Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
File: 3OVg8OyFDainwPjW84JRAtTeSs4.mft (raw, json)
Hash identifier: XbLjy/1Q5OG301QuPTLaeg7l9JBMVA2mQYXJ9SM0IvM=
Subject key identifier: F4:8A:38:A7:9F:B6:47:0E:DB:53:A0:5F:7B:76:1D:B4:9C:1D:F2:41
Authority key identifier: DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
Certificate issuer: /CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Certificate serial: 019921B18149207A296302EAF6516C6A600E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 01:01:44 +0000
Manifest this update: Sun 07 Sep 2025 01:01:44 +0000
Manifest next update: Mon 08 Sep 2025 01:01:44 +0000
Files and hashes: 1: 3OVg8OyFDainwPjW84JRAtTeSs4.crl (hash: HpPstrxW7fM04Cb/kAOSdHvVzbnncVjWV4Ygn6rgAJw=)
2: cvAMZ-azozJjAwqBJfc2rmmZkME.roa (hash: Gewk40CVQw5q21r2SfPnFc/pGMGpE0T4SZt3vyzVUaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:81:49:20:7a:29:63:02:ea:f6:51:6c:6a:60:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Validity
Not Before: Sep 7 01:01:44 2025 GMT
Not After : Sep 8 01:01:44 2025 GMT
Subject: CN=f48a38a79fb6470edb53a05f7b761db49c1df241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ee:ac:ac:8c:29:4e:8a:10:74:16:fe:3e:d7:
9b:2a:87:af:cb:cd:83:a4:62:ab:38:88:b0:03:3d:
94:2f:18:09:20:75:71:9e:7b:6f:ef:a7:b3:14:7b:
6b:10:f9:a2:d5:0d:91:03:84:3e:59:42:e0:b9:92:
12:4f:a7:f6:bb:a6:27:fa:b5:1d:80:87:4a:34:c8:
8c:14:86:1f:16:92:9e:40:e0:56:be:c9:db:d3:24:
d0:33:eb:66:bf:47:a3:1b:11:50:ca:d7:79:c9:75:
c5:ee:98:c6:3f:5f:f4:05:6e:68:84:10:73:9a:56:
17:a7:a4:b3:f0:66:45:2e:32:a6:54:66:8a:67:31:
cf:4c:ea:9c:22:fa:00:c5:a3:8d:a0:f7:af:01:a0:
a1:37:66:c6:f4:7b:cf:96:b2:d9:14:ac:89:76:9c:
19:d3:57:83:cd:e4:e9:75:3b:c0:bb:aa:ea:b0:6f:
ad:da:0e:16:6f:0c:f6:49:7e:fe:38:ee:f2:56:cd:
18:aa:ce:25:1a:0d:ec:dc:0d:f8:66:80:c9:1c:2d:
a0:20:04:b9:0c:ea:4b:99:72:53:4c:09:d8:77:e6:
76:9e:97:be:95:bf:a7:7c:93:29:eb:d6:aa:c6:8c:
b9:01:71:7e:95:82:95:b9:e3:64:d1:01:13:c2:4e:
fb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:8A:38:A7:9F:B6:47:0E:DB:53:A0:5F:7B:76:1D:B4:9C:1D:F2:41
X509v3 Authority Key Identifier:
keyid:DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:47:b2:37:95:6d:10:7b:6a:07:28:85:4f:f5:f4:f6:85:71:
c9:01:85:8d:83:34:2e:95:ab:e7:f2:38:4a:a4:64:43:08:4a:
ef:b1:58:9e:a4:25:b4:f4:1e:2d:50:b8:43:18:77:2e:de:67:
37:de:86:cf:77:4d:c8:96:80:69:0c:f6:01:de:a5:e8:9e:86:
f2:30:0c:48:38:b7:a7:11:1b:e1:51:55:ad:9b:5e:01:bd:61:
aa:f9:9c:b9:b0:ab:cd:8a:e1:08:65:3e:bd:dd:4b:08:e7:a1:
31:17:f1:1d:67:4b:06:c8:c9:eb:f5:e4:99:90:be:9d:56:80:
00:f9:1f:a7:3e:69:e0:49:e8:32:29:7b:0a:1e:43:99:52:6a:
87:dd:83:a0:94:e3:50:c7:d7:6e:1a:3a:fe:96:47:e8:1a:36:
7e:1c:ad:69:84:e0:72:b5:aa:cb:09:2f:73:b7:25:36:54:38:
92:ea:94:50:9e:b8:11:96:84:cc:27:ef:9f:f0:4d:4f:93:9b:
95:c4:f7:7e:d3:ab:5d:4e:fe:0e:75:c1:47:35:b3:2e:35:07:
ef:31:1f:88:f4:33:62:99:02:93:2c:da:4c:be:c5:bc:75:cb:
a2:18:7e:a3:23:83:8a:06:04:3e:68:96:29:b6:3d:83:b2:f2:
c1:07:2c:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:45:10 2025 by rpki-client