Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: JzBsHmsNbwAtrtunwLthXMYM0ivM795GWcrEaYtjHjo=
Subject key identifier: 26:6C:0A:0D:B9:50:39:9C:C4:C9:16:F6:1A:C3:04:FB:81:32:5B:E5
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 019922559963E9F7A49E38954AC1D0E4EA05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 04:00:59 +0000
Manifest this update: Sun 07 Sep 2025 04:00:59 +0000
Manifest next update: Mon 08 Sep 2025 04:00:59 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: ng+sytpfVGBtX62E+zSNxmI3/T3rYHLHQIcirYw9coE=)
2: OwG4_h94ip7CzANECDf39dfwNGk.roa (hash: XIXqYD1CZdADAiBPHja+pimegzmDxikS2efUTrBV4t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:99:63:e9:f7:a4:9e:38:95:4a:c1:d0:e4:ea:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: Sep 7 04:00:59 2025 GMT
Not After : Sep 8 04:00:59 2025 GMT
Subject: CN=266c0a0db950399cc4c916f61ac304fb81325be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:f4:04:d1:6a:b4:c6:55:09:25:30:78:d9:
0d:58:65:cf:7d:2b:cf:99:81:5a:75:ac:a4:7f:52:
6a:90:db:38:2c:ef:7b:29:73:16:90:5f:af:72:4f:
14:e2:e8:4d:a1:50:11:91:80:25:1e:a9:e2:b6:d2:
e1:93:95:64:25:39:a4:0f:91:43:59:9e:ea:3d:27:
f9:10:f0:82:8a:dd:09:98:1c:38:11:e5:85:13:43:
c7:f0:12:8a:b7:f7:11:6f:b7:f1:a3:db:d0:bc:a2:
a4:e2:0d:0c:4d:0a:b1:b7:7c:7c:4a:1c:69:3c:97:
4b:a3:3b:3b:0b:ba:b0:30:8c:6f:22:5c:b9:ff:1a:
13:8f:1b:44:71:ea:94:de:dc:c0:15:38:79:0b:95:
86:6c:df:2c:c4:59:c6:b1:98:56:8f:e8:35:78:cc:
c7:52:d2:2a:c5:a8:dc:62:22:cc:5a:e9:d2:04:2d:
a5:08:c3:91:63:93:42:6e:6d:b0:80:84:1a:44:f0:
c6:2f:1b:79:d1:ed:3e:9d:91:20:a1:b8:c9:31:9d:
93:ba:07:da:9b:bd:8d:09:2e:1e:82:ae:75:1e:8c:
1d:42:90:1f:f9:ff:5d:d0:fa:88:af:16:de:e9:c4:
9c:ed:22:12:3f:0e:3d:e3:60:7e:98:2a:06:58:de:
c2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:6C:0A:0D:B9:50:39:9C:C4:C9:16:F6:1A:C3:04:FB:81:32:5B:E5
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:3e:a5:a8:38:35:b4:e7:ae:35:1e:04:b3:ec:f9:8b:8c:da:
08:91:0c:63:be:cf:97:dc:8b:ab:6a:6f:85:dc:cc:93:21:6c:
88:44:b1:57:a5:6e:0e:d6:70:c1:e3:a2:7e:c6:ee:2b:38:67:
b2:9c:9c:01:bc:c5:86:bc:a1:d4:41:a2:10:6e:e8:90:e3:dd:
04:f0:36:79:07:82:eb:46:eb:98:de:4f:28:83:8b:c8:0e:cf:
d3:2e:18:c8:fa:7d:50:00:e1:a7:f7:c4:60:29:63:b7:29:41:
49:d3:74:e7:bc:09:48:07:d9:73:f5:01:27:92:1b:91:ed:2d:
2a:b0:0b:57:d8:7c:91:1e:5b:28:bb:4b:16:1c:2b:5e:2e:01:
85:5d:c7:fd:01:10:21:2f:dd:b2:a6:34:66:63:f6:0e:b9:a5:
1c:19:e2:74:01:75:3c:14:2f:23:aa:4c:de:c5:06:be:37:ef:
fe:5a:4e:7d:e5:7b:dc:95:3d:c3:45:fc:25:fa:b2:c8:c9:c2:
f2:81:d0:ec:25:c4:3d:23:bc:a9:e1:cb:54:39:58:b7:b5:90:
a4:00:56:93:f7:a0:e5:a1:ee:1f:a3:de:3d:b2:a1:f6:c1:73:
db:58:d5:d4:6c:8f:26:04:b8:57:dd:80:f3:7c:55:20:57:4b:
39:ef:1a:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVZlj6feknjiVSsHQ5OoFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNzFhMTI5YzhiMDg5OTU5NDIxOTllYTZkMWIyMjgyNjUz
NTBkMGIwHhcNMjUwOTA3MDQwMDU5WhcNMjUwOTA4MDQwMDU5WjAzMTEwLwYDVQQD
EygyNjZjMGEwZGI5NTAzOTljYzRjOTE2ZjYxYWMzMDRmYjgxMzI1YmU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCn0BNFqtMZVCSUweNkNWGXPfSvP
mYFadaykf1JqkNs4LO97KXMWkF+vck8U4uhNoVARkYAlHqnittLhk5VkJTmkD5FD
WZ7qPSf5EPCCit0JmBw4EeWFE0PH8BKKt/cRb7fxo9vQvKKk4g0MTQqxt3x8Shxp
PJdLozs7C7qwMIxvIly5/xoTjxtEceqU3tzAFTh5C5WGbN8sxFnGsZhWj+g1eMzH
UtIqxajcYiLMWunSBC2lCMORY5NCbm2wgIQaRPDGLxt50e0+nZEgobjJMZ2Tugfa
m72NCS4egq51HowdQpAf+f9d0PqIrxbe6cSc7SISPw4942B+mCoGWN7CPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZsCg25UDmcxMkW9hrDBPuBMlvlMB8GA1UdIwQY
MBaAFN1xoSnIsImVlCGZ6m0bIoJlNQ0LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9iNDk5YjYtMDFmNC00NDJjLWJlNzYt
YzBkOGM4NjY4OTNmLzEvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9iNDk5YjYtMDFmNC00NDJjLWJlNzYtYzBkOGM4NjY4OTNm
LzEvM1hHaEtjaXdpWldVSVpucWJSc2lnbVUxRFFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATT6lqDg1
tOeuNR4Es+z5i4zaCJEMY77Pl9yLq2pvhdzMkyFsiESxV6VuDtZwweOifsbuKzhn
spycAbzFhryh1EGiEG7okOPdBPA2eQeC60brmN5PKIOLyA7P0y4YyPp9UADhp/fE
YCljtylBSdN057wJSAfZc/UBJ5Ibke0tKrALV9h8kR5bKLtLFhwrXi4BhV3H/QEQ
IS/dsqY0ZmP2DrmlHBnidAF1PBQvI6pM3sUGvjfv/lpOfeV73JU9w0X8JfqyyMnC
8oHQ7CXEPSO8qeHLVDlYt7WQpABWk/eg5aHuH6PePbKh9sFz21jV1GyPJgS4V92A
83xVIFdLOe8aTw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:31 2025 by rpki-client