Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
File: 3ciCMsB94s3Llur551FVC6pmxYg.mft (raw, json)
Hash identifier: 0MXMTatdEGsOXCGacE7XkzZdupYncYgr+3a5VfKqXKk=
Subject key identifier: D2:73:CA:9A:8A:56:71:B4:59:35:19:80:A1:BC:14:61:A5:63:70:7C
Authority key identifier: DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
Certificate issuer: /CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Certificate serial: 019923318652BA6003A80C202E23E416C75D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
Manifest number: 0DD4
Signing time: Sun 07 Sep 2025 08:01:12 +0000
Manifest this update: Sun 07 Sep 2025 08:01:12 +0000
Manifest next update: Mon 08 Sep 2025 08:01:12 +0000
Files and hashes: 1: 3ciCMsB94s3Llur551FVC6pmxYg.crl (hash: XLlKb0rR9+SkWI9c59wx70T+fWaLFiTr53V8o54px2Y=)
2: OK60eEXoBVz15pEwVmX0yYULZbk.roa (hash: irOuBXNJpmhp7Bb40BZggz4rGVp00h/PvH1AyeAmbL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:86:52:ba:60:03:a8:0c:20:2e:23:e4:16:c7:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Validity
Not Before: Sep 7 08:01:12 2025 GMT
Not After : Sep 8 08:01:12 2025 GMT
Subject: CN=d273ca9a8a5671b459351980a1bc1461a563707c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:21:fe:a8:24:f6:e8:d2:44:05:63:46:f1:99:
70:8e:f2:c1:47:f5:d6:c6:42:0e:b4:42:70:9e:8a:
69:4f:b0:a9:2c:c9:ef:57:19:95:d1:d1:a8:c9:96:
cf:2e:2a:ff:7f:2d:72:46:ec:07:53:89:d3:49:e1:
4e:3f:a3:c5:65:e1:cb:d5:6f:19:4d:c0:48:45:75:
b7:21:84:4d:17:19:52:f5:01:77:1f:27:50:bd:94:
49:2b:8b:0e:2b:b3:04:fb:83:03:e3:a4:e8:4b:19:
9f:5d:c8:6b:3a:7f:b0:71:0b:bb:8d:0a:cb:50:79:
3b:a0:8f:54:55:f3:82:28:b9:a3:ef:7b:ce:eb:f0:
d5:d6:79:5b:c0:d3:82:cb:67:16:ec:5b:8f:20:59:
b6:c9:1a:c1:8a:4a:43:bb:3e:a8:2a:b4:ab:f7:19:
db:61:68:ea:c0:e2:17:d0:27:20:7f:82:16:6e:33:
b0:82:49:14:f7:27:4e:36:6b:b3:89:e4:9d:a7:c4:
47:ea:9f:28:f4:2a:3b:e8:e9:2c:77:74:b4:8e:d2:
9d:15:0d:0c:cd:f5:ad:8e:a8:b4:d7:9b:5e:37:74:
17:8d:92:83:d3:1b:c4:f4:76:bb:9a:42:db:6e:09:
28:24:8b:29:91:74:17:c8:bc:8a:9b:7b:69:c3:ee:
93:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:73:CA:9A:8A:56:71:B4:59:35:19:80:A1:BC:14:61:A5:63:70:7C
X509v3 Authority Key Identifier:
keyid:DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d1:ed:6c:31:ed:10:c9:98:99:94:22:aa:9e:31:ef:cb:ee:
57:aa:9c:24:d7:00:2a:a4:7c:34:47:59:39:ef:f8:d3:98:3e:
a4:6b:6f:3e:4d:64:d5:42:bb:8f:9b:d9:e5:b4:e0:d1:c2:c4:
dd:74:61:6d:b8:93:4c:c4:f4:da:2e:e9:a4:9f:5d:75:d6:71:
99:e2:4b:05:2d:01:19:91:1b:d5:27:80:9b:96:ae:13:ff:fc:
69:71:bf:7d:dd:f5:84:68:6f:14:9d:6e:50:ca:71:3d:be:bd:
0f:0c:60:c8:52:da:5d:52:72:2f:d2:62:dc:40:e2:02:31:52:
6f:8e:1b:b7:a3:ba:e7:6f:22:36:19:e9:c9:12:60:c1:1c:21:
be:2c:b8:ca:5c:84:6a:9a:71:06:4e:ed:8e:06:20:01:d9:51:
d9:aa:4b:1e:70:47:79:46:14:38:bb:ef:12:63:9a:72:36:89:
0f:f1:e4:79:38:28:61:45:af:56:2b:21:b4:7f:0c:e5:64:31:
90:d6:9d:6e:a5:88:bf:ce:fe:d2:1b:2b:47:61:ad:01:a0:1b:
0b:42:97:a4:e9:6a:84:bc:bc:03:b2:08:17:4a:68:da:ee:69:
37:92:c6:e8:f1:6d:a5:23:ba:59:12:8b:47:9b:cf:75:62:07:
e5:16:b0:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:34:19 2025 by rpki-client