Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
File: is3dXDDVgOsP7soqFs9cWoslaP0.mft (raw, json)
Hash identifier: Kk7d3ayz84zzWtyg4dWQ27DTEsAECHINxG+/MACXf90=
Subject key identifier: E8:91:DF:98:AE:EA:BF:E9:AF:52:71:06:5E:21:29:F7:E3:35:07:87
Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Certificate serial: 019873065B82E3C5B4480E73200B0443E367
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 03:00:53 +0000
Manifest this update: Mon 04 Aug 2025 03:00:53 +0000
Manifest next update: Tue 05 Aug 2025 03:00:53 +0000
Files and hashes: 1: 1-BU0QGGPOY6StLl6EjdaPUoRp0U.roa (hash: YErgeEfB3mK/ybWEoY6pFZ+o+6uteNHWASk7smyhzI8=)
2: is3dXDDVgOsP7soqFs9cWoslaP0.crl (hash: efIc71mQSe1BlRq7ge6vMArUimHL0APbkVX7tpzGhaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:5b:82:e3:c5:b4:48:0e:73:20:0b:04:43:e3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Validity
Not Before: Aug 4 03:00:53 2025 GMT
Not After : Aug 5 03:00:53 2025 GMT
Subject: CN=e891df98aeeabfe9af5271065e2129f7e3350787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b5:3d:a2:28:31:73:f5:64:27:bd:e0:f1:2b:
74:81:29:c1:64:57:8f:44:c8:51:94:5d:f5:28:47:
88:c6:33:47:11:cc:ff:d9:0f:f0:df:fa:a3:44:74:
cc:dc:66:54:81:46:23:4b:b2:b1:bf:44:5d:fa:4c:
97:bf:30:1a:79:4f:89:a9:9f:b6:b7:c6:ee:19:c7:
38:ff:fe:8f:62:22:0a:0e:47:90:ff:eb:c9:3b:c0:
b4:de:07:20:40:01:75:76:5e:0f:a7:64:6e:8d:11:
a5:8f:92:a2:f7:f8:7b:2a:a7:75:79:54:8e:4b:70:
f6:75:07:a5:18:0a:42:a7:c9:d0:1f:1c:0a:10:40:
8c:df:70:b6:db:f7:2a:2d:0a:46:4d:0e:81:69:d5:
d0:1a:64:b6:c4:57:c7:9e:ac:42:9e:60:00:d6:0b:
f6:fe:62:66:ef:3d:b2:9d:9c:04:4a:22:58:2c:85:
9e:5b:5a:bd:bb:44:9f:19:bc:d4:6d:d7:e5:82:4f:
ba:b0:df:71:42:a1:31:a7:f5:72:4b:fa:b0:b3:6a:
a0:76:e5:0c:59:2f:7f:d8:57:69:1e:1e:f1:7b:9e:
4f:8e:62:ef:2f:06:09:01:9f:15:e1:1d:44:ea:22:
66:c6:8a:01:dd:50:46:ff:78:92:31:67:0f:35:d8:
24:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:91:DF:98:AE:EA:BF:E9:AF:52:71:06:5E:21:29:F7:E3:35:07:87
X509v3 Authority Key Identifier:
keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:46:e1:92:fb:d8:8d:29:29:02:5d:01:a0:bf:07:e1:d3:ed:
9f:1e:53:c5:a6:ec:5e:b3:02:d8:5b:bf:14:14:17:ca:4a:b5:
49:fe:91:93:c8:e0:69:ea:61:a1:33:b1:0d:da:b7:b0:dc:0f:
eb:b8:d6:3b:aa:15:1a:f4:e2:a3:e8:13:41:50:06:7c:d4:98:
a0:b7:6d:1b:43:6b:1b:7c:cb:c3:76:7c:f1:88:b8:16:b7:b0:
7f:32:7e:ed:e6:30:cd:c3:44:5b:82:1b:3a:81:35:de:29:17:
a4:56:59:a3:fa:3a:2d:c9:3e:9f:17:0e:4a:0a:8d:0e:10:8c:
d8:ae:cd:d4:25:da:cd:38:97:0a:60:87:1a:db:8a:0c:a4:6e:
98:87:e5:27:b8:5c:18:b9:68:a8:6f:65:48:a1:c9:07:e8:f0:
91:47:16:3c:50:8c:fb:8d:52:cd:5a:66:67:07:14:d0:d9:4e:
da:4e:61:0f:3a:f1:07:1c:6d:91:96:f9:e5:7b:fc:4b:d8:85:
85:1d:a5:c6:b3:1d:9b:06:b1:7b:54:8c:a3:ec:db:76:87:3c:
f7:f7:9c:56:d4:52:ae:60:81:56:c0:eb:7a:b8:4f:36:ab:4c:
5b:dc:69:45:b2:bf:13:20:2c:a8:76:b6:20:52:49:49:2b:45:
95:94:84:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:40 2025 by rpki-client