Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: r6me8KXgWQq9TQcZXNgBhCin08oAlIf4oLK32CTWEMk=
Subject key identifier: E4:37:13:B2:1A:17:B2:68:A0:C3:57:36:7A:7B:D0:B7:33:0A:7F:19
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 019922FA8EEC450E61971D0A82D6A8416C79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 167B
Signing time: Sun 07 Sep 2025 07:01:09 +0000
Manifest this update: Sun 07 Sep 2025 07:01:09 +0000
Manifest next update: Mon 08 Sep 2025 07:01:09 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: eoGRk8YTl/HDcYduQrhaxSnx+xTILDNbnys1e4opnew=)
2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:8e:ec:45:0e:61:97:1d:0a:82:d6:a8:41:6c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Sep 7 07:01:09 2025 GMT
Not After : Sep 8 07:01:09 2025 GMT
Subject: CN=e43713b21a17b268a0c357367a7bd0b7330a7f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6f:39:3c:07:93:ce:ee:ec:05:8d:04:8c:45:
68:1b:ff:b1:68:2a:db:49:aa:79:5f:50:33:f0:bc:
5d:0f:15:7f:a2:b9:12:e8:f6:31:f7:d6:e4:b2:fc:
e0:4a:80:f5:1c:13:cc:d9:90:d7:4f:14:87:f8:49:
cf:35:4e:30:bb:4c:58:3e:6e:87:83:3d:3a:61:cd:
0c:b5:ed:69:bb:00:33:e5:26:c2:a7:54:39:4d:5d:
a8:7f:10:ef:49:11:a0:dd:16:4c:c5:da:fe:6d:e3:
f2:53:51:51:98:50:6c:de:46:36:b5:13:58:8f:f9:
83:b0:08:3c:0f:54:58:42:63:f3:52:3d:24:cc:2d:
8c:a0:d6:1b:cf:f0:bc:38:02:10:28:31:a4:52:02:
88:ad:9b:96:5f:21:c1:40:3c:a8:c6:c5:ae:51:5c:
76:8a:d3:36:76:04:e5:56:50:9d:a4:c5:c3:05:cf:
08:aa:c0:db:1f:89:e6:91:4e:0f:a2:89:87:7b:0d:
4b:45:97:c0:22:3b:f9:6a:65:4c:31:82:f2:dd:da:
2e:c8:20:81:1b:23:70:c8:3f:78:88:da:1e:8d:87:
b1:9f:eb:10:1a:24:0d:a4:6c:d7:b1:08:fd:fe:02:
3c:31:4a:0b:60:5f:c8:95:91:c3:85:1f:4d:cb:19:
7f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:37:13:B2:1A:17:B2:68:A0:C3:57:36:7A:7B:D0:B7:33:0A:7F:19
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:fe:c4:52:23:04:df:5a:07:df:3e:9f:65:45:6a:c0:05:17:
31:9b:8e:93:f6:24:06:67:bc:25:4a:64:cf:65:63:83:d4:c9:
a1:57:a3:78:70:b5:80:ab:91:b0:26:72:69:0a:2e:8e:d9:1e:
a7:07:42:ef:d8:f8:80:10:a5:db:7e:03:7d:dc:1c:63:7d:b8:
fc:55:56:4c:51:6f:b1:04:da:47:f5:b6:30:80:c9:1b:47:15:
96:97:a1:fd:c1:a8:2d:b3:54:30:a1:89:2f:f1:86:39:fd:48:
4d:4a:1d:07:17:94:e5:a5:5e:47:f1:7a:ef:3f:9c:12:be:ab:
7f:93:6d:0a:c1:0a:4b:55:bf:40:68:2d:ec:8c:27:a5:ec:b2:
99:ec:dd:1e:ce:e4:3f:41:fc:8a:45:db:33:a9:ab:9d:de:3e:
41:5f:58:b2:13:d8:ea:72:aa:b7:80:de:2e:cb:81:d5:d3:2f:
ba:89:96:d3:87:52:51:8d:7d:eb:7f:3e:89:be:57:c5:72:64:
bd:3e:8e:87:22:ef:f3:d1:41:c6:a1:a7:cf:41:97:66:d7:93:
0f:d6:fb:f1:5b:c8:ce:5a:2d:40:3d:72:da:d0:cf:1a:ff:78:
bf:45:8e:bb:58:72:be:8c:41:34:ad:b1:38:f5:65:4b:d2:26:
a7:16:dd:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:29 2025 by rpki-client