Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
File: 3ciCMsB94s3Llur551FVC6pmxYg.mft (raw, json)
Hash identifier: HKug61BEgNBhlarWEKJknfh8OeiS84/1n4jyy/3zHf0=
Subject key identifier: 2D:2B:46:02:3C:02:F0:82:DC:05:4D:74:52:65:80:77:58:33:F5:79
Authority key identifier: DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
Certificate issuer: /CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Certificate serial: 019A7149957827C3A2CBE266F3352CED2FE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
Manifest number: 0E81
Signing time: Tue 11 Nov 2025 05:00:39 +0000
Manifest this update: Tue 11 Nov 2025 05:00:39 +0000
Manifest next update: Wed 12 Nov 2025 05:00:39 +0000
Files and hashes: 1: 3ciCMsB94s3Llur551FVC6pmxYg.crl (hash: e1UtVim0m4sfYkpV8ZiwixrD46vEjNZ+pNwbLvWZE/A=)
2: OK60eEXoBVz15pEwVmX0yYULZbk.roa (hash: irOuBXNJpmhp7Bb40BZggz4rGVp00h/PvH1AyeAmbL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:95:78:27:c3:a2:cb:e2:66:f3:35:2c:ed:2f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddc88232c07de2cdcb96eaf9e751550baa66c588
Validity
Not Before: Nov 11 05:00:39 2025 GMT
Not After : Nov 12 05:00:39 2025 GMT
Subject: CN=2d2b46023c02f082dc054d74526580775833f579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:50:1a:09:88:aa:5e:50:b1:a7:9d:63:84:66:
09:08:b0:13:dd:72:88:74:a7:d3:bb:f0:9e:e3:59:
12:fa:c3:45:98:6c:d0:82:7c:d8:55:c1:ec:7f:b1:
fb:86:5a:77:1f:30:cf:1b:86:e9:1e:6f:6b:5a:19:
43:50:2b:c1:e6:09:ae:b9:da:35:99:55:0d:40:db:
1a:b8:f4:98:3e:e6:ff:52:60:91:35:e1:a3:5a:2e:
23:12:77:b0:31:27:41:3a:80:cc:01:04:a1:a8:9a:
3b:48:e5:0c:97:2d:ae:3b:f8:0c:37:5d:c8:9c:ed:
9c:a9:5e:dc:96:16:74:1f:44:20:69:70:12:67:22:
44:c7:b0:72:45:ab:85:a5:bf:64:b8:77:30:1a:f9:
d5:b0:36:34:6f:f6:19:7a:0e:21:a9:b7:80:e5:3d:
a9:2c:8e:fb:74:8e:c4:22:d7:1f:a1:db:74:56:c7:
09:71:3c:5b:b4:66:0a:b4:e4:6f:a4:d8:e6:f4:29:
ab:29:8c:20:28:28:09:e0:d1:76:ea:e1:46:bb:56:
b9:ac:80:e7:86:1a:08:53:cb:41:36:b3:11:d2:55:
9e:7c:0d:a5:3c:4c:05:61:e0:a3:67:d3:44:5b:1a:
c3:8a:66:7b:7c:8c:99:a6:b2:0d:1e:78:be:96:8b:
b1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:2B:46:02:3C:02:F0:82:DC:05:4D:74:52:65:80:77:58:33:F5:79
X509v3 Authority Key Identifier:
keyid:DD:C8:82:32:C0:7D:E2:CD:CB:96:EA:F9:E7:51:55:0B:AA:66:C5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ciCMsB94s3Llur551FVC6pmxYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/0c96d4-c760-4aa6-85db-42c79b03b4df/1/3ciCMsB94s3Llur551FVC6pmxYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:4d:c2:77:20:dd:2f:d1:61:0b:61:58:87:43:31:06:d3:ff:
d8:f7:c6:cb:db:66:16:82:fd:ba:64:e9:b2:b4:5c:7b:8c:c6:
5d:e6:ac:2e:c1:29:6b:2f:f0:29:6f:ac:bf:0e:54:70:e0:4e:
d2:37:c3:45:9b:22:62:49:0f:3b:ca:58:15:8d:4b:55:8f:46:
cb:12:3d:e2:0f:70:d9:6c:8d:e3:07:df:6f:61:78:2c:d0:12:
87:26:4b:26:1a:94:cc:e0:71:0d:92:2d:fa:d7:c6:4e:30:5b:
55:c2:cb:98:88:f7:87:9d:ad:53:27:f3:3b:f9:49:c3:e2:96:
0e:a1:fd:8f:35:0a:08:84:06:5f:4c:d7:15:d7:f6:70:ff:d8:
12:af:f7:ff:e7:ce:c9:3d:35:52:ce:e6:7b:eb:df:41:d7:11:
a8:4f:d7:36:4c:fb:1b:1f:95:11:83:37:f0:21:8c:b7:df:47:
12:80:88:2d:90:b4:fa:0f:6d:79:32:e4:fa:06:8c:3a:92:9c:
25:9a:65:d2:98:61:3f:1a:40:6c:28:68:57:5e:b2:87:a1:97:
f4:b8:95:79:3a:7a:2c:61:9a:87:83:2e:bf:ed:d2:a0:ab:6c:
00:56:2c:f4:f1:0c:51:ba:1d:8f:10:ec:0b:86:9b:98:20:40:
21:a8:66:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:39:14 2025 by rpki-client