Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
File: 03h3GhBvaw0FSld4U1aSLK8C40M.mft (raw, json)
Hash identifier: S1GoWT0wq+P4ONdf+Yn0tWIi3scBXDmnofCXtku+1Y8=
Subject key identifier: 5A:59:68:E1:66:01:B2:2F:0E:9E:83:A0:F3:8D:3F:E8:88:3B:F6:14
Authority key identifier: D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43
Certificate issuer: /CN=d378771a106f6b0d054a57785356922caf02e343
Certificate serial: 0199240D02868DC9ADB9104EDB6DEBC4F572
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
Manifest number: 0A1C
Signing time: Sun 07 Sep 2025 12:00:56 +0000
Manifest this update: Sun 07 Sep 2025 12:00:56 +0000
Manifest next update: Mon 08 Sep 2025 12:00:56 +0000
Files and hashes: 1: 03h3GhBvaw0FSld4U1aSLK8C40M.crl (hash: 0qu0NDToNOXM/HvhlsoYgF/vW6U+QO1SZ7JJ5Em20Rg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:02:86:8d:c9:ad:b9:10:4e:db:6d:eb:c4:f5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d378771a106f6b0d054a57785356922caf02e343
Validity
Not Before: Sep 7 12:00:56 2025 GMT
Not After : Sep 8 12:00:56 2025 GMT
Subject: CN=5a5968e16601b22f0e9e83a0f38d3fe8883bf614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c9:ce:8f:a2:f1:6c:90:8e:d3:1d:a2:60:d1:
b1:03:3f:ac:3e:fd:a6:35:2c:88:a2:c3:f7:25:e0:
21:ed:20:1b:a9:f4:a8:b4:4f:53:4d:8f:f2:32:8b:
56:50:e5:84:c5:fe:ad:25:6a:5c:aa:fb:f3:eb:72:
e7:6f:9f:60:6a:22:66:c3:0a:a9:6a:3f:e5:02:db:
a4:6b:8d:bd:c8:5d:f8:2d:c6:dc:8f:f1:e8:39:56:
aa:48:be:f1:b6:48:87:7e:ee:32:f2:ca:c5:db:72:
40:78:d8:2f:e4:28:2b:d1:be:9c:32:fb:f2:95:16:
51:83:41:eb:a5:8f:e8:13:2b:1d:10:12:77:9f:0b:
40:7d:6a:a6:c5:f5:1d:18:20:14:26:f4:26:35:f9:
05:94:3a:87:49:7d:a6:6a:21:1e:38:71:22:61:bc:
ed:3f:1f:40:ed:a6:08:99:13:64:f9:a6:c2:c9:e9:
3a:bb:c6:08:07:e8:a2:73:5e:6a:d6:8d:ba:20:6c:
f6:80:d2:cd:16:1c:fe:fc:03:1a:57:6a:4a:a8:2f:
4f:44:12:dc:b0:a2:32:f9:6d:ac:d2:af:d8:9e:52:
f1:ec:b6:41:f5:27:19:c3:71:e2:5c:80:12:b4:a0:
c7:6a:50:6b:11:84:7f:71:5c:90:08:21:3a:d4:15:
f9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:59:68:E1:66:01:B2:2F:0E:9E:83:A0:F3:8D:3F:E8:88:3B:F6:14
X509v3 Authority Key Identifier:
keyid:D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f0:99:76:34:13:c6:cf:0d:2c:eb:7a:3e:16:3d:e2:67:73:
95:b7:ef:c9:e1:53:8d:ca:02:2b:f6:be:bf:63:cd:7b:10:d8:
d0:6c:42:2b:6e:c6:83:75:79:01:88:2e:46:60:a4:dd:01:af:
59:ff:56:94:de:cf:bf:24:3d:78:1a:1c:00:fa:83:1f:f1:e0:
9b:3c:02:ea:41:cc:4f:bc:5f:f1:81:64:8d:b3:ea:8f:ff:2f:
a3:d4:d2:0c:b3:20:21:78:8c:29:30:b4:82:4d:bc:d1:2a:23:
29:d7:f9:f6:fb:b0:38:2f:26:dc:06:64:47:c0:e6:0a:56:87:
c1:d7:f3:9c:94:47:29:40:02:3e:b8:c2:76:b1:fd:8b:df:59:
89:31:27:24:83:16:43:e4:b8:9d:76:43:5b:19:ee:be:9e:f3:
cd:a7:07:6c:9b:60:4d:67:41:a4:66:48:5e:0d:d9:89:9c:17:
a6:55:cc:4d:47:6b:bd:a3:05:9b:5f:18:63:18:ef:4c:67:3c:
0d:da:c4:62:e1:a5:eb:cb:0e:53:1c:3d:9a:6c:85:20:df:c3:
d2:9b:dd:85:c4:24:94:21:1b:fa:50:67:9b:0c:dc:75:ba:56:
00:f4:a1:7c:4a:e0:2b:0d:a2:bb:85:fc:61:7d:d8:6a:18:20:
bc:3f:2e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:51:17 2025 by rpki-client