Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
File: db3TijiDJA5GxLGsi7-DF96P-IU.mft (raw, json)
Hash identifier: hwAWHupAkcegx22prsdrejb5cpBPoOgDeMdriV1AhGs=
Subject key identifier: A0:67:38:4C:BB:F7:8F:61:96:7E:52:71:55:EB:53:27:76:17:16:0A
Authority key identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
Certificate issuer: /CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
Certificate serial: 019A7112C2200B8E89BC1EDBDBD91D96BD74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
Manifest number: 142B
Signing time: Tue 11 Nov 2025 04:00:46 +0000
Manifest this update: Tue 11 Nov 2025 04:00:46 +0000
Manifest next update: Wed 12 Nov 2025 04:00:46 +0000
Files and hashes: 1: db3TijiDJA5GxLGsi7-DF96P-IU.crl (hash: qabSXepGAnLdk/tW4BBTswby+QbBpjzpqOV9BZ+8hjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:c2:20:0b:8e:89:bc:1e:db:db:d9:1d:96:bd:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
Validity
Not Before: Nov 11 04:00:46 2025 GMT
Not After : Nov 12 04:00:46 2025 GMT
Subject: CN=a067384cbbf78f61967e527155eb53277617160a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:42:f6:a0:ab:2c:fc:5b:40:43:26:5c:4f:63:
07:43:2a:9f:9e:fd:5f:95:ee:7a:20:ca:c3:8e:55:
56:02:88:e2:43:f8:27:e0:18:c9:20:ea:f2:63:e3:
0d:9d:63:bd:a7:ac:ad:ed:09:12:6b:50:b9:f5:54:
d4:24:42:ae:29:2e:ec:29:0b:1d:16:9b:db:f5:0d:
9d:b8:1f:9b:b5:68:63:41:d7:8d:de:56:4d:96:e9:
10:1e:48:a7:03:5e:a3:5b:97:68:27:c2:a8:f7:2d:
bd:82:dc:48:52:15:ff:cf:5d:b4:da:eb:2a:91:86:
78:9f:75:1b:4e:ec:6c:6a:8b:f8:8c:b8:3f:c5:ce:
80:b3:79:a0:34:54:11:16:1f:ca:42:3b:1b:21:55:
e7:e3:91:dd:61:ea:df:82:8d:ee:c8:be:6e:08:6f:
32:26:56:8c:6a:fb:89:5f:9d:61:0c:05:01:97:c9:
61:8c:e5:17:19:b9:e9:6a:38:c4:3e:cc:d4:2f:fd:
19:e7:49:b5:72:43:97:ee:d3:0e:a3:6d:00:a8:14:
e8:c4:49:79:89:6d:ee:d2:5d:56:31:05:4d:ac:fc:
5e:43:a6:89:42:a3:0b:30:f6:13:1f:e8:ef:98:3c:
88:5f:0a:52:d8:44:15:eb:f1:02:81:1a:fe:c4:b3:
89:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:67:38:4C:BB:F7:8F:61:96:7E:52:71:55:EB:53:27:76:17:16:0A
X509v3 Authority Key Identifier:
keyid:75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:61:eb:7f:9d:92:98:5d:c7:82:58:50:fe:1c:8f:fa:0f:25:
2c:f2:94:10:64:e5:17:91:64:73:10:f0:c2:f8:05:b9:27:56:
fc:ea:ea:f0:49:4f:54:f1:90:78:f5:5b:e1:f5:3a:ab:4d:b7:
ce:f7:7a:9d:c2:01:c1:0b:ba:83:e0:85:fa:74:6b:c2:5c:f2:
eb:d7:4b:8d:e7:bd:e2:a7:da:7f:41:5e:4f:91:a0:3a:68:b9:
17:22:7d:2d:9b:26:c7:94:d9:54:33:1b:a4:35:09:eb:3f:19:
38:d3:84:81:c4:ce:c7:5f:ec:96:62:29:e6:08:f0:82:d5:8d:
f0:b1:ec:45:21:f0:b8:96:03:39:19:5a:c6:c7:6b:4e:d0:d3:
e0:e8:ac:1b:66:1f:64:7d:16:a0:17:61:69:8b:89:43:18:0e:
b1:7d:b9:32:26:21:79:58:c6:81:a3:5a:dd:5e:71:b4:c0:0d:
84:3b:ca:7a:14:f2:0f:fc:30:f8:39:3f:d4:99:71:07:a9:5d:
46:23:21:a3:4b:a3:89:3d:78:0f:9d:a5:bf:eb:6c:a8:7f:2b:
1f:a1:af:e5:81:8b:9b:f0:88:ad:7b:b5:ca:fe:55:19:e8:62:
fc:30:a5:60:80:a9:9f:e1:30:c3:25:af:72:2f:41:c9:d8:ab:
ca:55:ed:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:57 2025 by rpki-client