Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
File: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft (raw, json)
Hash identifier: LoiBEtrvcLFS4Mp/FhPN2hynWLpLoSY96/UWtqRrc/0=
Subject key identifier: A6:8D:D6:60:1A:4B:4D:D8:15:C1:7D:3D:87:29:22:E0:F4:A0:DE:33
Authority key identifier: DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
Certificate issuer: /CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Certificate serial: 019A28C2A91821277E1FFAD206548C6C8E41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
Manifest number: 16F4
Signing time: Tue 28 Oct 2025 03:00:37 +0000
Manifest this update: Tue 28 Oct 2025 03:00:37 +0000
Manifest next update: Wed 29 Oct 2025 03:00:37 +0000
Files and hashes: 1: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl (hash: 2ed5iLqcBwTn+gE/JQlfGA59e5z6Fiainys9vt33jJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 03:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:c2:a9:18:21:27:7e:1f:fa:d2:06:54:8c:6c:8e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Validity
Not Before: Oct 28 03:00:37 2025 GMT
Not After : Oct 29 03:00:37 2025 GMT
Subject: CN=a68dd6601a4b4dd815c17d3d872922e0f4a0de33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:9b:75:43:f7:12:86:a4:5e:c9:5e:bb:17:
ef:07:db:35:a0:37:e3:64:e8:54:ee:6e:4e:93:b9:
ce:35:e2:ef:f2:65:78:0d:bc:1e:e8:d3:3b:23:90:
4c:ee:cc:77:fd:ce:37:1c:f5:fe:84:5a:6c:d5:1f:
27:1c:e2:28:3b:44:0f:9b:c6:79:28:da:c3:30:da:
92:2d:cd:b5:80:7c:9c:4f:4e:58:99:fd:09:b2:18:
f9:06:18:eb:e7:3b:3f:fb:a1:b9:fc:bf:d0:d3:b1:
b7:cb:94:97:71:78:85:c8:04:7a:7e:9c:85:bd:32:
a0:ee:b0:ef:d7:25:de:a8:2d:a2:c2:18:2a:a6:74:
85:ad:a8:d8:61:13:8d:1c:d2:a8:d6:18:67:80:4b:
b1:6a:3d:9b:b6:41:ff:8d:96:0c:77:85:69:0c:0f:
5f:0f:3b:ae:ac:1b:d2:27:8d:b8:c9:74:22:ba:d2:
88:e3:c6:d0:95:e9:e7:09:dd:51:e9:da:1d:64:ad:
09:d5:e7:76:72:42:84:30:88:87:c0:4f:89:46:f3:
14:b0:e2:83:e5:3b:b3:c8:7b:ce:ef:e4:3c:85:b7:
87:7f:26:4f:2a:2f:a9:6b:1a:e5:af:15:5a:af:b5:
93:78:d7:df:82:09:63:b0:ac:60:4f:78:c4:b9:f2:
2f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8D:D6:60:1A:4B:4D:D8:15:C1:7D:3D:87:29:22:E0:F4:A0:DE:33
X509v3 Authority Key Identifier:
keyid:DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:d5:f1:be:cd:85:7c:43:8c:b9:af:df:ea:66:7f:cb:de:ab:
3c:e6:a8:18:89:a9:ba:1b:22:29:70:c3:8a:d1:90:ec:d1:1a:
be:dc:bb:9d:a5:5b:47:0f:c6:1f:ff:db:75:59:54:04:08:ce:
42:cf:ce:c8:ad:20:b7:c4:e8:d7:3b:5f:81:6d:51:b8:46:ed:
83:5a:08:e0:0e:0c:d3:9f:1f:58:c9:4a:32:44:40:10:f9:f0:
8a:50:d9:58:41:32:be:75:4d:cd:8b:ce:fa:e8:17:e1:17:e3:
91:95:42:cd:26:44:d4:49:23:8d:bb:3a:f9:7a:b5:85:a6:11:
cb:5d:63:87:57:05:e0:33:f3:0f:18:f5:24:32:63:5f:fb:7c:
fd:4d:03:46:a5:c7:aa:a3:ea:21:76:29:2d:c5:08:7e:45:17:
59:d6:e4:83:69:91:86:d2:f1:6e:88:5e:cf:6a:2e:45:4e:dc:
05:51:21:43:e0:ef:7c:37:9b:ef:d2:8e:0f:6d:59:a1:43:8c:
c3:0c:97:71:61:ed:5b:1d:0b:59:66:90:52:9e:2c:6c:48:74:
7e:4f:59:ef:f9:a4:52:af:38:14:96:d0:ad:02:d2:c8:0f:2f:
99:04:20:01:55:9b:cd:6c:4d:72:05:83:04:72:02:7d:a0:d6:
ae:00:0b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 11:10:17 2025 by rpki-client