Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
File: 3c6wiktA8fheTroXzcfIPke7WX0.mft (raw, json)
Hash identifier: ZB8iq7Uy+0vBf6yekoLMO1JQpcXZsa9d7zLnPUqT+Qo=
Subject key identifier: FD:85:CE:0A:1A:8B:FD:A6:2B:58:46:99:C0:F6:2C:DE:BB:50:C9:02
Authority key identifier: DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
Certificate issuer: /CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Certificate serial: 019A4F99037B44C386D94FA62FADCCBDB789
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
Manifest number: 0C82
Signing time: Tue 04 Nov 2025 16:00:19 +0000
Manifest this update: Tue 04 Nov 2025 16:00:19 +0000
Manifest next update: Wed 05 Nov 2025 16:00:19 +0000
Files and hashes: 1: 3c6wiktA8fheTroXzcfIPke7WX0.crl (hash: jnSjigy0Tl7MqTe/JkKnTYdFSLRCOIU5hX32VIkzk9A=)
2: wkcnsTzQjgo9eEySS50APSZKqWQ.roa (hash: SKv++65s2nAU0vbkJDBqrGiZUMw6xX7YKBnglQkJRuE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:03:7b:44:c3:86:d9:4f:a6:2f:ad:cc:bd:b7:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d
Validity
Not Before: Nov 4 16:00:19 2025 GMT
Not After : Nov 5 16:00:19 2025 GMT
Subject: CN=fd85ce0a1a8bfda62b584699c0f62cdebb50c902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:eb:d0:b6:1e:de:54:c8:f3:8a:93:82:24:68:
76:16:84:53:79:d7:79:8a:a0:e1:37:8c:a3:7c:c3:
14:c7:29:11:c7:32:1c:ba:83:ae:a6:b8:e5:35:96:
a1:9c:00:02:f4:57:34:31:57:36:da:67:89:b3:5d:
db:73:0d:20:b8:7f:84:f0:44:88:b9:e3:d2:16:3b:
81:9d:71:29:b6:27:88:61:7f:30:0e:60:46:53:c1:
87:4f:a1:5d:00:20:42:1c:2b:0e:af:2f:ae:f5:68:
58:f6:cc:b0:9b:bd:a7:ec:dd:43:92:f6:9a:1e:27:
c7:b2:8a:c5:6c:e3:95:4a:54:eb:df:33:19:f1:78:
fe:b8:3a:36:99:01:65:a7:4c:17:4b:a8:e8:57:e8:
23:eb:d6:71:3f:f0:ab:15:4a:0d:95:6c:09:4b:bd:
76:7c:90:47:a7:d8:09:67:cc:85:3f:c1:85:5a:0e:
ff:6c:9b:45:b2:bc:cd:ba:d7:b8:a3:40:cd:08:f2:
f0:d3:81:58:33:bb:42:10:97:a2:33:27:87:64:f1:
77:22:bd:f4:63:42:0a:df:7d:e8:5f:22:da:d0:40:
60:1f:24:7c:f3:4e:d3:38:10:d6:ad:f6:b5:64:bd:
6e:c8:bd:e3:95:8c:a2:38:59:cc:60:2b:8a:9c:20:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:85:CE:0A:1A:8B:FD:A6:2B:58:46:99:C0:F6:2C:DE:BB:50:C9:02
X509v3 Authority Key Identifier:
keyid:DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:84:a0:f8:be:ae:71:e5:0c:7a:2e:4d:1e:b6:9c:de:e4:21:
21:10:48:5c:8a:ab:6f:9c:70:b3:3b:99:2e:dc:3b:e9:1b:b7:
7e:52:30:56:fb:96:b7:58:e8:8d:d8:f0:1c:83:36:ae:a9:48:
a2:cc:98:6f:29:8c:d5:b4:ba:a5:52:b1:b9:6a:6e:2a:e9:0e:
35:6b:48:5a:a8:c5:36:7e:cd:08:3b:d1:01:dc:9c:ae:3a:5a:
b3:87:bd:5a:9a:9a:53:2b:fc:75:44:b9:9a:ad:c4:1f:67:a9:
45:7d:1f:e5:15:dd:ad:a9:31:0e:06:2d:d6:0d:64:bc:38:1a:
33:4f:cb:ef:8a:93:2e:dd:4c:27:47:44:c3:73:69:6c:4a:ea:
44:44:85:5a:71:4b:a6:e4:11:8c:1c:52:3f:c0:39:9d:43:e1:
41:fa:47:18:9a:b7:29:d2:31:50:ac:ed:7d:26:53:cf:8c:3c:
85:b9:b8:63:0d:e4:c2:71:a1:1b:dd:6a:32:f9:9a:74:c6:3f:
a2:22:16:55:f0:f6:29:da:ef:58:b0:5a:85:55:40:47:0d:8a:
0f:21:9a:23:92:b5:c3:35:21:e1:ce:d7:d9:14:41:e3:b6:ff:
88:42:4a:73:13:16:6c:04:71:f3:ac:6f:2f:a2:5d:62:77:c9:
0c:eb:1d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:08 2025 by rpki-client