Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
File: 3dya0lC4XNOZSUZbZoGy8d8U1qM.mft (raw, json)
Hash identifier: XMmbi0ifYEd+EiYHp4MQobLiaRwjtR0yBfLuHBQ384c=
Subject key identifier: 57:A8:10:5B:F9:7C:20:CD:46:AE:1A:EB:EA:8A:A5:E2:87:FB:C2:29
Authority key identifier: DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
Certificate issuer: /CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Certificate serial: 01995C455BBC50B855325D5B29DDAF9654BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
Manifest number: 0575
Signing time: Thu 18 Sep 2025 10:01:13 +0000
Manifest this update: Thu 18 Sep 2025 10:01:13 +0000
Manifest next update: Fri 19 Sep 2025 10:01:13 +0000
Files and hashes: 1: 3dya0lC4XNOZSUZbZoGy8d8U1qM.crl (hash: cDeIkMA3pdVNmmJH+I/zcNAoJ78Y/kbIUr+HquM+UgQ=)
2: dA9DZPAABtlejc0G0adjQxYBv5c.roa (hash: 3UVeFl3N3ODI+QVLphkmL5y9dyL4Gw+YagDr/4SW4gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 09:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5c:45:5b:bc:50:b8:55:32:5d:5b:29:dd:af:96:54:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Validity
Not Before: Sep 18 10:01:13 2025 GMT
Not After : Sep 19 10:01:13 2025 GMT
Subject: CN=57a8105bf97c20cd46ae1aebea8aa5e287fbc229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:9c:42:0a:a7:3f:a2:e5:20:b1:9c:f5:9c:
f1:20:ec:8d:f5:3a:9c:ea:9a:ca:48:74:18:19:3c:
b5:df:82:17:8b:17:8e:7e:d6:cc:aa:3e:71:6b:9a:
82:42:32:92:24:65:cd:e3:36:68:99:f3:b3:84:ad:
ea:87:be:7f:a8:e1:3d:42:2d:d0:21:bd:b6:3c:78:
eb:e9:83:dc:1d:80:e4:d0:32:0b:e8:10:e0:8b:07:
02:6d:ea:7f:f2:1d:77:b7:b6:79:4a:79:ac:ee:49:
50:e1:58:24:45:0e:35:03:8f:93:d6:4b:d1:46:19:
7c:6e:96:c9:1b:82:22:64:5b:fd:3a:bd:32:b3:8c:
04:95:36:0c:b5:50:8c:c7:49:39:0d:3e:28:13:b2:
2b:8c:90:df:36:10:91:de:6f:34:4a:66:bb:72:1f:
ae:5e:38:aa:ed:29:26:8c:3d:29:77:22:86:42:a9:
02:23:f0:ed:f8:04:f6:e1:fa:37:ec:2c:99:86:30:
f7:54:61:ac:02:0c:44:a5:8a:c8:eb:58:7e:47:58:
86:79:59:31:c8:b4:32:af:63:cd:41:b0:a3:31:7c:
e2:85:c1:76:20:1f:4e:9f:52:53:ce:35:b9:59:45:
c7:f1:33:17:34:25:6f:85:5e:d7:c6:4a:10:98:92:
72:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A8:10:5B:F9:7C:20:CD:46:AE:1A:EB:EA:8A:A5:E2:87:FB:C2:29
X509v3 Authority Key Identifier:
keyid:DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a7:fa:1e:d4:74:43:eb:b2:ae:5f:4d:c8:fb:21:06:e0:05:
ef:4e:d9:4c:a7:d6:bb:db:89:e0:e1:1b:81:aa:5b:70:df:08:
69:21:0f:02:6d:d2:38:23:a3:ff:78:d8:40:a3:cd:fd:54:22:
42:a0:cb:5e:dc:3d:e5:52:42:b5:62:bd:41:2d:58:23:3c:66:
81:d0:28:71:4e:95:6a:de:03:94:ac:bb:d0:14:da:74:ed:67:
8e:54:b5:31:60:f5:da:93:2f:23:cd:7e:5b:15:a3:44:92:2e:
a5:e7:48:74:2d:12:c8:af:04:1a:eb:45:a1:ff:a4:7f:10:00:
6d:6f:42:1b:44:04:14:a4:bc:f9:46:0a:1b:2e:a2:10:4f:78:
ad:6a:8c:bc:21:98:48:26:c7:50:7d:5c:9d:50:9e:40:24:57:
cd:fc:e0:c3:eb:76:b2:82:23:61:e0:3e:dc:2b:6d:62:d8:a4:
94:d8:a2:58:df:13:fa:fa:3c:fa:78:65:67:22:2d:4e:4d:f6:
11:ac:4a:76:4d:b8:f8:ba:c1:dd:3b:e9:ec:57:ab:48:76:b1:
a4:7b:1b:67:2e:ed:e4:07:03:ac:f0:66:77:74:d0:10:12:99:
e7:a5:7a:36:8b:30:e5:7a:e9:b8:d6:fd:47:91:8f:91:11:f0:
7e:01:cf:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 11:36:15 2025 by rpki-client