Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json)
Hash identifier: +j3YWsWnFZf0zHY0ueNxWZ5QcyP31GfmJ5VQI7m224s=
Subject key identifier: 23:A9:D7:21:1E:63:97:1B:17:1A:EA:12:78:EB:0E:6F:75:1D:58:3C
Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92
Certificate serial: 01994B518D29C54DD985FA8391D561BB9E97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
Manifest number: 05EE
Signing time: Mon 15 Sep 2025 03:00:59 +0000
Manifest this update: Mon 15 Sep 2025 03:00:59 +0000
Manifest next update: Tue 16 Sep 2025 03:00:59 +0000
Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: 4Vd70cV+HGwXnShxx1YCfQOWDCwUtPA6WOJQU8GKQlU=)
2: S2et9u3-k4c1RbSQYpZyfZKneKE.roa (hash: Ha/+fD6TOAGH3fDS11rGJPIxFiX3z4IR9RxVgbeKPDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:4b:51:8d:29:c5:4d:d9:85:fa:83:91:d5:61:bb:9e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de182707c444c31064b1899c597e9efd73438f92
Validity
Not Before: Sep 15 03:00:59 2025 GMT
Not After : Sep 16 03:00:59 2025 GMT
Subject: CN=23a9d7211e63971b171aea1278eb0e6f751d583c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:31:db:35:6a:9a:0a:eb:0f:e7:e5:92:eb:
ae:a5:f9:b7:f2:07:80:5d:96:83:de:bf:e6:ee:82:
38:bb:95:51:fe:72:c6:d5:15:a5:0f:8d:2d:9f:ce:
1a:9d:ff:ed:a1:37:e2:c1:83:67:9e:b8:ae:bc:cb:
40:55:eb:a2:95:66:bf:72:b1:3c:5b:17:cd:b9:70:
fd:42:be:44:66:2f:de:93:04:14:10:3b:7c:1c:a9:
58:38:4c:d7:b8:c7:da:81:fc:d5:78:13:2e:e3:e6:
fa:97:bb:7e:37:3b:e1:26:e2:d9:1f:2a:1c:2c:7d:
84:57:89:87:13:a3:06:d5:cc:f5:0f:b1:0b:93:5c:
64:13:06:dd:21:02:9e:9e:3a:a4:08:d6:a0:4b:ae:
d6:85:4a:0d:4d:50:af:54:9c:42:54:f7:8c:11:ba:
ce:62:0b:7a:b1:4a:05:bd:79:e0:9e:6c:68:73:ca:
9e:17:25:f3:d9:a0:c9:7f:9a:88:00:ef:8c:b2:20:
64:fd:6c:93:ce:4a:0b:e0:88:1e:09:1d:80:6d:c6:
6b:e6:fd:0f:59:68:6d:eb:ab:8e:a4:0b:e2:64:dd:
64:43:24:82:d0:e0:5f:7d:fc:45:3a:eb:1f:de:22:
40:86:59:45:b8:3a:4c:f1:59:01:99:cc:4b:f1:96:
73:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A9:D7:21:1E:63:97:1B:17:1A:EA:12:78:EB:0E:6F:75:1D:58:3C
X509v3 Authority Key Identifier:
keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:3a:90:70:cd:ea:6d:ff:e1:fe:7a:75:b4:8e:dc:b6:a8:c2:
bf:90:86:6f:d1:6b:91:45:83:e1:c1:46:49:21:cf:04:5f:da:
67:4c:65:2e:fa:c6:60:e4:8c:5e:fe:0d:3f:bc:76:01:7b:63:
b4:5c:00:73:31:58:2d:78:ed:f9:e5:a0:e5:aa:53:89:af:0a:
0b:98:ee:6e:77:4f:0f:b8:4e:ff:2b:63:69:5b:3e:bd:20:57:
c5:a9:c3:14:36:74:c7:5f:8a:8e:ff:6b:c2:ef:0e:fc:1c:5a:
f8:4b:f0:6e:85:25:57:1d:fc:61:10:20:64:ea:4e:57:6e:de:
df:90:bf:56:39:89:d3:fd:c4:a1:68:e6:dd:e4:80:39:ca:0c:
56:e8:d6:c6:54:78:16:de:4e:78:4c:be:cd:8a:f9:f4:c0:58:
86:62:9f:47:ed:35:07:51:9e:22:3c:5f:4d:52:b0:61:cd:86:
e2:9d:18:c0:f5:9e:e4:b0:ab:ab:ea:f7:4b:50:92:3e:3a:cc:
95:c7:5c:3e:18:fe:9f:81:1e:51:d2:46:ad:f4:f3:c6:69:ff:
b4:48:ea:3d:de:85:de:cb:c8:00:b5:e9:56:ff:35:38:62:cd:
dd:81:b0:e3:d8:72:d4:e3:9a:fc:6c:ac:6c:fd:17:92:5b:38:
4c:89:37:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 11:54:46 2025 by rpki-client