
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: A/U7+PTfvEIRAN0iIMwMZQTSIM6nMxsf3cOdWoDxTjI=
Subject key identifier: 02:F9:CC:EB:B7:15:F9:F3:3A:04:3B:B6:DB:D1:20:C2:3D:F0:F6:2F
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019881685C9862FDAA1780B45919E5624A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 15AF
Signing time: Wed 06 Aug 2025 22:02:36 +0000
Manifest this update: Wed 06 Aug 2025 22:02:36 +0000
Manifest next update: Thu 07 Aug 2025 22:02:36 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: PC5HofDhML/FznmeLUeu9Tqto9w4j7CGDTVCz7s4sU4=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:68:5c:98:62:fd:aa:17:80:b4:59:19:e5:62:4a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Aug 6 22:02:36 2025 GMT
Not After : Aug 7 22:02:36 2025 GMT
Subject: CN=02f9ccebb715f9f33a043bb6dbd120c23df0f62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a7:c9:eb:93:0c:e8:3f:d5:d7:50:d9:22:e5:
3c:59:26:5e:42:e1:59:35:66:a9:3d:e7:ab:23:dd:
b3:52:95:2b:3c:8b:41:2c:bc:f3:4d:26:f7:0d:94:
59:70:f0:57:8e:71:c0:59:69:c8:8a:ab:e9:47:ac:
fc:da:02:5f:c9:59:2e:c2:aa:d7:f4:2a:cd:3a:34:
f9:4b:0b:ed:44:8b:78:fc:fc:6a:4e:aa:79:cc:a6:
af:8f:22:06:77:98:4f:03:0e:d3:75:d9:76:7d:ca:
0d:88:98:be:ea:c4:f1:6b:e1:81:fb:58:90:e7:b9:
a3:19:30:de:9c:6c:55:f1:28:3f:44:59:ae:31:60:
88:23:e8:7e:7d:5d:9a:71:d5:ba:33:8e:8d:cb:61:
27:6f:ff:6b:7a:df:3a:7d:3d:84:73:6a:12:44:94:
d8:9f:0c:c4:f5:9a:b3:07:56:4f:fd:cb:bc:61:15:
20:a8:db:62:ca:aa:ae:37:7e:78:5f:3d:5f:69:6f:
e3:f5:35:12:a8:62:b0:68:2c:17:a7:8c:90:e4:47:
44:4c:e8:d7:db:42:11:1a:09:e5:0e:e3:fa:df:5e:
bb:01:cc:94:4d:18:b0:0f:a9:ce:bb:33:c5:5c:e9:
b1:ea:ec:a8:88:af:8b:64:df:e9:e2:c7:04:78:1b:
53:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F9:CC:EB:B7:15:F9:F3:3A:04:3B:B6:DB:D1:20:C2:3D:F0:F6:2F
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:f2:38:76:2c:29:f7:b3:45:88:bf:a0:35:7d:aa:e8:af:a7:
bb:92:7a:c5:3a:d5:a8:d9:ca:be:32:43:91:83:ad:e2:e2:5f:
8c:7c:e2:c8:cb:89:90:93:3e:a4:57:c0:75:32:f6:ea:ee:70:
05:71:f5:93:30:1a:04:b1:48:25:38:e6:a4:7b:94:ec:bd:2d:
f6:dd:76:f3:5f:51:92:08:eb:7e:71:d8:f0:44:aa:49:a3:4e:
59:12:86:bf:97:a9:88:ac:15:ed:15:ed:d6:4f:b0:91:ae:ae:
26:9f:07:1d:00:fa:cd:9d:4f:d8:47:54:ae:fb:48:13:ac:b2:
12:6e:02:e9:25:42:49:5c:72:1d:96:cd:65:50:56:9a:6e:3d:
25:2c:b5:37:17:d0:84:c9:3f:6f:68:f7:05:0a:47:b7:ba:43:
0c:51:35:9a:3c:f4:14:d1:3b:9b:b5:43:75:c4:3a:64:b2:51:
fb:39:c6:26:23:5b:18:c8:3a:56:d9:31:ac:62:b6:87:ca:39:
d3:63:c6:1b:6c:3f:af:cc:6c:2e:03:35:2b:cb:f1:c6:92:1c:
82:ab:f7:fa:7d:aa:6c:02:1f:ef:6a:97:2f:7c:c5:09:a7:19:
e7:34:be:6b:6a:ad:2d:8f:08:a8:af:79:15:62:b8:8a:35:6b:
eb:f7:9b:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:20:55 2025 by rpki-client