Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
File: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft (raw, json)
Hash identifier: gATyZsorDIx6hQYHXzZEhQZxI5Y+SHQEpLXeYyE9GGw=
Subject key identifier: 90:AB:33:17:07:78:AA:69:60:A6:8D:D8:BB:FF:76:36:04:9D:1E:38
Authority key identifier: DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6
Certificate issuer: /CN=dc73be387af552970cf62f69517e3f3c9c12d2f6
Certificate serial: 0199228CD1D9F984292B49CBE30AA9A52829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
Manifest number: 0F73
Signing time: Sun 07 Sep 2025 05:01:18 +0000
Manifest this update: Sun 07 Sep 2025 05:01:18 +0000
Manifest next update: Mon 08 Sep 2025 05:01:18 +0000
Files and hashes: 1: 3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl (hash: xdJzkT48kWSDl88tJKOJQn51/26mlUHQDWmhF2tUdrc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:d1:d9:f9:84:29:2b:49:cb:e3:0a:a9:a5:28:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc73be387af552970cf62f69517e3f3c9c12d2f6
Validity
Not Before: Sep 7 05:01:18 2025 GMT
Not After : Sep 8 05:01:18 2025 GMT
Subject: CN=90ab33170778aa6960a68dd8bbff7636049d1e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:a1:07:ab:59:a3:7e:cb:a9:87:4c:c2:11:
4b:b5:f6:28:5c:78:1a:c5:8d:48:58:9f:b8:4e:3a:
89:7b:f9:f1:b9:fa:03:7a:3b:c7:20:67:c7:7c:3a:
f4:86:6e:fd:83:55:19:13:8b:34:a4:52:4e:39:e4:
b1:39:e3:b7:74:b6:a9:82:15:d9:e9:a3:e1:f9:1d:
a7:34:a1:54:03:df:0e:ad:97:4f:5b:ff:45:05:39:
b0:c6:40:bd:e1:2e:6e:3a:42:f1:c8:c8:5e:79:c9:
97:ad:bc:5c:5d:b8:e0:01:5d:02:d4:b7:da:1f:8a:
98:3d:47:ac:a1:0f:12:fc:44:5c:8d:b4:66:96:f0:
f0:85:b1:83:6c:bc:16:29:b3:cb:8e:30:b9:ae:54:
8c:b6:57:15:db:0a:e5:b0:cb:d6:9b:9e:dd:f1:e0:
af:72:0c:7f:17:5d:ad:0a:53:f6:d2:2e:e9:17:10:
bc:5d:07:6e:81:d1:a4:36:c0:ab:0e:6e:e3:b2:6e:
82:71:39:a6:30:39:b3:95:f2:67:d1:81:3f:ac:00:
d9:5a:b8:06:78:15:01:2e:3d:cb:c0:c5:16:5a:f9:
df:5b:77:07:03:e1:de:04:fa:ca:60:1c:05:be:0b:
30:98:d9:c7:34:f0:26:69:cc:fc:fd:16:8e:01:35:
00:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AB:33:17:07:78:AA:69:60:A6:8D:D8:BB:FF:76:36:04:9D:1E:38
X509v3 Authority Key Identifier:
keyid:DC:73:BE:38:7A:F5:52:97:0C:F6:2F:69:51:7E:3F:3C:9C:12:D2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HO-OHr1UpcM9i9pUX4_PJwS0vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/5bbd32-a540-4708-9925-c71f17afc749/1/3HO-OHr1UpcM9i9pUX4_PJwS0vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:be:f3:82:31:73:05:b4:e9:dc:ed:6a:e4:3f:1d:e4:65:9a:
48:0f:e4:5f:80:e8:a7:55:5d:9e:6c:da:34:f1:ff:da:f0:e8:
a4:2d:ff:ff:f6:68:6b:54:5b:6f:6d:55:95:29:20:59:2b:87:
8b:26:b3:f4:28:b2:e8:dc:64:10:43:a0:92:81:59:61:f1:6d:
bb:56:72:bb:2d:03:54:5e:c0:78:50:63:36:98:6c:fd:75:9e:
1c:6b:9c:f5:28:7f:4b:33:bc:0a:75:8b:3f:8f:6a:88:17:57:
95:63:55:60:11:56:1a:3e:33:ad:66:2c:c0:3f:a8:42:61:7b:
0f:07:37:1c:c1:d3:53:03:2f:13:99:86:f1:7f:c8:6c:7f:8b:
ac:9a:80:c6:7e:56:3e:12:88:49:9e:be:9f:a5:85:9a:51:6f:
41:0a:ef:66:57:13:4c:64:36:65:17:60:b3:0f:b4:b4:31:1c:
89:28:ae:f8:42:b7:43:40:00:e3:83:db:d4:1b:27:8b:5b:3c:
27:84:20:5a:cd:d2:c0:6d:52:31:1b:4c:38:49:59:d9:30:ca:
bb:ad:40:c7:21:11:bd:c0:f3:f2:ab:28:52:e7:08:99:8e:ea:
9a:f4:b7:39:5d:8d:4b:15:00:34:f1:db:9f:18:fc:3d:c5:43:
f0:bc:51:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:48 2025 by rpki-client