Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
File: 3ozUdpwybYRex1OmcNo6yptp7hU.mft (raw, json)
Hash identifier: i8SNBH31D26akacJ73qkg4kRVLGS7xX1yV/ZQtxiGR0=
Subject key identifier: 15:9A:75:05:3C:17:CD:EF:52:CC:57:23:17:DC:D1:6C:4E:9F:0A:65
Authority key identifier: DE:8C:D4:76:9C:32:6D:84:5E:C7:53:A6:70:DA:3A:CA:9B:69:EE:15
Certificate issuer: /CN=de8cd4769c326d845ec753a670da3aca9b69ee15
Certificate serial: 019921E779A009DCF5B6950E51D12A7F7808
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
Manifest number: CD
Signing time: Sun 07 Sep 2025 02:00:42 +0000
Manifest this update: Sun 07 Sep 2025 02:00:42 +0000
Manifest next update: Mon 08 Sep 2025 02:00:42 +0000
Files and hashes: 1: 3ozUdpwybYRex1OmcNo6yptp7hU.crl (hash: S1dZH2iYNsAZnj3x5F5Tu+woKasZ/sZKhlIvvRdMr+I=)
2: aizIqKjXfqxu2L9Do5SClHmuuHM.roa (hash: VG8x//8NLvTPdp7pULF9tX4PLkvXpJw9Gy/1Yk1G5KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:79:a0:09:dc:f5:b6:95:0e:51:d1:2a:7f:78:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8cd4769c326d845ec753a670da3aca9b69ee15
Validity
Not Before: Sep 7 02:00:42 2025 GMT
Not After : Sep 8 02:00:42 2025 GMT
Subject: CN=159a75053c17cdef52cc572317dcd16c4e9f0a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ec:d3:a0:e0:42:c2:51:f9:6e:e0:f9:ad:2f:
fd:c0:b7:7e:a9:3e:ba:38:8f:a8:08:2c:42:a5:36:
31:b3:30:ce:a6:98:f6:70:e2:98:20:1e:e8:28:bd:
63:10:3b:12:53:71:13:12:05:69:34:77:c8:e2:d3:
ac:20:48:4e:ae:9c:5e:7e:7a:eb:59:5d:90:c0:c4:
a4:46:f7:df:a0:ca:33:ce:d8:d1:97:bb:e3:bd:d6:
0c:ec:bd:91:7c:7b:0f:69:9d:fd:e0:49:0b:22:06:
a6:81:d3:8e:7b:af:3c:c5:48:65:77:85:86:c5:2a:
97:48:f8:bf:cb:57:90:e5:1d:27:6f:20:ae:c3:10:
e4:d4:64:12:d5:75:c1:2d:63:9d:35:17:2f:f3:b4:
2b:03:89:e1:65:5c:c0:64:7b:df:05:3f:65:67:13:
36:20:58:4b:43:55:33:6a:d3:d0:69:7c:f3:2b:fd:
02:11:2b:f3:90:cb:92:8c:c3:d1:7c:76:4f:be:4b:
18:13:44:f7:e0:b6:1f:e1:1a:90:16:49:79:33:91:
87:14:32:83:73:2e:dd:79:f2:0e:fa:63:1a:7b:35:
92:f4:fd:dc:34:ff:29:77:ec:f1:36:32:90:ca:ee:
f3:4d:0e:48:30:08:a4:a4:75:c5:3a:91:e7:a4:21:
58:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9A:75:05:3C:17:CD:EF:52:CC:57:23:17:DC:D1:6C:4E:9F:0A:65
X509v3 Authority Key Identifier:
keyid:DE:8C:D4:76:9C:32:6D:84:5E:C7:53:A6:70:DA:3A:CA:9B:69:EE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ozUdpwybYRex1OmcNo6yptp7hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9d09af-017a-4ac1-9872-6166ff6e665c/1/3ozUdpwybYRex1OmcNo6yptp7hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:95:9b:ef:6e:dd:61:4b:36:2f:0f:ab:f6:ad:9f:9b:04:c6:
44:5c:10:64:0b:24:a8:a8:40:71:ab:17:0d:1d:e1:39:e9:d4:
57:11:9c:49:4b:76:0a:73:d5:09:20:bc:e0:ee:a9:f1:2e:36:
10:d0:2c:81:ad:2c:4c:40:ce:f7:fe:00:fd:ef:57:9c:1a:8c:
1b:2b:3c:91:aa:34:74:cf:08:7b:69:7c:0e:f1:34:94:e4:1d:
be:85:5d:4f:29:85:c4:ce:21:47:68:f0:9f:2b:1c:a8:bf:17:
64:d5:22:7a:df:92:ff:95:58:3b:93:05:ec:29:bf:7b:a6:c1:
3f:7c:59:81:ae:07:f6:18:b7:5d:60:ae:e8:28:a3:e5:32:78:
05:d0:8f:19:8d:d3:80:3b:1d:c0:2b:51:51:a6:b0:2a:62:3c:
1d:30:50:92:dc:d8:90:48:77:bc:01:21:3e:84:75:86:3f:17:
09:1d:12:66:fd:0e:91:ce:79:a0:17:a0:17:0f:99:dc:c5:30:
72:b2:48:bd:18:5d:c5:4e:31:ec:18:c3:c4:63:5f:3f:3f:a3:
5c:b0:a0:ab:08:11:50:22:af:b0:f0:4c:31:a0:3c:d2:c1:28:
62:20:2b:65:1e:d9:27:d4:0c:e4:3a:24:20:e6:d3:14:fc:c5:
7a:90:3e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:05 2025 by rpki-client