Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
File: 3KLzDk5paSsbT-zrrpH9VgS97JM.mft (raw, json)
Hash identifier: RmgtjP4n+vk58Piu9/y4aa+sweotJAfdSeR+bB1tnoI=
Subject key identifier: 09:7B:F9:4A:D6:EC:57:86:AD:8C:9B:71:E4:EF:D2:09:08:A4:01:E4
Authority key identifier: DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
Certificate issuer: /CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Certificate serial: 019A26674CD0B235C3ACCCE6D1571F9FC256
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
Manifest number: 06B1
Signing time: Mon 27 Oct 2025 16:01:35 +0000
Manifest this update: Mon 27 Oct 2025 16:01:35 +0000
Manifest next update: Tue 28 Oct 2025 16:01:35 +0000
Files and hashes: 1: 3KLzDk5paSsbT-zrrpH9VgS97JM.crl (hash: lN3KlA+Oi8ePF4ojlxZMnRQGmw/3huy10isiamULm+c=)
2: AJoKV4qloK-gv346yQRe9jE_1Lc.roa (hash: cy9XY0oo3u/4Yi8UZQJSoFS5/DHP0ILoCjdTHcKoQDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:67:4c:d0:b2:35:c3:ac:cc:e6:d1:57:1f:9f:c2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Validity
Not Before: Oct 27 16:01:35 2025 GMT
Not After : Oct 28 16:01:35 2025 GMT
Subject: CN=097bf94ad6ec5786ad8c9b71e4efd20908a401e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:81:7a:00:74:60:a3:f3:81:78:1e:ae:7c:ce:
41:06:a7:d4:67:f6:30:3a:75:07:50:31:63:cc:6d:
1c:85:43:07:8e:a6:1b:59:00:07:6d:ed:ba:46:d6:
da:7d:fc:69:a9:d8:fe:54:01:e7:3d:89:c4:05:e7:
3e:46:00:ee:c1:b6:1f:78:68:55:19:37:ad:bc:fa:
bc:1b:e2:f1:4f:88:83:7f:88:6d:ee:63:85:81:4b:
36:ab:b8:6c:ec:dd:12:5d:a9:64:df:b5:a2:eb:5a:
70:a1:42:96:ae:9a:2d:9e:97:c2:64:1a:eb:4d:f5:
65:b3:4a:c3:50:5f:27:4d:da:be:80:39:da:68:0f:
92:04:21:9f:35:bd:14:51:07:20:c3:c3:0f:d5:6d:
1b:43:2f:82:19:b3:f2:3b:6b:59:ad:78:59:e7:40:
54:af:e3:65:e6:94:78:cc:41:b0:e7:2e:cb:01:77:
7d:94:61:f0:8f:e1:2c:b2:85:f0:93:6f:30:cd:77:
79:41:e0:a9:29:0f:28:30:37:a9:df:18:ec:e9:8b:
7e:f3:e9:58:16:57:db:82:f3:d1:c9:92:b7:76:28:
db:53:a4:e1:24:e8:95:6c:8f:e7:5e:33:99:10:03:
6b:af:a6:6d:68:9b:3f:7d:72:ff:1f:88:b3:3e:00:
9e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7B:F9:4A:D6:EC:57:86:AD:8C:9B:71:E4:EF:D2:09:08:A4:01:E4
X509v3 Authority Key Identifier:
keyid:DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:78:06:ee:8d:c3:72:c8:6d:82:e6:ee:de:5a:1b:4f:fd:e7:
31:74:6a:a8:e8:22:56:48:ff:d7:47:d9:2d:9c:fd:43:31:a5:
7d:be:4d:3a:ac:9e:7e:1d:22:fa:68:e0:6e:3c:63:64:7b:62:
61:91:b6:b1:d1:81:cc:10:34:dc:4f:02:2e:84:f7:c9:46:15:
7c:28:be:99:38:d9:bb:5f:cf:2c:cb:93:19:20:16:71:49:be:
89:10:40:4d:b9:7f:27:f5:f1:45:0f:87:d9:05:cf:1e:21:55:
8e:a0:8b:33:03:0b:fc:51:ee:cb:fc:d6:88:8f:fa:3f:0d:6a:
cb:37:9e:43:29:b0:a2:53:53:3b:c9:cf:46:12:7e:a9:6a:73:
0a:69:9b:d7:78:e6:e4:b1:3b:2b:d9:31:dc:86:14:2c:38:2b:
78:86:ba:a0:01:cd:31:f3:b8:63:77:1f:ee:a2:1d:cb:89:27:
ce:9d:ab:2a:5f:2f:c8:ad:2f:0e:b5:db:20:41:88:36:41:ea:
8c:61:c3:d2:28:35:5f:aa:59:fa:53:a2:cf:1c:d4:68:70:d5:
88:68:23:e6:b3:32:17:10:40:cf:8d:ce:f6:63:62:dc:ea:bb:
b8:b1:7a:8e:a4:90:d9:60:71:c8:ec:89:40:8c:ec:fd:58:8c:
c4:a1:6e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 01:19:39 2025 by rpki-client