Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: ExGSapUYlrwmozbmvSfs0ufqfdK3dQh6Vbskx0Osg4A=
Subject key identifier: 43:E1:6C:1C:83:0C:36:86:09:43:7C:64:33:58:9B:6B:7D:23:82:33
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019A50E2769A078E1F6E60D0B44B07E8281F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 169F
Signing time: Tue 04 Nov 2025 22:00:10 +0000
Manifest this update: Tue 04 Nov 2025 22:00:10 +0000
Manifest next update: Wed 05 Nov 2025 22:00:10 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: KBcM4jqwQ74R/5UIaD/gBQFzzsDfHz0rtY7HWZlO66U=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:76:9a:07:8e:1f:6e:60:d0:b4:4b:07:e8:28:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Nov 4 22:00:10 2025 GMT
Not After : Nov 5 22:00:10 2025 GMT
Subject: CN=43e16c1c830c368609437c6433589b6b7d238233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:62:84:f6:67:d3:3e:50:e4:07:b6:46:7b:0e:
ba:af:cd:d6:ea:19:ce:33:90:17:0f:13:ce:06:09:
99:d8:e1:14:4a:c9:a7:16:ef:d6:fa:0d:60:5d:7b:
2d:60:7a:65:a0:7e:17:27:a3:24:18:62:0e:33:b2:
fc:30:f1:9a:70:9c:08:9b:60:8b:88:fc:40:1f:2b:
a5:80:1f:51:64:09:a6:47:cc:27:89:f9:05:f6:ec:
fe:02:14:64:36:94:82:f8:bb:3a:99:8f:91:b9:aa:
74:96:d0:b8:b5:c5:a9:1a:3f:87:f0:94:78:81:13:
f0:2e:d6:8d:2e:a4:f8:2a:4c:11:61:7b:1c:7b:dd:
ce:49:07:47:11:e5:e0:64:2b:c0:a1:c1:a9:68:78:
95:8f:49:52:41:d4:1c:ef:1c:1d:e9:a2:bf:5d:c3:
c1:e5:36:1f:63:8a:c4:0e:62:d5:4a:08:29:af:52:
c7:aa:c3:32:03:47:a5:e9:74:34:13:0d:73:53:bd:
c3:bb:68:41:09:df:5e:2a:de:18:58:a4:d0:5c:44:
29:63:c6:82:5c:fe:7d:6c:ad:79:63:af:08:c2:fb:
0f:5e:5d:b2:41:da:dc:80:05:1c:80:98:6a:5f:21:
e5:6a:a9:b7:cf:34:91:17:f2:43:8a:3b:f7:f9:68:
19:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E1:6C:1C:83:0C:36:86:09:43:7C:64:33:58:9B:6B:7D:23:82:33
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e5:0d:e7:b8:bc:b8:0c:52:1e:b5:b9:1b:7c:e2:a0:31:e8:
f0:b1:76:1c:73:c4:70:e2:3b:76:e0:c0:55:ee:12:11:80:f6:
ad:27:e9:c5:67:0d:2d:04:04:9d:fc:03:6e:8f:b3:53:ea:d4:
88:7e:4b:41:ab:a7:10:01:84:dc:c5:37:60:ba:7f:66:dc:be:
28:2f:42:6e:db:79:f1:95:04:02:7b:96:e1:3c:2a:18:40:d9:
95:c3:75:ff:41:e7:e5:a1:8a:18:19:06:de:d1:44:3e:2c:00:
98:01:e8:b2:14:e9:ea:c7:d6:a9:46:52:e8:fd:21:d8:05:93:
f4:61:b9:39:52:bf:d6:c4:16:09:70:e3:ca:06:fe:af:77:8e:
38:f8:82:61:f5:16:92:cc:c7:46:d4:32:40:33:83:ae:f4:39:
b1:88:7f:a7:2d:a1:4a:b3:c3:90:3e:99:75:ae:e1:b5:a4:f9:
8f:36:42:4d:b9:d8:97:98:ea:fd:92:07:ea:7f:5b:dc:dd:94:
92:70:cd:f0:4b:18:de:a7:6b:58:53:b9:b0:43:4b:b8:19:42:
05:19:4d:fb:be:92:6f:c8:18:d4:93:9e:5c:38:af:40:ab:f9:
9d:16:ff:81:b9:6c:92:bf:5b:2b:30:e3:f4:bc:8a:83:ee:22:
56:44:74:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:59:12 2025 by rpki-client