3d:bc:f3:26:8e:87:
79:82:cb:21:39:a1:7b:ff:34:62:49:db:ea:f6:4d:
88:81:ae:a0:a0:b2:a7:d0:5e:c1:a6:b5:d6:53:11:
29:2e:45:19:72:d1:a8:67:e8:04:f5:c5:2f:5c:c6:
66:6d:6d:cd:63:e7:0f:2e:2c:02:ab:3a:f9:cd:ee:
7b:e2:3c:5a:28:a8:f9:6b:27:68:1a:97:5b:f4:4b:
cc:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:43:9E:46:54:0D:97:4E:C6:63:83:30:C6:E2:7B:7A:36:A5:E5:CB
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ee:c7:33:f2:5e:4b:9c:e2:e0:4d:aa:3d:9d:fa:2a:d0:fb:
0a:98:53:a0:e5:aa:a4:cc:fa:fc:59:48:ba:02:9c:b9:c3:ce:
ae:d5:1a:30:1e:27:e7:b2:06:37:0e:a2:a7:da:be:e9:e0:02:
95:13:eb:6f:b4:e8:f0:dd:54:cc:b4:72:de:43:a5:d4:09:33:
60:b5:89:a1:8f:f0:e0:59:83:d2:4d:8c:d5:92:a7:48:cc:3e:
bc:e5:5a:c4:4b:7c:7c:2a:cb:ea:76:63:1f:fb:19:83:bd:bc:
67:b0:ca:26:d7:a6:40:e5:6e:12:58:c8:60:67:c1:c4:5a:d0:
1b:5a:d6:85:9f:a2:03:90:3a:bf:59:d4:a3:e9:f9:34:cd:58:
5b:9a:36:1f:dc:54:94:b0:a1:f6:b2:9e:34:72:a4:5f:7b:c5:
0b:91:83:58:e2:d4:44:d4:08:7e:69:e2:4f:ee:3e:d9:7e:4e:
ae:50:ee:0a:94:39:01:ef:b3:b3:09:ae:f4:6c:d8:eb:ce:27:
ea:b0:fe:8e:dc:bd:c0:40:4e:24:a9:ad:d3:9a:6f:61:2e:7b:
80:fb:86:50:19:44:0b:7c:4d:82:96:21:48:6c:86:09:a6:ba:
b4:a6:ee:88:3b:ea:9c:cd:ab:32:19:a2:16:b9:4e:b0:b1:a8:
0f:cd:53:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 14:33:54 2025 by rpki-client