Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
File: 3AXfbkBO-SDmpZKNiWPmpfjWESA.mft (raw, json)
Hash identifier: 7j6kwaMchGBfwL1Dc6xpUJ81iOMxvAkUEo0U8+lOjKM=
Subject key identifier: 99:A4:69:DD:18:37:8E:D2:26:78:4B:07:69:81:1B:8D:56:96:0A:70
Authority key identifier: DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
Certificate issuer: /CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Certificate serial: 019873E3AEF18B15450815B565117D4B45A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 07:02:37 +0000
Manifest this update: Mon 04 Aug 2025 07:02:37 +0000
Manifest next update: Tue 05 Aug 2025 07:02:37 +0000
Files and hashes: 1: 3AXfbkBO-SDmpZKNiWPmpfjWESA.crl (hash: mrUEgOAeqV+xNhYcrT7NLmY/ppg0eeIEO5O5hJQDsvA=)
2: VU0FkvZgVaRI8EGkm-qXkP1h2_c.roa (hash: FXgImtBv7FeA5blXsKdg5pD7MuiscFVJi0Lfx25h6e4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:ae:f1:8b:15:45:08:15:b5:65:11:7d:4b:45:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Validity
Not Before: Aug 4 07:02:37 2025 GMT
Not After : Aug 5 07:02:37 2025 GMT
Subject: CN=99a469dd18378ed226784b0769811b8d56960a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7b:fa:c1:0a:be:1f:ac:53:f6:49:93:58:c4:
8b:dc:47:b5:db:28:e2:9a:6a:63:c3:7a:43:fb:c6:
ac:f1:c2:be:72:d6:e1:a9:a2:05:16:81:c9:71:56:
eb:24:cd:cc:24:b0:fb:f7:98:a3:f5:2c:8e:61:2d:
5b:65:80:a8:39:18:d8:17:b6:8b:64:96:c2:8b:c5:
c8:d7:57:73:fe:86:6d:6c:39:5e:16:31:d3:61:fd:
bc:66:88:84:4d:8b:89:15:27:42:e7:23:2b:bd:f0:
c1:5c:b1:02:7c:c3:70:9e:5c:b4:38:a4:09:25:01:
db:2c:fd:a8:6c:96:5f:cf:96:2c:53:35:71:04:75:
2b:44:e5:86:4a:16:6e:4c:01:30:8a:f8:8f:95:5f:
9e:23:b9:00:c6:75:8d:40:86:e9:b7:0f:d0:18:30:
3a:8c:fc:44:de:38:56:79:a0:0e:08:3a:e0:16:26:
44:5a:ff:8a:c1:b2:ad:dd:09:30:48:84:37:56:68:
89:9b:88:08:36:ab:79:d7:45:88:a1:cc:04:46:96:
2d:d7:31:d5:af:fa:9f:9a:ab:35:f5:00:65:31:84:
a5:41:36:5b:2c:1c:f7:37:71:ca:fb:a2:c7:62:60:
61:99:df:38:c5:ab:06:68:f9:68:d3:d0:c4:42:d1:
b6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A4:69:DD:18:37:8E:D2:26:78:4B:07:69:81:1B:8D:56:96:0A:70
X509v3 Authority Key Identifier:
keyid:DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:f1:72:4b:8b:f4:e1:b9:d8:5c:06:9d:62:87:43:40:af:96:
b5:d6:c3:03:4d:fc:a5:e2:ae:d7:cf:36:d8:66:c2:a3:4a:50:
2c:45:5c:2d:9b:50:82:fa:92:94:a0:8c:11:e7:e6:16:74:3b:
00:97:9d:ff:7e:09:10:45:05:87:99:2f:7f:fe:a2:1b:37:a1:
f0:44:de:bd:d8:61:44:72:95:d7:e0:89:13:a4:5d:7b:6d:43:
34:8d:dd:e6:58:9c:98:3a:cc:79:e5:6b:69:d5:aa:ab:a4:29:
79:68:e8:ad:ab:90:f2:3d:df:02:44:b9:d6:ab:80:86:48:8a:
92:0c:a0:f5:75:1a:7e:cd:fc:92:a2:c4:62:65:1e:88:9f:92:
12:0a:a2:66:76:65:c0:cc:8d:e4:c8:69:b1:c1:fd:b8:e6:c4:
60:d4:65:3d:9e:14:c4:1e:31:09:0f:26:a6:16:18:08:23:58:
3e:a5:36:10:43:ae:5a:04:05:5b:4e:40:2e:bf:24:c7:db:99:
9f:ef:0a:a2:dc:af:28:d6:95:15:34:a1:11:a1:e0:ef:f8:40:
65:7d:dd:ef:b9:27:a2:f2:2d:67:26:77:57:c2:91:9b:0f:77:
a9:26:d2:5b:2b:72:e6:a3:c0:e2:fc:d0:69:dd:55:7b:5a:2c:
4a:57:8a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:32:46 2025 by rpki-client