Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
File: 3KLzDk5paSsbT-zrrpH9VgS97JM.mft (raw, json)
Hash identifier: Iaz0LYzSRcvSWfCK0BFIHyt94rgzxblD0uCyecSa8uE=
Subject key identifier: E3:8A:65:EE:76:F0:35:CB:DB:0C:93:2F:4A:36:CA:58:97:01:48:75
Authority key identifier: DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
Certificate issuer: /CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Certificate serial: 019921B1793D7CF7EE0DB215F71FEF41D376
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
Manifest number: 062A
Signing time: Sun 07 Sep 2025 01:01:42 +0000
Manifest this update: Sun 07 Sep 2025 01:01:42 +0000
Manifest next update: Mon 08 Sep 2025 01:01:42 +0000
Files and hashes: 1: 3KLzDk5paSsbT-zrrpH9VgS97JM.crl (hash: iVUK4SeUztwi0oLMBX+s36ZJ7M3KveQwNlWYHyDUkIA=)
2: AJoKV4qloK-gv346yQRe9jE_1Lc.roa (hash: cy9XY0oo3u/4Yi8UZQJSoFS5/DHP0ILoCjdTHcKoQDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:79:3d:7c:f7:ee:0d:b2:15:f7:1f:ef:41:d3:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Validity
Not Before: Sep 7 01:01:42 2025 GMT
Not After : Sep 8 01:01:42 2025 GMT
Subject: CN=e38a65ee76f035cbdb0c932f4a36ca5897014875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:90:37:44:c0:fc:80:cc:c4:1d:c2:34:cc:23:
40:d9:d1:5e:53:20:23:2f:fc:f5:64:3e:48:32:ba:
80:2a:5b:65:09:19:49:03:a4:59:8a:07:c7:a8:81:
c9:c5:19:88:73:5c:f8:78:5c:c8:cb:ec:64:0d:ff:
06:43:f7:af:fd:fb:cb:e4:b6:68:05:be:ec:3a:a8:
5f:51:ba:f5:7d:49:3e:3f:8a:ac:ba:ee:b7:a4:6b:
19:7e:05:d0:30:e6:53:05:5c:8f:75:c7:b6:ad:13:
13:a3:2d:da:68:93:e1:be:0a:e4:b9:7e:65:80:9b:
c9:7b:35:5f:c0:1d:cd:21:7f:e4:ad:a9:63:9a:64:
75:9a:b7:ab:01:2a:9e:ff:c6:40:a5:55:fd:98:a7:
a4:d3:2f:bf:56:19:fb:8f:c9:3a:a7:77:48:d1:c2:
42:a2:41:1a:35:c1:0e:fb:d9:6e:bd:fc:bc:c2:53:
58:f4:ce:62:86:28:32:f6:ed:25:0f:75:49:c4:b4:
1c:2a:93:34:ed:4a:09:c1:0c:0d:30:57:c5:5c:77:
d9:53:24:48:16:51:90:76:2b:26:ba:5a:f1:fc:7c:
2c:4c:e0:ba:8b:bd:5d:c7:40:d0:0d:de:e4:e5:a2:
ff:64:e3:51:fc:1c:30:0f:78:34:ee:ad:9b:ef:4c:
75:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8A:65:EE:76:F0:35:CB:DB:0C:93:2F:4A:36:CA:58:97:01:48:75
X509v3 Authority Key Identifier:
keyid:DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:65:2d:1f:47:9e:16:00:c9:d9:4f:2c:22:7d:27:e5:a6:23:
a7:1a:fd:60:5e:c9:9a:fe:50:b5:71:c6:30:cd:b5:42:3e:3e:
48:9b:8b:06:e8:12:a0:99:52:ca:fb:74:0a:ce:80:cb:d5:29:
55:a2:96:e6:db:d2:36:0b:fc:db:ee:e4:25:72:e0:c5:ec:54:
34:ff:94:a6:30:46:e5:54:ca:65:7f:d8:34:db:de:68:34:2a:
25:18:09:0d:95:b2:8d:c4:d0:36:2c:ff:5e:3d:04:32:80:ec:
81:e6:8c:b9:03:e9:df:46:7a:f4:43:1f:21:09:f2:63:8d:7f:
7c:e3:39:63:58:15:b0:c7:08:7b:52:46:62:ca:ec:7c:7a:25:
6d:c4:b1:5e:f9:6d:6c:45:2e:2e:85:fd:32:b0:d4:fa:4e:43:
f7:ea:f8:fa:07:5d:c5:b7:ea:fe:57:fd:dd:2c:e6:7d:47:aa:
a0:dd:2f:f5:8f:af:eb:42:bb:47:74:4a:e9:21:cf:c9:21:33:
20:31:67:f5:0e:b9:99:65:55:5d:4d:01:fa:86:49:ee:65:38:
47:d9:1f:91:1a:32:c5:32:47:9f:7f:59:f7:17:5c:d2:fb:9a:
0b:52:ee:80:dd:61:32:69:b7:8e:ba:25:88:92:8a:e9:c1:11:
75:c0:68:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsXk9fPfuDbIV9x/vQdN2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjYTJmMzBlNGU2OTY5MmIxYjRmZWNlYmFlOTFmZDU2MDRi
ZGVjOTMwHhcNMjUwOTA3MDEwMTQyWhcNMjUwOTA4MDEwMTQyWjAzMTEwLwYDVQQD
EyhlMzhhNjVlZTc2ZjAzNWNiZGIwYzkzMmY0YTM2Y2E1ODk3MDE0ODc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJA3RMD8gMzEHcI0zCNA2dFeUyAj
L/z1ZD5IMrqAKltlCRlJA6RZigfHqIHJxRmIc1z4eFzIy+xkDf8GQ/ev/fvL5LZo
Bb7sOqhfUbr1fUk+P4qsuu63pGsZfgXQMOZTBVyPdce2rRMToy3aaJPhvgrkuX5l
gJvJezVfwB3NIX/kraljmmR1mrerASqe/8ZApVX9mKek0y+/Vhn7j8k6p3dI0cJC
okEaNcEO+9luvfy8wlNY9M5ihigy9u0lD3VJxLQcKpM07UoJwQwNMFfFXHfZUyRI
FlGQdismulrx/HwsTOC6i71dx0DQDd7k5aL/ZONR/BwwD3g07q2b70x10wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOOKZe528DXL2wyTL0o2yliXAUh1MB8GA1UdIwQY
MBaAFNyi8w5OaWkrG0/s666R/VYEveyTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0tMekRrNXBhU3NiVC16cnJwSDlWZ1M5N0pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8wMzY1NDktNDVkMC00NTY1LTgyOGYt
ZWIzZTc4NWQ5MDk3LzEvM0tMekRrNXBhU3NiVC16cnJwSDlWZ1M5N0pNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8wMzY1NDktNDVkMC00NTY1LTgyOGYtZWIzZTc4NWQ5MDk3
LzEvM0tMekRrNXBhU3NiVC16cnJwSDlWZ1M5N0pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD2UtH0ee
FgDJ2U8sIn0n5aYjpxr9YF7Jmv5QtXHGMM21Qj4+SJuLBugSoJlSyvt0Cs6Ay9Up
VaKW5tvSNgv82+7kJXLgxexUNP+UpjBG5VTKZX/YNNveaDQqJRgJDZWyjcTQNiz/
Xj0EMoDsgeaMuQPp30Z69EMfIQnyY41/fOM5Y1gVsMcIe1JGYsrsfHolbcSxXvlt
bEUuLoX9MrDU+k5D9+r4+gddxbfq/lf93SzmfUeqoN0v9Y+v60K7R3RK6SHPySEz
IDFn9Q65mWVVXU0B+oZJ7mU4R9kfkRoyxTJHn39Z9xdc0vuaC1LugN1hMmm3jrol
iJKK6cERdcBoAA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 09:55:28 2025 by rpki-client