Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File: 3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier: 0r9yHLeE4LVURJji0VxBUAzzd6OU3+n7v+SxX7tXFP4=
Subject key identifier: 90:41:4A:76:DB:FF:13:CE:C1:72:A1:15:B9:D5:79:42:95:E3:39:39
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer: /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial: 0199221E27E253D872061515D9A490A76993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number: 0D02
Signing time: Sun 07 Sep 2025 03:00:25 +0000
Manifest this update: Sun 07 Sep 2025 03:00:25 +0000
Manifest next update: Mon 08 Sep 2025 03:00:25 +0000
Files and hashes: 1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: Wt1gYX9JMNhgEv95cOM4iNH3e0XIVqWktbg6yQx3hJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:27:e2:53:d8:72:06:15:15:d9:a4:90:a7:69:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Validity
Not Before: Sep 7 03:00:25 2025 GMT
Not After : Sep 8 03:00:25 2025 GMT
Subject: CN=90414a76dbff13cec172a115b9d5794295e33939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bc:68:d1:1a:b6:a0:e7:8f:1a:e2:dd:81:a1:
35:62:06:93:78:08:2a:d2:19:dc:40:bc:91:9e:bd:
1a:bc:13:05:35:a9:41:c3:d0:d0:0a:3c:ce:8e:29:
dc:1e:0e:26:d2:e3:89:a7:7a:70:5a:4a:77:fe:17:
97:f2:10:d5:5d:82:db:10:60:8c:66:56:44:df:aa:
93:f1:48:27:97:0f:de:39:5d:d1:c0:26:3a:24:6b:
5f:68:ed:2c:3c:c2:8c:47:0d:53:6c:c0:9a:5f:af:
e5:79:d9:db:f3:09:20:cd:85:e1:fe:a7:1c:48:be:
ce:8a:98:d3:5e:49:5e:ed:4e:25:1e:a6:6c:81:8f:
58:3e:fe:c5:34:16:58:6e:ab:1b:d5:13:f9:58:07:
be:dd:12:ef:da:7b:77:6b:c3:63:d3:78:64:d2:cc:
a1:9c:b0:c8:c1:47:00:46:f1:ac:00:d2:f7:f8:2d:
95:11:ce:ab:b6:a1:d2:dd:e3:28:0b:25:b0:36:93:
fe:c2:e2:12:e3:c2:42:74:80:2f:1f:c9:20:9b:29:
7c:29:6c:f9:c9:6f:2c:8f:7f:50:5c:59:68:a2:e9:
e1:3e:a4:76:08:fa:1a:2b:10:ae:ab:79:cf:73:6a:
5e:83:fc:b9:4c:96:06:33:11:37:ea:0a:e1:10:bc:
3f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:41:4A:76:DB:FF:13:CE:C1:72:A1:15:B9:D5:79:42:95:E3:39:39
X509v3 Authority Key Identifier:
keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:e3:17:39:e6:c8:6a:55:d7:b9:51:81:5b:59:e4:ba:8a:8e:
26:8f:74:fc:73:51:aa:69:00:9b:d8:a2:03:95:a6:8d:fb:4d:
8f:00:ef:ee:85:d2:d2:c9:a0:4d:83:0f:6e:6f:cf:63:e4:e7:
3d:a2:dd:1b:59:04:fa:22:c6:b9:07:cf:72:42:38:b7:40:e8:
9f:9c:cf:ee:a7:63:b8:60:11:3c:c8:bd:e9:e4:67:1c:0c:b4:
ef:27:84:4c:a5:33:19:89:38:19:5b:42:e3:30:68:27:3e:f6:
be:22:78:3a:32:85:9f:2b:76:28:c9:f1:6c:9f:a7:d6:aa:41:
46:c5:93:d3:b8:99:bd:30:f7:0a:d7:95:95:cd:1a:af:6a:1e:
8c:b0:0d:85:a9:cc:7d:ab:37:60:cf:61:af:46:79:b4:a8:a3:
b2:f8:fb:c0:31:12:af:9c:12:2b:aa:5d:61:01:79:a5:07:29:
fe:8c:0a:f8:0d:fc:ae:49:02:ee:87:e5:f9:d9:74:96:6d:41:
05:48:6b:c4:85:6b:81:cc:ce:65:72:eb:d4:bd:60:8d:b3:40:
5c:28:61:c5:d0:6e:f9:05:4e:0d:d0:7d:10:92:2b:3f:6b:ff:
93:d0:0d:0c:12:10:1c:72:85:4a:ae:20:e0:ef:0c:df:be:82:
6a:1c:94:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:45:04 2025 by rpki-client