Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: keMXIb5e+ePEJt7rPnk72v0Pws1mWNm2gbrFypax9bA=
Subject key identifier: 00:E6:77:F8:B6:B5:3F:EB:9C:BE:57:80:FD:B0:2F:72:B0:99:DC:02
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 019881673CFC72CCAF7DE9FA7E7A5A5E9BFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 05B1
Signing time: Wed 06 Aug 2025 22:01:23 +0000
Manifest this update: Wed 06 Aug 2025 22:01:23 +0000
Manifest next update: Thu 07 Aug 2025 22:01:23 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: 12NEoQVo5sBmCXCo3NTBHTi2l6YZrdEsVLbOWhV+fyQ=)
2: Vnw9H8iqt-gts3LY3CEVf7p6PaE.roa (hash: s2vDBc3kUppwqWxQSMIljxY/yV7+Xm77EH+5A9yGbgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:3c:fc:72:cc:af:7d:e9:fa:7e:7a:5a:5e:9b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Aug 6 22:01:23 2025 GMT
Not After : Aug 7 22:01:23 2025 GMT
Subject: CN=00e677f8b6b53feb9cbe5780fdb02f72b099dc02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1c:2d:49:12:f1:be:ab:68:a4:05:b7:ba:2a:
05:d3:4b:4d:8f:5e:6f:22:66:67:2f:8b:d0:8a:ef:
0f:14:0d:5b:9d:26:f8:cb:a0:95:99:43:6b:70:b8:
d8:b0:78:aa:af:22:7d:bb:a9:5f:94:3e:7a:91:a4:
b8:51:df:1b:0b:19:f4:b4:e2:9d:bf:c7:d2:19:6a:
52:45:5e:76:bd:03:81:f6:2f:d3:1b:5d:ff:b3:3b:
79:9e:8c:55:a2:16:0e:97:06:38:dc:70:19:65:c4:
f9:ef:3b:e9:4d:18:b4:c9:cb:bb:2f:63:8a:94:47:
47:e7:4d:fa:26:fa:86:08:f6:93:c0:39:fe:2d:b1:
0c:61:66:e6:99:bb:4a:0a:e1:7a:3d:33:53:30:3e:
b3:84:42:f2:b1:42:2b:02:e5:ab:bd:18:24:e9:56:
93:59:cf:c5:ec:f9:9e:72:ad:b5:aa:6b:09:8e:03:
9e:fc:6b:ec:1a:aa:9b:b9:59:0d:60:36:00:43:14:
ec:3a:9d:c0:6d:31:19:4f:22:6a:6d:8a:62:aa:85:
99:ba:21:d6:a2:05:67:9d:6d:9b:7d:8d:a2:46:66:
a1:23:c9:5f:d1:3a:b8:5f:95:c4:02:ab:c5:e1:8f:
0d:eb:69:15:c8:66:83:11:a6:61:91:4d:53:76:34:
53:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E6:77:F8:B6:B5:3F:EB:9C:BE:57:80:FD:B0:2F:72:B0:99:DC:02
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:09:dc:c6:94:5b:b1:e5:5a:01:25:c2:67:ce:3c:18:2f:c6:
b3:09:aa:2b:03:4e:4e:4f:ca:c0:c0:1f:84:09:86:5e:c6:57:
d5:1c:1e:39:26:53:6b:2d:12:84:81:0f:32:e5:66:1f:81:04:
27:d3:be:74:ac:5d:40:22:b3:b8:07:cb:f1:fe:5f:cd:b3:1d:
9b:52:f8:8f:94:ef:95:cb:9b:f1:e8:47:1f:8a:d3:77:29:57:
1a:d2:ed:fe:2e:39:5f:4c:4f:70:cc:2d:39:3d:59:0d:80:b1:
ea:8a:f4:c1:05:e4:42:d9:46:f5:c0:70:60:ce:05:a2:ff:ee:
3c:94:9b:26:b4:71:38:f4:5b:5d:ae:c4:a5:bb:64:06:d9:8c:
5f:e6:0a:d8:56:85:92:b3:12:9e:bb:2a:60:d3:24:05:00:77:
b6:e4:7f:25:92:6b:83:a6:f8:5d:ed:c7:34:d9:25:1e:48:c1:
37:4e:6f:e1:4f:1a:93:fe:11:8c:ad:68:fc:e0:f0:6d:a9:9f:
de:ea:15:2e:a4:05:68:38:e5:7d:5d:d3:00:f6:38:70:57:d8:
65:3a:40:a3:07:8f:6d:ea:4a:fe:c5:6a:ba:29:89:04:30:c2:
8f:27:ae:ab:65:3c:ca:a1:f8:ad:c6:b2:ce:fa:b2:52:77:55:
fe:74:4d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:00:09 2025 by rpki-client