Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: ZL+0H2AgvTrBwdeczPkycf/U6zdsL0X77jzoNkUqqR8=
Subject key identifier: B2:03:35:E0:EA:1A:43:8F:EE:3F:FF:EE:F2:C9:03:F8:1B:A0:3A:61
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 019922C3BD7303B4B6F5151B818535B52285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0ADD
Signing time: Sun 07 Sep 2025 06:01:17 +0000
Manifest this update: Sun 07 Sep 2025 06:01:17 +0000
Manifest next update: Mon 08 Sep 2025 06:01:17 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: zBn6oBgWaAXGSKM8N9J9ocqMM8xqcAebhZuCnzWcpzc=)
2: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (hash: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:bd:73:03:b4:b6:f5:15:1b:81:85:35:b5:22:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Sep 7 06:01:17 2025 GMT
Not After : Sep 8 06:01:17 2025 GMT
Subject: CN=b20335e0ea1a438fee3fffeef2c903f81ba03a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f8:45:90:09:97:03:cb:18:ce:31:9e:20:37:
ae:9e:8d:b9:3b:c4:78:d7:21:c0:51:03:f5:19:5d:
22:d9:e7:7a:02:c0:a3:98:80:29:3e:61:bf:c0:0f:
48:94:4e:1a:2e:7c:7e:04:75:9b:92:76:c5:02:31:
03:e1:1f:1c:48:f5:fd:3c:6e:9e:e0:08:e3:8f:fa:
79:3b:6e:c8:41:aa:ca:f6:47:d6:ab:2c:ae:ec:fc:
97:a5:bf:22:58:71:9f:90:86:cd:3d:e0:c2:49:3a:
df:62:9d:a5:72:5c:6f:c3:92:a2:8d:29:f6:91:85:
7e:6f:a0:6f:07:1a:90:74:16:b2:1a:44:ac:e4:2c:
06:9a:ba:9b:3e:b0:6b:63:5d:94:f3:f6:fa:4e:59:
62:c4:8f:d5:bb:1a:d4:d4:d1:26:de:bb:f5:b3:83:
70:ec:25:35:a6:ec:8c:db:03:a9:98:bc:ac:3c:94:
48:d3:6d:70:4c:93:be:96:3b:90:cf:f2:28:b9:f4:
36:1f:c1:2d:40:c0:a0:92:8a:ff:06:dc:cf:8f:ba:
96:08:63:75:5f:48:42:45:93:87:d8:6f:76:44:56:
9a:1d:80:04:e0:a3:fe:1e:df:6c:59:86:ab:f9:0a:
bb:f4:dc:98:77:e6:5d:d0:53:e3:bd:23:3d:7f:13:
20:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:03:35:E0:EA:1A:43:8F:EE:3F:FF:EE:F2:C9:03:F8:1B:A0:3A:61
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:8a:9f:65:f4:96:7a:65:cd:3d:ea:46:1e:dc:09:94:91:71:
85:da:4c:ba:35:89:5c:b0:a0:4f:bb:cf:23:c5:80:19:7f:de:
18:01:1f:df:78:a9:38:fb:73:ae:6d:2f:57:7f:0b:f0:9e:05:
c5:4b:dd:52:da:6d:16:75:80:a9:bc:52:0a:58:14:4a:14:6c:
4e:97:38:ff:80:46:a0:a1:a4:3b:c4:81:e3:d1:be:3b:52:e9:
28:ae:d1:47:2d:44:a0:2a:f8:b6:06:45:05:f6:39:a9:4f:a3:
30:cc:d7:82:dc:84:e5:d3:9f:11:8f:c1:ee:71:f3:de:3f:1f:
83:27:20:49:98:d9:95:bf:6a:8c:ec:bc:47:a1:5a:67:83:6c:
da:9f:c0:92:96:64:bb:36:2d:90:ae:f5:69:f2:fd:5b:e7:dc:
8b:ef:4c:a5:91:4b:63:62:db:9a:eb:35:5e:de:23:40:41:d1:
d7:ea:2f:7e:69:b1:8e:a5:20:95:5b:9c:95:21:22:96:f8:72:
ae:0e:a6:d7:48:61:9d:cf:60:b4:49:45:bc:45:fc:19:6f:37:
49:08:2b:8f:ad:ba:cf:87:c2:98:ef:a8:b1:57:e4:d2:6e:06:
3a:e4:f9:7d:09:24:38:f1:41:06:b0:9a:fb:b1:a2:e2:bc:16:
24:30:fb:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:29 2025 by rpki-client