Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File: 3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier: UjvTz9I7r15eUe37qxuqsPjsvtmme7rlA3kIYfEvRqM=
Subject key identifier: 9E:9D:34:A7:41:EE:E1:6A:9C:69:88:D3:8D:84:FD:D6:D9:F4:C3:1C
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer: /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial: 019A2EFB5CBE236FD1DE405574ACDB131E6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number: 16FC
Signing time: Wed 29 Oct 2025 08:00:16 +0000
Manifest this update: Wed 29 Oct 2025 08:00:16 +0000
Manifest next update: Thu 30 Oct 2025 08:00:16 +0000
Files and hashes: 1: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: GcCL0f2ssPRo65juu6DYHas1XQRh89QWV9jSe92T+Co=)
2: I9GqI9GxRbg5gyNw2oYeQXtgJJg.roa (hash: IdZbo1C2DnUJiJSpOjjTPKnvp3frNBJygc4FMjTeWHU=)
3: OJHrSjDn0A0xOyeisC7fOP_zy4g.roa (hash: 4mrlovUy+cBI29r4SEJkRQxz3HoEwjM6nDvfGvlxWBU=)
4: ie70DJhDrGYxNNPSAG6BpAZrtxY.roa (hash: HiOIeBO8KrrORXl70BQK8AAzSZ8zCob2hQpjThQB7t8=)
5: tr4Wz-5rQhPo47mTFs_LgvHDl8s.roa (hash: PZGVkTuh77FvBlVCnDa38AVdteMzJ1COvOQXzBoIS0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2e:fb:5c:be:23:6f:d1:de:40:55:74:ac:db:13:1e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
Validity
Not Before: Oct 29 08:00:16 2025 GMT
Not After : Oct 30 08:00:16 2025 GMT
Subject: CN=9e9d34a741eee16a9c6988d38d84fdd6d9f4c31c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:aa:30:5d:78:a9:41:94:3e:a2:49:68:90:ae:
b8:90:ba:e6:df:ed:c6:e5:f6:f6:bb:a3:38:60:a1:
62:82:b9:b8:64:f1:2e:d9:50:25:67:c1:fa:25:fa:
e6:f0:73:40:ff:d6:4f:6e:10:26:d9:ea:f1:95:c6:
c3:31:13:0e:72:56:2e:ea:01:52:f1:71:0e:f6:36:
82:74:a1:9e:97:ac:63:27:84:7f:3d:5c:b7:50:e4:
bb:2a:0a:75:43:66:b3:6a:c7:74:62:71:c3:1e:c4:
06:bf:7d:1a:53:43:f8:e0:0b:76:b0:ff:7b:89:47:
c6:b7:19:ca:a7:52:33:9a:d9:ac:13:3c:45:f9:f4:
11:06:dd:26:aa:70:b2:81:b6:2f:1f:a1:6f:8f:28:
a4:cd:bd:9d:44:c0:2c:8c:29:b5:f1:29:1e:b5:10:
74:35:0c:97:b9:a4:72:95:48:c9:98:18:99:69:e6:
f4:f2:4c:58:7e:02:0e:6f:b4:39:24:49:e1:71:09:
d3:cf:33:fd:95:92:a7:09:08:8c:5c:93:de:c3:41:
c2:80:4d:ef:d3:cd:f9:da:ad:08:9a:d1:9d:4c:6e:
3f:82:78:68:60:82:2b:ae:80:4c:f7:29:4f:88:31:
ac:93:6a:e2:b1:a2:3a:7f:05:94:39:bc:c2:9e:2f:
db:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9D:34:A7:41:EE:E1:6A:9C:69:88:D3:8D:84:FD:D6:D9:F4:C3:1C
X509v3 Authority Key Identifier:
keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:1e:a0:62:1d:71:40:3d:92:30:5e:17:c6:94:09:66:58:14:
18:49:5b:df:47:a2:b3:97:ad:ed:a7:a0:3a:bb:28:b6:94:8e:
15:9a:66:15:76:c2:43:49:f3:83:01:c3:ff:10:43:83:3a:b3:
16:62:bc:16:7e:1d:24:b5:9f:89:d2:6c:7d:be:ab:cc:05:8e:
80:6a:8a:8d:2a:01:b4:33:86:c6:42:8b:0c:c1:89:f8:a2:00:
2b:f6:20:ac:02:12:6e:e4:b0:da:0a:99:ca:96:01:db:03:10:
4b:d2:17:f8:6b:78:5e:f5:c5:66:9a:1f:32:1a:01:23:0d:b6:
f1:9f:c0:3d:ee:8f:f6:0e:d1:e0:36:dd:64:04:2e:d0:23:31:
ca:6c:30:f8:a3:af:e1:de:56:fd:58:bf:be:f2:63:24:4a:44:
9d:ee:40:6a:03:57:86:22:4d:15:fd:d4:80:d0:29:94:79:4d:
2a:6e:29:df:b8:c3:16:b8:50:9d:f1:21:4a:2b:59:d0:f3:89:
ca:3c:39:75:ae:32:b5:10:5c:2d:d8:47:33:2b:ec:ae:00:b8:
10:ee:9b:ff:75:d9:11:77:12:23:fb:01:c8:75:1e:ea:31:56:
e4:e6:da:6a:ee:6b:2f:c4:9b:77:e0:2e:c8:49:1b:3f:dd:15:
37:56:11:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 14:50:45 2025 by rpki-client