Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: 6AhvbCvEE9SId1MvcmCtbGMXR6ip96rGCN4rh5OIU/g=
Subject key identifier: 3E:58:9E:0B:B2:6D:60:43:4A:8E:1A:9C:0B:EF:DD:EA:13:83:79:8F
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 0198933667A045DECF8C817E0F241294A12D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0A98
Signing time: Sun 10 Aug 2025 09:01:12 +0000
Manifest this update: Sun 10 Aug 2025 09:01:12 +0000
Manifest next update: Mon 11 Aug 2025 09:01:12 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: RRRzw5AohXhOUcCtzIRpYCBzVcWf2HdA0opMIcsAfDk=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:67:a0:45:de:cf:8c:81:7e:0f:24:12:94:a1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Aug 10 09:01:12 2025 GMT
Not After : Aug 11 09:01:12 2025 GMT
Subject: CN=3e589e0bb26d60434a8e1a9c0befddea1383798f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:81:01:56:fb:7f:2a:f9:1b:c2:cd:c5:a0:7b:
72:fb:e0:ae:c6:f6:35:73:1d:ff:40:10:3a:8c:3d:
93:ed:7c:d0:f5:e2:5b:33:b9:d7:32:05:35:9a:4a:
03:d9:e0:24:be:95:c6:6e:8b:8c:56:68:ed:54:ea:
ac:dd:5e:58:4e:66:5e:7c:8e:02:7a:31:d9:93:22:
6b:28:21:66:f0:d9:54:dd:f5:31:92:0f:01:15:23:
f5:46:86:43:47:ba:7a:8d:41:f9:45:ac:cb:c4:9d:
88:96:dd:47:40:4f:1f:17:b0:84:9b:69:f3:5f:b0:
22:41:d2:bb:00:18:ed:c8:82:9d:17:4d:67:1a:82:
d8:ea:e2:68:50:4a:5c:06:2e:2a:32:86:86:37:81:
c4:95:a1:14:66:a3:b9:9e:1d:67:5c:ff:21:d1:a0:
1c:d1:3f:d2:d8:a3:0e:8b:b8:2e:3f:98:b0:77:d1:
7f:8a:0f:6b:a3:da:68:b4:d9:8e:45:0e:31:c0:52:
1b:f9:24:62:18:f7:f4:2d:a8:f8:82:c4:25:35:07:
d9:3a:6f:6d:4f:c3:f2:03:43:3c:ff:83:c9:41:24:
68:c0:92:ba:43:29:58:69:05:77:6c:af:72:9a:9b:
45:ab:2c:b7:2a:02:6d:e4:a4:d0:29:ef:af:e6:8a:
1e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:58:9E:0B:B2:6D:60:43:4A:8E:1A:9C:0B:EF:DD:EA:13:83:79:8F
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:be:49:66:aa:70:9c:19:d4:1f:3f:3b:f5:26:46:f3:6f:c3:
11:3f:ac:5f:75:0e:0e:6d:59:a4:c1:38:2e:8e:b2:99:d9:60:
d2:80:78:6a:fd:5c:13:d0:3d:d2:0a:5c:24:42:d7:7a:3e:94:
84:e6:49:94:bd:7f:85:bd:30:8d:64:c8:19:72:9c:80:f5:02:
87:aa:29:00:de:d7:15:d7:55:c4:a7:6e:13:45:27:ea:5d:69:
cf:26:32:6c:60:f9:c9:07:21:c8:2c:88:a0:44:89:61:83:73:
4a:24:7c:93:d8:f2:10:ec:69:11:fb:b5:7a:7c:88:d8:91:0a:
4c:18:19:e3:c2:5e:17:cb:4c:b7:1f:1d:5b:35:db:0b:f4:f6:
f6:41:03:7c:d3:4c:75:85:5a:60:30:37:89:93:58:84:4f:62:
14:a1:a2:2a:91:8c:2c:f2:2a:e0:ee:18:b1:2f:55:e7:dc:22:
62:8f:fd:af:8c:40:18:a8:ea:8d:cd:0b:45:5e:b4:af:b1:a1:
03:64:d2:f3:ea:7d:97:f9:ec:22:32:f5:87:eb:89:ee:18:dd:
5a:a6:1b:d4:80:22:9d:76:1d:81:b5:a2:2b:f4:a1:96:9b:5a:
ba:fa:8e:73:bf:27:c4:cd:90:9f:85:f1:19:5f:00:f2:d6:30:
ff:27:9b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:01 2025 by rpki-client