Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json)
Hash identifier: awFPG8jpqQxgdgzuoqa7iBtE1Osc3GSc6MeGgIx0nK4=
Subject key identifier: 41:3F:3C:D5:D8:5C:13:99:6C:DC:FE:3D:14:43:2F:D0:A3:26:9F:3A
Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Certificate serial: 0198FBB6217C31D9CF5F2D76E2B17EF561C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
Manifest number: 1020
Signing time: Sat 30 Aug 2025 16:01:13 +0000
Manifest this update: Sat 30 Aug 2025 16:01:13 +0000
Manifest next update: Sun 31 Aug 2025 16:01:13 +0000
Files and hashes: 1: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: RhRNn3lIu6l1R7Rks6/Ku7Nuu06tdGkCHxuvgQzXkGg=)
2: JoXcYev6DySlst62DTDcDz1JN0Q.roa (hash: PRhyl4bdJivpbrgVw6w06UO6PZN+9+qwU0T6MPbrnFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 31 Aug 2025 16:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:fb:b6:21:7c:31:d9:cf:5f:2d:76:e2:b1:7e:f5:61:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Validity
Not Before: Aug 30 16:01:13 2025 GMT
Not After : Aug 31 16:01:13 2025 GMT
Subject: CN=413f3cd5d85c13996cdcfe3d14432fd0a3269f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3d:d7:1b:b4:c9:18:d4:04:04:e0:31:24:30:
51:bb:e7:c8:8a:2f:a8:1a:41:ea:18:09:6f:70:b8:
b0:15:9f:26:7a:d3:66:46:6f:3c:e1:6d:47:15:5e:
09:b6:79:9b:16:08:a0:4f:b3:75:29:08:db:a9:e8:
5d:dd:67:da:8b:ad:d8:a0:71:be:d6:4a:d4:29:45:
12:99:62:02:77:f8:c7:54:b0:37:d5:3b:60:7b:dd:
ec:a7:57:07:b0:2d:50:c5:28:b4:f2:6b:82:d5:a6:
ca:05:f1:30:ac:0c:b9:5e:bd:c2:23:96:ab:05:12:
7b:e7:ca:51:0b:6a:58:f0:e4:76:72:7b:cc:7b:f6:
6c:22:83:31:08:59:dd:a1:2b:a5:d1:c5:dd:59:3a:
d0:6e:ce:db:52:32:33:b1:7e:46:65:2e:d2:c1:93:
ae:da:20:69:a4:de:b9:18:fd:bd:b1:28:10:0f:46:
9e:47:8f:34:f5:0b:2d:08:be:aa:a6:2e:ad:ef:35:
4a:cb:2f:d9:e6:2b:6c:c3:1c:a0:d4:db:b9:9c:ea:
ac:a3:f1:cb:ea:a9:14:b9:97:75:4c:34:7d:f6:3c:
04:a1:9e:c0:b4:60:b1:98:e1:7e:91:16:c8:be:6a:
e7:47:e2:ac:f1:55:9c:d4:68:f0:97:79:64:2f:2e:
c8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3F:3C:D5:D8:5C:13:99:6C:DC:FE:3D:14:43:2F:D0:A3:26:9F:3A
X509v3 Authority Key Identifier:
keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:9f:79:0d:30:4e:f5:72:6b:71:29:20:11:f0:f5:40:ad:9a:
21:d2:52:50:2c:a8:95:0f:bd:4e:e9:c8:62:d2:e7:d9:85:bd:
8d:73:c8:e3:a1:4f:76:f0:76:a8:a6:fb:42:cd:89:43:17:0f:
a4:f8:bd:1b:4c:ea:26:12:53:cb:78:2b:77:e4:0b:bd:d9:d6:
95:de:51:56:2b:ce:79:ad:44:73:ef:68:1e:16:39:d7:7a:1d:
5d:b3:65:6d:32:0f:97:c4:d2:80:ed:e6:da:8f:29:ca:11:87:
22:8c:b9:31:ba:e4:1c:af:2b:32:24:09:dc:d1:03:41:22:b2:
8a:ba:b7:6c:6f:3e:cf:7f:61:51:e5:6b:c0:1b:7a:38:9f:8b:
26:08:d1:8e:25:25:58:11:5e:d2:b6:55:eb:7c:99:70:57:27:
ea:e4:7e:1d:a5:25:3c:7d:22:e9:82:84:c0:b3:b8:80:e8:b2:
31:4f:66:5e:11:ba:ef:60:13:77:ee:fa:5b:ba:b3:b5:a7:03:
d9:12:68:09:d9:71:8e:c6:c2:4f:2e:1a:63:09:25:40:2f:ef:
41:c6:20:ad:b1:f0:0a:c9:4f:85:6e:e2:99:17:34:0b:6e:bf:
f5:c6:85:ea:b8:14:80:ff:ca:30:1b:fd:10:1b:37:b7:e6:9a:
36:a7:18:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 31 01:39:51 2025 by rpki-client