Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft
File: 3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft (raw, json)
Hash identifier: 89cMVUKJbBidytwnoZINC+p2xjZd0k7WmauvqM/l4vw=
Subject key identifier: CB:17:53:81:55:D9:E1:FA:66:F7:9F:E5:6D:0F:F6:8A:B5:3D:A0:56
Authority key identifier: DF:15:8D:CB:29:0E:C5:AE:7F:66:C1:FA:0F:8D:96:32:11:DE:EA:54
Certificate issuer: /CN=df158dcb290ec5ae7f66c1fa0f8d963211deea54
Certificate serial: 019923A0EF18E2481D759BC8C4BCF41432B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xWNyykOxa5_ZsH6D42WMhHe6lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft
Manifest number: 0185
Signing time: Sun 07 Sep 2025 10:02:53 +0000
Manifest this update: Sun 07 Sep 2025 10:02:53 +0000
Manifest next update: Mon 08 Sep 2025 10:02:53 +0000
Files and hashes: 1: 3xWNyykOxa5_ZsH6D42WMhHe6lQ.crl (hash: ipi+FfmKu3nYnQf6eln2fDj5aDR63sSa+OjIqLz2aiY=)
2: Hsu5uEPri8mQgaZ4Qzz1c8ZzqXs.roa (hash: DFoP5Rp4yqWzaWfGAIFOGX06a0KJXff63tIBuI2st8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xWNyykOxa5_ZsH6D42WMhHe6lQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:ef:18:e2:48:1d:75:9b:c8:c4:bc:f4:14:32:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df158dcb290ec5ae7f66c1fa0f8d963211deea54
Validity
Not Before: Sep 7 10:02:53 2025 GMT
Not After : Sep 8 10:02:53 2025 GMT
Subject: CN=cb17538155d9e1fa66f79fe56d0ff68ab53da056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3b:15:04:e8:b3:e8:85:43:fb:03:fb:c9:db:
b4:2a:f9:4a:47:d8:20:f5:73:7b:13:c1:4f:33:dd:
b3:af:ae:c7:38:a9:29:d9:9f:64:ab:12:f1:75:c5:
d7:a9:80:5f:e4:e5:fb:0a:d4:cf:9d:95:83:f7:bd:
08:da:a7:e7:4a:23:0e:e7:2e:62:5a:21:6a:76:92:
03:56:21:71:80:c8:93:28:26:57:4a:23:2d:c7:16:
24:d8:89:00:9f:3d:b1:f9:98:98:91:ee:93:cd:d5:
f7:9c:ee:cc:9f:44:0c:2b:b5:96:d1:af:69:46:66:
7e:b3:a1:7c:93:ed:37:7e:90:89:a7:ce:7b:fc:74:
07:28:38:f9:ea:da:d0:c0:e4:6b:52:18:ac:63:64:
e9:35:a6:03:e5:a6:74:76:3d:79:45:b6:55:c0:85:
f6:d8:48:4d:a7:ca:b6:02:7d:0c:0b:61:b1:53:54:
b3:24:fc:5b:e6:2f:17:6a:12:98:6d:bf:74:ed:34:
0a:3b:a6:fc:74:47:16:95:5b:02:5b:60:24:b1:f6:
a8:3d:a5:b4:f5:15:44:61:b2:e5:74:24:28:8c:28:
f8:d3:56:f5:44:cb:f5:6b:4b:b9:44:b2:40:7c:df:
63:63:3c:53:1a:90:2d:7d:26:2e:b4:33:06:03:1d:
32:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:17:53:81:55:D9:E1:FA:66:F7:9F:E5:6D:0F:F6:8A:B5:3D:A0:56
X509v3 Authority Key Identifier:
keyid:DF:15:8D:CB:29:0E:C5:AE:7F:66:C1:FA:0F:8D:96:32:11:DE:EA:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xWNyykOxa5_ZsH6D42WMhHe6lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a54b85-af3e-47c6-80e7-c4142df35cc3/1/3xWNyykOxa5_ZsH6D42WMhHe6lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:b3:60:bb:62:a2:85:10:01:6c:40:18:8e:72:25:6f:e7:1a:
79:16:c4:9d:72:27:28:44:df:36:79:48:25:cc:e4:7d:2f:1b:
a4:fd:b0:d6:5a:67:58:e5:55:6b:92:c2:d6:3b:79:62:33:f4:
46:9e:50:b5:0b:fb:ec:78:c2:01:77:a8:ea:11:14:42:1a:1d:
bb:d1:74:a5:11:d9:5f:fb:9d:dd:62:de:5e:9d:dd:59:9a:db:
3f:98:42:03:5a:42:67:e8:37:f8:66:83:f6:81:ed:f6:91:3d:
2f:4b:3c:f6:b1:ce:96:21:e7:66:93:f6:13:57:86:62:1f:0e:
27:98:16:89:dd:36:38:a7:19:c6:cd:e6:1a:c4:5e:59:cd:e0:
66:f0:3c:8a:ca:0d:c4:9e:af:1e:57:6f:b4:a6:33:38:26:1a:
9c:46:81:43:70:2e:4c:33:8b:f2:b8:b6:f0:7f:00:48:08:dc:
3d:a5:0a:53:ef:b5:63:b1:86:e2:3d:b4:0d:79:55:a7:47:5a:
bc:83:6d:66:06:3c:8d:17:a7:da:a2:d0:37:a7:b6:b7:b4:71:
1d:2b:e4:75:2d:8a:ea:bb:c1:41:48:66:7f:47:0a:cd:0f:a3:
ca:00:6d:84:fe:1d:54:f8:35:74:6d:9e:dc:75:2b:f2:6b:dd:
a4:b8:11:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:35:20 2025 by rpki-client