Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: Zl97n5y+aNn97WjdvSMrPKCHDkMH0w5bFg46Cvo7Sbs=
Subject key identifier: D3:1B:B5:D1:EA:DB:D1:32:66:28:8D:87:63:BE:A7:82:C6:6C:A7:CB
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019A07126CAB38FF548E062B538E3AD7CBF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 16F3
Signing time: Tue 21 Oct 2025 14:00:39 +0000
Manifest this update: Tue 21 Oct 2025 14:00:39 +0000
Manifest next update: Wed 22 Oct 2025 14:00:39 +0000
Files and hashes: 1: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: ad5rmg/LjSbTVwx3ANSL4xUadf3KTaPz+CXHp8lqzXw=)
2: K0TFEKD6Jt4eOFvjhXpLcR-sKAw.roa (hash: DiTuJ8zdptPdKEXMu7Rx5XzUhg/taulk9eNvKwAnd+E=)
3: Low4CRi4iGKYokty-NINmJn09rg.roa (hash: Mly1uM7PqUcjuRWWihLVa+ejMa5zwEjs5HqRkIM9ZCc=)
4: TUldFuXRlNkhcxG2k3pbkLp8w6k.roa (hash: u8w+hKuVRJcapFna3Gt95nB+zwn2rJ1IH60Do+ZSEr0=)
5: VFLtaw7ddcrkuS71SLZjd28hT9Y.roa (hash: wkImuoriz8/Wt+wr39TPtXLgxrVgYHqbWY2XyO00qX4=)
6: fWDdDEZ5-7TJ7ifcAQ9Kizx3VI0.roa (hash: 9iAjE9rwQQFIjLwRuw0Wl4wwOwQae4btRIJRt6LJVxE=)
7: iYMgW4EcYcU5AKm4CceLlPmJSsA.roa (hash: 7zWW49XDo1LsXGWIP2om4UTMjsubF7Ml4DbV3OJ7N00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:07:12:6c:ab:38:ff:54:8e:06:2b:53:8e:3a:d7:cb:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Oct 21 14:00:39 2025 GMT
Not After : Oct 22 14:00:39 2025 GMT
Subject: CN=d31bb5d1eadbd13266288d8763bea782c66ca7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:21:27:5b:fa:02:a7:fb:fc:41:a8:7c:bd:
46:04:d6:48:82:44:f3:d8:62:26:dc:c5:42:dd:7f:
6e:d7:c9:8f:2c:09:fc:a3:55:34:1a:44:81:26:60:
12:77:e7:52:bf:ab:ff:e0:a7:73:85:0e:b1:33:dc:
2a:4b:37:4e:b8:08:f1:15:dd:f1:bb:70:c0:ca:37:
55:8e:03:ae:9e:7f:ac:a1:b8:f8:d6:70:6a:ce:d4:
3c:ea:c5:71:f5:18:6e:a1:1e:0b:23:f6:64:86:56:
d1:5a:4f:d3:f3:3f:5f:95:8c:ea:4c:9d:a2:c9:96:
4a:5d:de:8f:8e:a4:4d:70:52:56:45:e2:18:3a:4b:
e2:22:04:a0:c3:f6:f4:73:f0:8e:2a:e8:b8:5b:71:
70:1f:aa:86:8c:86:ed:dc:ad:60:9b:13:a6:50:90:
7e:56:95:70:f0:db:f7:77:52:fe:06:dc:a5:ee:e3:
30:07:7e:ac:e1:ae:0e:4c:8a:29:dd:07:23:c4:b6:
bf:48:df:92:72:97:28:a2:a3:3d:68:de:7d:9d:ca:
48:e8:b3:d1:b6:10:44:a2:f6:d7:b3:22:e3:a9:44:
8d:17:f9:61:40:de:0d:da:ce:ad:2c:6c:e5:ef:1c:
b1:f3:ee:0c:80:f1:16:63:ee:df:8b:66:c7:73:66:
17:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1B:B5:D1:EA:DB:D1:32:66:28:8D:87:63:BE:A7:82:C6:6C:A7:CB
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:20:5e:aa:e7:d1:41:98:2a:78:06:2d:eb:6d:8f:1a:ce:36:
e8:6c:f9:96:ba:cd:9d:45:24:9b:c3:18:57:98:bf:73:4c:82:
7f:2d:2a:e5:99:71:f0:5e:15:07:ed:96:52:87:6d:69:5f:cd:
56:7c:39:0c:42:25:e7:62:be:df:2e:1e:f6:f5:6e:f5:03:14:
87:42:b0:e0:db:89:29:5c:bc:fc:77:1d:10:11:d0:a8:05:6d:
52:16:ad:9a:26:40:88:21:0c:97:54:ea:f7:58:e7:02:3b:84:
7f:2a:fe:38:a6:4f:b9:e9:97:ce:98:79:f0:71:7c:69:f0:82:
15:ad:2b:a2:5e:9d:bc:94:ed:e9:63:fc:45:f1:85:c7:a5:0f:
f4:29:2d:eb:f7:f6:83:2a:07:aa:4c:0c:c4:b8:ab:8e:6e:0b:
e5:ca:1e:c0:b0:58:89:59:2d:5f:fe:40:59:e6:f9:92:54:03:
0d:e2:fc:df:6e:dc:13:19:1d:fc:fd:fa:4c:4c:69:f5:e6:88:
21:ba:01:a6:a5:49:ae:b6:9a:23:b1:51:62:5b:da:78:3f:d4:
27:8c:3c:56:3b:59:f3:11:4b:fc:9c:92:59:e5:70:80:cc:86:
b9:5f:36:57:58:88:b1:6e:3f:6b:7e:a4:34:d5:92:a1:2d:e1:
d3:27:d5:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 22:50:42 2025 by rpki-client