Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
File: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft (raw, json)
Hash identifier: ccRyK97ljot0lQS+lDILDH6cCAGlU6kV0lQy6CqnpSE=
Subject key identifier: 4E:9E:FE:6F:E7:F6:0E:4D:8A:DF:15:DF:F8:7B:A4:5E:42:C5:75:CD
Authority key identifier: DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
Certificate issuer: /CN=dc6baa601236ab9bea29f807a66920ed5656a196
Certificate serial: 0199172CD56A29E52A9687E4A859A1F44D36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
Manifest number: 166A
Signing time: Fri 05 Sep 2025 00:00:38 +0000
Manifest this update: Fri 05 Sep 2025 00:00:38 +0000
Manifest next update: Sat 06 Sep 2025 00:00:38 +0000
Files and hashes: 1: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl (hash: 1pM4jwhcRWjdRLjKulXuRcogso6EB7mslEDTuoOnDoo=)
2: h-YJMMunIS0_gIZ5p26lgKRQyKc.roa (hash: bR5opkzZodiPK85GQ+pJiSPCVteQ0JuW261tZcQfTgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:2c:d5:6a:29:e5:2a:96:87:e4:a8:59:a1:f4:4d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6baa601236ab9bea29f807a66920ed5656a196
Validity
Not Before: Sep 5 00:00:38 2025 GMT
Not After : Sep 6 00:00:38 2025 GMT
Subject: CN=4e9efe6fe7f60e4d8adf15dff87ba45e42c575cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:76:04:58:41:2d:6d:e1:b2:aa:db:d9:fc:12:
bd:07:4e:23:0d:37:25:26:21:6e:64:4b:b2:54:eb:
25:eb:2d:7f:d3:db:39:23:ba:e1:98:b0:59:87:af:
06:fa:27:98:f1:d6:26:96:dc:16:80:89:98:92:a6:
58:5e:1d:41:ad:ff:bd:f2:36:88:f0:a9:7e:e9:ce:
9d:ee:5f:80:0a:13:06:bc:23:5c:dc:31:2c:ea:37:
cb:10:18:fd:1d:55:25:78:97:52:5d:e4:4f:23:45:
72:80:6a:31:b2:26:6b:c4:92:0d:a3:49:d0:c6:52:
74:ae:5f:5a:e6:1d:fe:10:64:24:a5:02:f9:dd:79:
ae:e4:46:4e:1e:69:82:9c:aa:f9:ef:b2:f9:e2:53:
13:f4:19:1f:19:c8:c0:64:07:53:78:35:b3:27:4b:
97:44:64:5e:35:1c:37:21:a3:a5:b6:9f:90:64:fd:
dc:f2:79:00:6d:5d:08:cd:3e:68:0c:7d:c3:65:e9:
c8:8f:a6:ff:e0:69:2e:aa:83:46:40:fd:96:cc:9d:
97:1d:2d:75:31:c0:75:5c:2e:15:44:64:6b:4a:dd:
57:99:54:eb:26:d5:99:bd:fa:51:50:5c:04:3e:2c:
1c:25:a8:ba:61:1f:18:d7:d0:ba:f9:7f:9e:22:0b:
3f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9E:FE:6F:E7:F6:0E:4D:8A:DF:15:DF:F8:7B:A4:5E:42:C5:75:CD
X509v3 Authority Key Identifier:
keyid:DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:da:4b:b1:32:9b:3d:44:e9:56:47:27:ca:fd:ed:eb:20:9f:
d2:23:7f:1b:8c:ba:69:3c:03:87:00:18:4b:dd:f9:52:54:50:
8c:37:03:23:6e:ee:ea:4c:ef:79:25:91:ce:57:23:54:64:34:
cc:d0:42:08:40:57:e6:b8:7e:a5:af:e7:92:14:af:4c:01:b1:
be:87:53:6f:31:aa:a7:53:71:df:5d:01:8c:cd:75:96:7c:46:
62:d0:c1:48:8b:26:d7:c2:82:16:22:6a:1f:b7:ed:4a:74:13:
2f:58:aa:05:00:08:67:47:db:e6:e7:27:6b:71:c7:62:d0:97:
15:7d:e2:1f:86:a4:64:c9:e8:17:9b:82:f0:4d:e6:55:18:69:
14:be:d3:bd:63:29:88:19:73:b6:10:68:c2:d8:f3:66:3d:74:
01:53:51:e2:72:98:54:25:96:df:ef:08:24:0d:8b:82:2b:b4:
57:51:ef:31:2a:48:88:45:d5:5f:73:15:bb:7a:e4:15:b0:95:
1c:d7:52:f1:cc:99:96:e4:aa:61:9c:dd:5c:f2:2a:7c:38:32:
ed:b5:76:16:ae:8d:92:3d:68:8f:7c:89:cf:8a:c2:77:73:87:
6c:a5:03:ab:7f:bc:eb:54:d2:da:af:4e:f2:49:f4:15:df:1d:
8b:1e:e1:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkXLNVqKeUqlofkqFmh9E02MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNmJhYTYwMTIzNmFiOWJlYTI5ZjgwN2E2NjkyMGVkNTY1
NmExOTYwHhcNMjUwOTA1MDAwMDM4WhcNMjUwOTA2MDAwMDM4WjAzMTEwLwYDVQQD
Eyg0ZTllZmU2ZmU3ZjYwZTRkOGFkZjE1ZGZmODdiYTQ1ZTQyYzU3NWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXYEWEEtbeGyqtvZ/BK9B04jDTcl
JiFuZEuyVOsl6y1/09s5I7rhmLBZh68G+ieY8dYmltwWgImYkqZYXh1Brf+98jaI
8Kl+6c6d7l+AChMGvCNc3DEs6jfLEBj9HVUleJdSXeRPI0VygGoxsiZrxJINo0nQ
xlJ0rl9a5h3+EGQkpQL53Xmu5EZOHmmCnKr577L54lMT9BkfGcjAZAdTeDWzJ0uX
RGReNRw3IaOltp+QZP3c8nkAbV0IzT5oDH3DZenIj6b/4GkuqoNGQP2WzJ2XHS11
McB1XC4VRGRrSt1XmVTrJtWZvfpRUFwEPiwcJai6YR8Y19C6+X+eIgs/MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE6e/m/n9g5Nit8V3/h7pF5CxXXNMB8GA1UdIwQY
MBaAFNxrqmASNqub6in4B6ZpIO1WVqGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83YmQyZTMtZjNjNS00OTU1LWI5YTEt
MzRhMTIzN2YxNjcwLzEvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS83YmQyZTMtZjNjNS00OTU1LWI5YTEtMzRhMTIzN2YxNjcw
LzEvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmdpLsTKb
PUTpVkcnyv3t6yCf0iN/G4y6aTwDhwAYS935UlRQjDcDI27u6kzveSWRzlcjVGQ0
zNBCCEBX5rh+pa/nkhSvTAGxvodTbzGqp1Nx310BjM11lnxGYtDBSIsm18KCFiJq
H7ftSnQTL1iqBQAIZ0fb5ucna3HHYtCXFX3iH4akZMnoF5uC8E3mVRhpFL7TvWMp
iBlzthBowtjzZj10AVNR4nKYVCWW3+8IJA2Lgiu0V1HvMSpIiEXVX3MVu3rkFbCV
HNdS8cyZluSqYZzdXPIqfDgy7bV2Fq6Nkj1oj3yJz4rCd3OHbKUDq3+861TS2q9O
8kn0Fd8dix7h7Q==
-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:18 2025 by rpki-client