Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft (raw, json)
Hash identifier: I8WOnKKDK6nHs25oM31Tqwo/gau0alktRFxH5YkOa+o=
Subject key identifier: 50:BE:35:C7:0F:18:CA:17:BF:2E:79:4E:9D:09:1B:4F:93:79:1F:E3
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 01988A32D54ABC03778DA9FDF9E2EB6B7A4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
Manifest number: 1622
Signing time: Fri 08 Aug 2025 15:00:43 +0000
Manifest this update: Fri 08 Aug 2025 15:00:43 +0000
Manifest next update: Sat 09 Aug 2025 15:00:43 +0000
Files and hashes: 1: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl (hash: HkMBpaC8LzBD01xZt/UA9CuoBRcP2wHgIFgoYJb81xI=)
2: fl1IqJ22OZD_5WNed1aOqRFU-dQ.roa (hash: Kuo9lPYONUc1nk6pXtWGALeHz/jfanabaBDCbZ+GeWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 15:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:d5:4a:bc:03:77:8d:a9:fd:f9:e2:eb:6b:7a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Aug 8 15:00:43 2025 GMT
Not After : Aug 9 15:00:43 2025 GMT
Subject: CN=50be35c70f18ca17bf2e794e9d091b4f93791fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:05:be:d2:a9:35:9c:86:b9:62:c3:bf:82:fc:
c9:e7:b6:e4:ef:27:e9:05:40:74:b9:fc:96:f9:8d:
b3:2a:eb:4f:12:f6:4d:32:fd:66:ce:b5:38:69:71:
94:43:5a:e0:95:18:3f:79:dd:6d:ab:bc:a2:75:eb:
40:44:1c:36:7c:d5:d8:17:7c:33:c0:68:1d:87:3b:
36:eb:f5:ec:e5:21:28:8f:ea:93:62:c9:bf:ef:e0:
36:e0:11:1a:ea:b3:7d:45:62:90:39:f9:89:ce:3c:
ad:75:a6:90:c1:cd:9b:26:91:f0:39:cf:3c:5f:54:
b3:b9:02:e7:5d:33:db:89:42:a5:8a:0d:d2:42:1f:
0d:fd:f6:28:66:20:6e:29:c1:f8:7e:61:66:21:91:
c3:18:d7:46:e2:25:0b:6a:10:3e:e3:f4:73:46:c6:
35:f6:39:2a:b9:c3:ec:de:5b:95:08:08:fa:e5:54:
5e:f1:9a:f7:56:25:15:c7:ba:2c:97:34:f0:9c:c7:
d1:13:49:aa:c8:83:29:ad:90:cb:a0:80:f0:93:b6:
e0:96:fc:6a:b9:93:23:7b:cd:02:ce:27:53:6c:dc:
d4:7f:85:32:01:f2:f7:f9:23:3a:d5:00:5d:ff:ee:
df:68:3f:e8:b1:0c:08:08:77:ee:bb:5f:6c:5f:ef:
15:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BE:35:C7:0F:18:CA:17:BF:2E:79:4E:9D:09:1B:4F:93:79:1F:E3
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:5f:0f:16:29:a6:96:5c:0b:44:85:ff:58:45:20:3c:ad:1e:
ba:1a:be:8e:9d:81:92:f5:83:7b:dd:1c:fb:7c:7f:9f:e1:37:
f9:d3:54:ca:89:15:1b:44:e5:fe:a1:1d:a0:39:46:cb:6a:84:
6e:95:2c:a6:a4:9e:d9:16:d6:ef:ba:dc:4a:78:4c:b8:4d:7c:
b3:b9:dd:a7:fd:73:7a:ab:06:59:cc:8a:5e:77:2e:9b:45:3f:
b5:73:19:55:5c:a9:94:93:1e:9d:8c:ea:f4:d7:07:f2:6c:3c:
a8:4d:07:8f:6e:db:e3:83:42:6c:3b:29:17:2e:d2:93:ef:af:
cd:d7:3d:22:f1:67:1f:a3:11:20:94:a9:6c:47:9c:2e:df:31:
18:77:c2:0f:af:8a:8a:bd:c9:ec:e0:60:f6:f0:fe:45:53:88:
78:68:e1:b8:01:08:15:d1:21:ae:60:9c:95:86:41:6f:db:0d:
c5:e6:54:7d:ba:16:68:f5:5c:7e:43:8c:2d:b4:8b:73:3b:27:
34:5f:33:dc:fd:a5:30:3b:23:49:d9:1f:da:93:6e:d6:17:ce:
ba:f5:cb:3b:a8:61:b8:15:b3:5e:e9:b2:2e:3a:32:98:fd:be:
b9:ca:40:1e:38:55:18:d7:dc:37:be:6b:6d:81:37:31:24:d7:
29:99:e9:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:02 2025 by rpki-client