Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
File: 3k_14NZGWzwsc6LG4Q5WovpzFic.mft (raw, json)
Hash identifier: 9pwX/m6JOyapENvpo4XQdUB2toz83qcr1mfMmBbXhes=
Subject key identifier: DD:F1:87:3C:22:1A:9F:F5:1E:6E:92:4F:C3:2F:C6:37:DD:66:80:77
Authority key identifier: DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
Certificate issuer: /CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Certificate serial: 019922FA93B27141F54E7B13BE9F41EEA82B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
Manifest number: 0E0A
Signing time: Sun 07 Sep 2025 07:01:10 +0000
Manifest this update: Sun 07 Sep 2025 07:01:10 +0000
Manifest next update: Mon 08 Sep 2025 07:01:10 +0000
Files and hashes: 1: 3k_14NZGWzwsc6LG4Q5WovpzFic.crl (hash: O1piG5YqjrrUPMYxyuEUvmsfrMwQRitjVLF24SQHysM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:93:b2:71:41:f5:4e:7b:13:be:9f:41:ee:a8:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4ff5e0d6465b3c2c73a2c6e10e56a2fa731627
Validity
Not Before: Sep 7 07:01:10 2025 GMT
Not After : Sep 8 07:01:10 2025 GMT
Subject: CN=ddf1873c221a9ff51e6e924fc32fc637dd668077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:43:7f:30:e1:29:59:69:d5:64:d7:2e:8e:93:
d5:5b:1e:0d:a5:1e:fa:05:e2:b8:5d:60:91:da:f6:
62:51:28:f3:61:85:92:91:bd:84:4e:f1:da:ef:ce:
0b:56:67:8d:5c:8f:4e:80:b5:06:91:9f:04:75:32:
5a:de:7c:38:4f:0e:59:8e:d8:1d:55:28:eb:ba:68:
2e:e2:c4:f9:e1:13:07:a3:88:c2:80:12:7f:dd:45:
ef:82:fd:25:1a:9e:b2:76:b0:c0:38:cd:28:2f:86:
5e:09:94:45:69:f3:d5:17:ba:9e:57:af:28:fd:b9:
af:28:45:44:8c:bb:f1:75:71:58:18:67:92:a7:c8:
2a:24:23:86:4e:0f:04:70:1c:52:58:05:0f:5d:fb:
4d:d8:6e:e7:8e:8e:67:2f:35:ef:df:60:39:d9:23:
9c:bf:7f:93:18:0b:2c:9d:52:04:b0:ba:ba:81:44:
ea:38:13:37:5a:67:eb:4b:fc:c0:67:3d:b7:3a:6e:
da:4d:33:11:06:5d:ef:79:39:86:d4:87:45:ad:0d:
c0:fc:8a:f9:1b:16:80:9f:75:88:34:8c:f7:9a:b3:
d5:fb:6c:05:e9:88:35:3d:7a:72:04:e2:0b:00:f6:
b5:06:0e:d9:88:73:02:74:19:52:1b:37:87:b7:b3:
67:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F1:87:3C:22:1A:9F:F5:1E:6E:92:4F:C3:2F:C6:37:DD:66:80:77
X509v3 Authority Key Identifier:
keyid:DE:4F:F5:E0:D6:46:5B:3C:2C:73:A2:C6:E1:0E:56:A2:FA:73:16:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3k_14NZGWzwsc6LG4Q5WovpzFic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/d6a648-2286-429f-98fa-884e81a1786a/1/3k_14NZGWzwsc6LG4Q5WovpzFic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:8e:bd:88:f2:8a:09:b0:d3:a7:f9:79:1f:3f:22:35:99:c0:
ff:f5:3c:e0:f4:7d:80:11:2a:d0:48:04:89:5a:f8:17:95:e9:
c1:ed:af:07:39:68:4b:f2:cb:cd:cd:38:b5:ad:55:28:99:4a:
c7:ce:ac:5a:e6:49:aa:c8:e7:50:d4:2d:ac:02:a3:ef:37:d2:
dd:3d:04:7d:1c:2c:c5:f2:ea:dd:8c:df:76:f7:4a:9a:68:ab:
34:bb:c6:db:cd:8a:d0:fc:ba:12:04:dd:a1:42:ef:ea:0c:b3:
d2:91:ec:33:cf:87:17:c2:b2:79:cb:32:f2:4a:d1:87:22:0a:
17:d0:cc:b5:61:0a:48:f3:e4:7f:90:68:41:cb:14:67:7a:a7:
3b:ff:11:47:f1:e6:0e:e0:c9:85:61:e8:18:c4:ac:80:3d:3f:
b1:a4:10:aa:99:7a:59:1a:85:ea:f4:f0:86:46:89:cd:2f:62:
67:df:a5:07:45:35:62:50:74:26:ad:d5:f3:2c:87:3d:a8:10:
b3:8d:0b:b7:b1:b1:2e:35:7b:0a:cc:74:e5:57:8f:e9:44:97:
03:4a:42:e3:39:8d:34:1f:dd:ef:e6:75:a1:c8:f7:ef:10:00:
15:93:94:ce:07:fa:40:6c:95:8d:d9:86:cd:8e:a2:48:3c:38:
dc:9c:8c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:55 2025 by rpki-client