Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File: 3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier: 9qIeqjkbROdIXlxhrPmAetVeVY2xy03gt9tqgbShlas=
Subject key identifier: 6B:2A:E6:26:6B:A6:A4:5D:64:58:24:64:53:24:FC:EC:DB:1C:CD:C9
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer: /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial: 019A28C2C5AC03D64EC3057767F8304D5052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number: 0D8A
Signing time: Tue 28 Oct 2025 03:00:44 +0000
Manifest this update: Tue 28 Oct 2025 03:00:44 +0000
Manifest next update: Wed 29 Oct 2025 03:00:44 +0000
Files and hashes: 1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: Ll+zfuhBkIZzasvot6Dbuqje5ctqRNcLv/5uKIybeO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:c2:c5:ac:03:d6:4e:c3:05:77:67:f8:30:4d:50:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Validity
Not Before: Oct 28 03:00:44 2025 GMT
Not After : Oct 29 03:00:44 2025 GMT
Subject: CN=6b2ae6266ba6a45d645824645324fcecdb1ccdc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9a:15:ce:72:f3:18:c5:7a:0d:06:52:39:1a:
3d:56:9b:30:59:06:1a:44:16:dc:89:75:27:a2:b0:
92:e0:70:9d:49:f2:71:64:25:12:12:37:2f:e3:7f:
0c:18:69:23:f5:4a:e5:43:97:45:79:4a:4a:e8:d9:
95:99:f1:e9:4a:9f:a8:02:8a:cc:d5:f5:4d:9f:2b:
0a:34:6e:7e:17:c5:da:b7:a2:0d:68:83:fb:57:ff:
13:ad:26:65:bf:87:a9:df:41:a1:74:06:85:ac:11:
12:a7:45:30:49:9a:03:e6:79:ac:10:e4:98:11:31:
15:2f:6e:bd:bc:6d:7c:15:f6:16:09:a8:51:5e:86:
dc:2c:74:ac:bc:2c:c7:35:6c:eb:c4:df:b5:78:7a:
80:41:28:99:c4:03:9b:94:c7:6a:f5:2b:83:38:e3:
c7:a8:4f:b1:cc:5a:c5:d8:1f:c5:ba:33:89:e1:56:
df:ca:c2:52:7b:96:46:0e:41:03:62:f8:84:9d:a5:
72:d0:c0:64:76:b4:30:be:0f:37:09:87:73:2a:de:
c1:be:2c:60:76:c6:e6:0e:99:f3:a7:54:3e:85:b3:
78:c3:30:ce:9c:26:94:f4:8f:ed:ce:5e:79:eb:0a:
f9:6f:30:22:32:4c:ad:64:cd:99:b5:95:51:bb:d8:
d1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2A:E6:26:6B:A6:A4:5D:64:58:24:64:53:24:FC:EC:DB:1C:CD:C9
X509v3 Authority Key Identifier:
keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:2c:60:55:c8:33:2b:55:4c:6c:f6:b9:e7:02:89:ad:2f:f2:
13:df:98:c2:ac:0e:1a:cc:f3:44:dc:c2:01:1b:6e:cc:0d:e2:
e1:fd:90:c7:13:75:9c:e6:7e:db:43:38:50:10:e8:79:88:39:
70:25:34:97:95:96:c4:1c:90:d2:a3:13:96:20:4f:c2:3b:0d:
2e:73:c8:53:71:ce:51:bf:67:a2:4d:71:9b:c4:fc:ef:fd:03:
a6:54:97:01:4f:7b:50:ca:d1:6f:3d:75:32:b0:21:99:ff:c2:
c2:9f:08:63:33:49:8d:a4:bb:ab:dc:05:a6:a4:87:dd:52:95:
9d:54:d9:ee:a7:88:56:cd:e4:10:d6:b7:6f:70:14:35:66:a4:
dc:ba:06:f7:a6:3f:39:79:1b:7f:41:51:ae:d0:fa:1d:b9:b1:
d2:ac:fe:e5:f5:b3:73:70:f9:90:ba:09:b1:01:88:4c:39:5d:
6f:80:86:d7:be:c0:05:11:0e:40:02:c0:91:57:d3:49:65:b7:
bc:f7:a7:d1:33:13:c8:ed:ef:58:de:c4:01:de:32:f7:81:87:
de:51:4f:0a:21:28:05:7e:53:bc:37:1a:26:e6:1a:78:77:e1:
35:4d:0c:c7:01:06:f6:d8:6c:6e:c3:4f:23:1d:1f:60:6d:72:
20:6b:b9:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 10:51:52 2025 by rpki-client