Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: j2cGVWpUDjTq/mwBy/EodO5fWWJeSrItQ675fvistx0=
Subject key identifier: 10:81:8C:87:AD:32:D6:9B:6C:50:EF:36:BB:FE:E3:F0:88:45:C7:97
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 0199183F83C4CD9AD2E052332EABA729381B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 1106
Signing time: Fri 05 Sep 2025 05:00:39 +0000
Manifest this update: Fri 05 Sep 2025 05:00:39 +0000
Manifest next update: Sat 06 Sep 2025 05:00:39 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: qhu2mx0PzrDxGVo6DNW2tNrsCHtzogQRBTfQ3zBKm20=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:83:c4:cd:9a:d2:e0:52:33:2e:ab:a7:29:38:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Sep 5 05:00:39 2025 GMT
Not After : Sep 6 05:00:39 2025 GMT
Subject: CN=10818c87ad32d69b6c50ef36bbfee3f08845c797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:ed:c9:02:d7:38:11:17:1e:ca:d5:99:b6:
0b:13:1c:41:7f:26:94:a2:d0:47:6b:21:ea:00:cf:
1d:18:b6:73:32:c7:11:b2:80:78:ec:3f:f4:e6:1a:
3a:52:b1:77:0a:5a:ef:ec:56:25:2e:e6:6b:95:61:
6e:4b:b0:83:64:1d:b1:5d:ec:24:9a:6e:36:65:6a:
06:1a:89:93:03:1c:f2:85:68:0a:69:e3:0f:78:72:
fe:99:2d:3b:f0:97:0f:cf:10:21:e0:d2:67:d3:43:
d2:f4:4c:90:6e:5d:75:18:3f:40:9a:d5:21:f3:ca:
de:76:c9:50:51:99:08:99:51:f5:31:e8:df:6a:82:
e7:9a:7c:2e:22:43:4f:a2:ad:bb:3c:61:2f:ed:10:
da:73:83:2d:06:c2:86:d9:5d:30:8f:0d:71:a7:ca:
9f:1d:f1:4d:05:f9:4a:79:de:7e:c9:69:dd:11:12:
5e:2f:ef:17:c2:cb:d4:8c:89:7a:f2:49:0e:e1:21:
24:7d:64:56:09:bd:d0:b3:ab:f3:82:16:6c:fe:2d:
bf:48:1c:5c:c1:c8:cd:ce:d3:9c:a2:7e:83:e2:86:
9b:ea:f8:df:06:aa:e4:75:0e:71:ec:58:10:d4:43:
af:db:fa:1a:88:3f:22:95:9b:e4:f4:0c:0a:e6:e3:
28:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:81:8C:87:AD:32:D6:9B:6C:50:EF:36:BB:FE:E3:F0:88:45:C7:97
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ab:11:53:da:a4:ab:e8:93:f5:76:02:01:d3:e8:ce:69:10:
f9:d4:61:18:d3:6d:60:9b:51:67:5b:5c:13:de:a4:8d:5d:d3:
d8:ff:3d:0f:7e:80:b3:c8:b7:e8:0a:d3:6b:33:c2:e9:03:7a:
52:8c:04:5a:af:74:45:63:d2:58:53:ee:e0:34:b2:ee:9c:2c:
b7:9c:16:ac:49:4e:13:d9:fb:31:3f:71:a5:85:fa:ad:72:67:
56:c7:b7:c5:b7:56:53:be:3a:f4:1f:6e:55:55:2a:5a:f6:24:
47:60:53:ca:c8:38:59:a0:f8:8f:88:9a:ac:59:0a:36:0e:90:
5f:bb:50:22:34:e4:13:22:4c:a8:2a:c3:23:11:5d:0e:7a:56:
43:55:ed:15:70:35:e0:8f:b2:9d:c7:79:01:84:34:ef:12:5f:
87:09:f5:50:53:ee:1b:e5:a8:27:69:fb:0b:89:af:ac:11:04:
02:aa:d1:7e:5e:9d:a9:30:7b:ed:0b:73:20:fc:6d:c7:0a:87:
88:98:c1:dd:6d:10:c3:d9:89:60:4d:12:e0:72:7d:cc:83:30:
93:a0:21:86:c1:df:5b:32:a9:04:84:9c:7a:cf:4e:b6:b3:95:
8e:2a:c9:9d:37:f9:7a:e3:7e:0f:a9:71:06:f4:e5:be:2c:fd:
af:e6:37:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYP4PEzZrS4FIzLqunKTgbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODVkYzZiNjE0M2ExN2ZlYjQ5ODIwZWE1MjAwNDg5NThm
NDhhZGMwHhcNMjUwOTA1MDUwMDM5WhcNMjUwOTA2MDUwMDM5WjAzMTEwLwYDVQQD
EygxMDgxOGM4N2FkMzJkNjliNmM1MGVmMzZiYmZlZTNmMDg4NDVjNzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxb/tyQLXOBEXHsrVmbYLExxBfyaU
otBHayHqAM8dGLZzMscRsoB47D/05ho6UrF3Clrv7FYlLuZrlWFuS7CDZB2xXewk
mm42ZWoGGomTAxzyhWgKaeMPeHL+mS078JcPzxAh4NJn00PS9EyQbl11GD9AmtUh
88redslQUZkImVH1MejfaoLnmnwuIkNPoq27PGEv7RDac4MtBsKG2V0wjw1xp8qf
HfFNBflKed5+yWndERJeL+8XwsvUjIl68kkO4SEkfWRWCb3Qs6vzghZs/i2/SBxc
wcjNztOcon6D4oab6vjfBqrkdQ5x7FgQ1EOv2/oaiD8ilZvk9AwK5uModQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBCBjIetMtabbFDvNrv+4/CIRceXMB8GA1UdIwQY
MBaAFN2F3GthQ6F/60mCDqUgBIlY9IrcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQt
NGFjODU2YTgxODJkLzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQtNGFjODU2YTgxODJk
LzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD6sRU9qk
q+iT9XYCAdPozmkQ+dRhGNNtYJtRZ1tcE96kjV3T2P89D36As8i36ArTazPC6QN6
UowEWq90RWPSWFPu4DSy7pwst5wWrElOE9n7MT9xpYX6rXJnVse3xbdWU7469B9u
VVUqWvYkR2BTysg4WaD4j4iarFkKNg6QX7tQIjTkEyJMqCrDIxFdDnpWQ1XtFXA1
4I+yncd5AYQ07xJfhwn1UFPuG+WoJ2n7C4mvrBEEAqrRfl6dqTB77QtzIPxtxwqH
iJjB3W0Qw9mJYE0S4HJ9zIMwk6AhhsHfWzKpBISces9OtrOVjirJnTf5euN+D6lx
BvTlviz9r+Y3/g==
-----END CERTIFICATE-----
Generated at Fri Sep 5 09:49:30 2025 by rpki-client