Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: fIv1AiKcx95hBZkYY4mOsEJcr0xX0hVEiS2DJza3mEk=
Subject key identifier: D8:77:5E:F3:33:0F:CF:C4:6B:00:C0:AE:EA:4C:CC:81:DB:28:B6:DA
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 019961D90BDDF0A0C38512B2CD5962578C28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 1626
Signing time: Fri 19 Sep 2025 12:00:38 +0000
Manifest this update: Fri 19 Sep 2025 12:00:38 +0000
Manifest next update: Sat 20 Sep 2025 12:00:38 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: mBPDu2bn0LqQgWDW2GfWn4yWj1eDjksnPzMStN5miVs=)
2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 12:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:61:d9:0b:dd:f0:a0:c3:85:12:b2:cd:59:62:57:8c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Sep 19 12:00:38 2025 GMT
Not After : Sep 20 12:00:38 2025 GMT
Subject: CN=d8775ef3330fcfc46b00c0aeea4ccc81db28b6da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:05:81:0c:c4:c4:87:45:dd:6a:a4:9f:61:ee:
6d:bb:1b:2f:dd:3b:81:0b:f3:65:1a:16:8d:62:81:
dc:d2:fd:58:8c:47:82:70:a4:21:ed:79:d0:75:59:
bb:82:34:6b:2a:4b:1e:cb:1f:41:c6:64:57:12:ec:
03:72:e5:04:48:1b:4e:fb:f9:66:ab:84:cd:c2:e0:
e9:16:87:d6:52:e0:aa:72:d8:f5:03:8b:c3:e2:90:
fd:e9:51:dc:c4:0a:7c:3c:a1:e5:24:44:07:d8:f6:
36:2d:be:fc:c0:cd:bd:71:fa:4a:93:5e:e9:16:3a:
d9:30:5f:a8:f9:54:7a:80:4a:65:31:20:b9:32:eb:
be:02:33:93:75:e1:0e:f6:97:d1:fa:3a:27:c5:43:
26:f4:cf:9d:e5:1a:1f:06:e3:8d:c8:52:b6:8f:6c:
e5:82:c5:e9:2e:82:72:73:0a:07:8e:83:3c:38:84:
fc:53:59:14:3c:f7:30:7b:f4:af:07:84:6c:8b:5e:
c2:b0:18:4a:31:b5:55:b8:64:1c:aa:29:7d:c2:a7:
dc:04:a7:69:cd:72:54:de:35:ec:b0:84:16:36:28:
e0:5d:32:eb:7b:ed:3b:00:7a:65:c9:cd:05:8a:b5:
f3:6c:83:36:25:27:69:7b:26:9c:d0:6e:09:c6:c9:
5b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:77:5E:F3:33:0F:CF:C4:6B:00:C0:AE:EA:4C:CC:81:DB:28:B6:DA
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:30:a8:6c:0b:f2:90:be:e5:c9:bb:d1:5c:04:66:7d:10:9a:
3c:fd:72:44:97:85:ce:62:32:2c:8e:ed:79:8c:b6:a8:55:94:
ae:d6:25:7a:ee:14:f2:b9:9e:85:2c:da:1a:4e:a4:5c:95:b0:
e7:f7:62:72:e4:4e:40:1c:20:8a:43:9d:17:62:8c:d6:db:a1:
d1:44:62:cc:c7:07:c7:c9:58:7a:19:0e:e7:bc:71:0e:ce:e1:
3d:9c:bb:35:ce:2e:6e:89:ee:1c:da:69:4f:28:6a:00:7e:04:
97:06:35:7e:aa:c5:dc:ed:11:93:3e:1c:6b:3a:86:50:6e:73:
88:a0:b3:dd:e2:12:3c:df:2f:b5:3d:2c:2d:96:71:a2:df:24:
af:0f:5d:94:e9:42:36:a8:45:34:20:ce:04:49:44:4b:c4:04:
62:32:fa:17:f2:5a:60:f7:05:04:66:9b:d8:2d:c9:50:c6:ce:
07:b4:ed:b4:34:d1:cf:8a:c2:8a:72:f5:65:b7:23:57:45:73:
40:2b:36:5b:bf:cc:12:ce:16:ff:d7:54:26:f4:53:4e:05:35:
df:18:ad:bc:6b:84:e1:cd:fa:82:64:8a:53:e5:67:35:42:c2:
17:af:cf:56:f6:fd:49:7f:1a:ab:7c:27:6a:e0:c6:d7:00:b4:
5b:e0:74:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZlh2Qvd8KDDhRKyzVliV4woMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTY5OTUyZjk3ZjQ5NGNmZTBmNmI1NDI3Y2E1NmU4MTBj
MDVjZTAwHhcNMjUwOTE5MTIwMDM4WhcNMjUwOTIwMTIwMDM4WjAzMTEwLwYDVQQD
EyhkODc3NWVmMzMzMGZjZmM0NmIwMGMwYWVlYTRjY2M4MWRiMjhiNmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgWBDMTEh0XdaqSfYe5tuxsv3TuB
C/NlGhaNYoHc0v1YjEeCcKQh7XnQdVm7gjRrKkseyx9BxmRXEuwDcuUESBtO+/lm
q4TNwuDpFofWUuCqctj1A4vD4pD96VHcxAp8PKHlJEQH2PY2Lb78wM29cfpKk17p
FjrZMF+o+VR6gEplMSC5Muu+AjOTdeEO9pfR+jonxUMm9M+d5RofBuONyFK2j2zl
gsXpLoJycwoHjoM8OIT8U1kUPPcwe/SvB4Rsi17CsBhKMbVVuGQcqil9wqfcBKdp
zXJU3jXssIQWNijgXTLre+07AHplyc0FirXzbIM2JSdpeyac0G4JxslbywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNh3XvMzD8/EawDArupMzIHbKLbaMB8GA1UdIwQY
MBaAFN4WmVL5f0lM/g9rVCfKVugQwFzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEt
MGY0YjI4Yjg4NmY3LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEtMGY0YjI4Yjg4NmY3
LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJDCobAvy
kL7lybvRXARmfRCaPP1yRJeFzmIyLI7teYy2qFWUrtYleu4U8rmehSzaGk6kXJWw
5/dicuROQBwgikOdF2KM1tuh0URizMcHx8lYehkO57xxDs7hPZy7Nc4ubonuHNpp
TyhqAH4ElwY1fqrF3O0Rkz4cazqGUG5ziKCz3eISPN8vtT0sLZZxot8krw9dlOlC
NqhFNCDOBElES8QEYjL6F/JaYPcFBGab2C3JUMbOB7TttDTRz4rCinL1ZbcjV0Vz
QCs2W7/MEs4W/9dUJvRTTgU13xitvGuE4c36gmSKU+VnNULCF6/PVvb9SX8aq3wn
auDG1wC0W+B0+A==
-----END CERTIFICATE-----
Generated at Fri Sep 19 21:27:16 2025 by rpki-client