Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: CHoRZ7eAD+YoSnkB/88tqF6mzI2FXrka1Tk5Iz7Dxis=
Subject key identifier: 82:FF:C9:49:E9:26:0D:27:89:3E:BC:18:30:BB:3E:05:48:14:66:CD
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 019A093742C0C51CF24389FC431600B758DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 16F9
Signing time: Wed 22 Oct 2025 00:00:07 +0000
Manifest this update: Wed 22 Oct 2025 00:00:07 +0000
Manifest next update: Thu 23 Oct 2025 00:00:07 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: EeHiSwKwE9UMa3FwNdB55UVCswIlWhRF+li8wcEOa1Q=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: L76bfs9TWWZl8Bl96EFZVlzxzoE.roa (hash: +NZoC7IOVINwP2lksSDULnc4emaNPZnnMnAXhFL6IOo=)
5: Rbk5PVjqlkpGo1SxsQ_tSeJLPbo.roa (hash: BRLtcU6d3bxk4bV/7KHF4XZmiUFqH8jja8emVx8VywY=)
6: biONUDB1iLS86N-lmaqB6_yoBtQ.roa (hash: 5maaRfHknlsWIxQOJIJbyzAegwgxyX3Q4OIbKY62ook=)
7: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
8: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
9: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:09:37:42:c0:c5:1c:f2:43:89:fc:43:16:00:b7:58:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Oct 22 00:00:07 2025 GMT
Not After : Oct 23 00:00:07 2025 GMT
Subject: CN=82ffc949e9260d27893ebc1830bb3e05481466cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:91:31:4a:54:11:80:1c:47:be:c2:d9:7f:b9:
45:11:05:ac:8b:6d:05:0c:ea:8a:7c:30:26:9f:9d:
99:2e:a5:95:69:21:8d:b6:d0:a0:d5:d5:91:35:1a:
06:1f:f3:31:b8:4f:b2:e7:c3:cd:e6:76:39:94:23:
a4:ba:f0:c9:f6:13:8e:a4:b0:bc:10:82:e6:c0:47:
06:85:41:39:27:e5:f5:77:ca:7c:38:d8:9f:85:d5:
6b:2b:5f:f3:e6:a9:49:a6:0c:18:ee:a3:d4:f0:f8:
af:7a:5d:1e:d3:a8:a7:4d:e6:57:aa:5e:6a:7f:b2:
26:4a:bb:30:ac:73:6d:fd:6d:d3:68:43:35:ce:0a:
f8:8e:67:16:2b:2e:41:6b:10:04:9f:e8:74:2f:7c:
e0:f5:66:9a:fc:83:7b:60:eb:b1:1e:e4:7e:93:5c:
71:74:ff:c4:83:fb:14:59:af:c1:b8:0f:ab:a8:54:
b6:b7:73:66:58:2c:8d:1f:02:2f:66:01:95:43:63:
1f:e3:d1:13:49:51:15:b3:7c:51:89:2c:2d:a0:2c:
8f:8f:fc:c6:c4:96:34:0b:a7:a9:6b:bd:50:f9:77:
92:5c:41:ca:d0:8c:3c:f1:56:9a:9e:93:47:19:a1:
e6:4b:7a:b0:a7:7c:8f:b7:36:35:68:e3:c0:2d:27:
47:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FF:C9:49:E9:26:0D:27:89:3E:BC:18:30:BB:3E:05:48:14:66:CD
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:33:d1:52:c0:8e:3f:83:09:54:bb:de:c3:74:a3:37:cf:9c:
d2:72:94:9d:52:8d:a8:39:4f:64:03:a0:42:ef:85:11:6d:47:
fc:5e:1d:27:86:5a:e4:78:ab:f8:19:ab:b8:51:aa:4a:42:f4:
19:bd:e4:cc:c7:f4:ae:3a:64:90:9f:c9:e0:cc:bf:fe:56:5e:
d7:11:a8:ce:13:01:d8:45:39:89:0a:48:2c:cb:d1:e0:38:dd:
18:b1:38:fd:b9:37:67:e3:a8:f3:0d:d3:4d:57:9a:fa:c2:bb:
a0:07:11:de:71:dd:d3:e4:a4:b7:49:d3:3a:8f:3f:7c:fa:83:
36:a3:96:a9:b9:3e:7e:1b:03:7b:2c:25:2e:cc:4f:e4:54:e8:
64:e9:16:16:f3:b6:69:1d:9e:c3:bd:9b:d3:89:eb:b5:b7:20:
02:d0:ce:2f:f7:bb:01:20:1c:8e:aa:fc:b1:9e:29:51:7e:96:
ce:62:31:58:4d:76:16:35:8b:ff:d6:45:44:cf:5d:8d:cc:89:
d6:3c:e4:49:a7:a3:38:ec:50:ce:0c:23:9c:04:72:fd:5c:56:
df:f3:dc:e9:62:79:1a:51:de:61:02:77:fc:97:18:55:c0:78:
c7:5d:12:78:a3:0e:8f:64:21:7b:88:b4:17:a9:42:12:6c:df:
22:d7:7d:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 07:46:33 2025 by rpki-client