Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json)
Hash identifier: cz0BhkTdgioEROqqR93u0dcbqzK6zw3ynSvX059RVc0=
Subject key identifier: 52:F2:19:71:57:C3:73:3C:62:2A:C7:7D:C6:AA:EE:CA:57:DF:E5:90
Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Certificate serial: 019A5074B3D91E3A28734B4573F0F1F3BFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
Manifest number: 1719
Signing time: Tue 04 Nov 2025 20:00:16 +0000
Manifest this update: Tue 04 Nov 2025 20:00:16 +0000
Manifest next update: Wed 05 Nov 2025 20:00:16 +0000
Files and hashes: 1: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: AbuxwZjvVlMkJ+ew5NBldMNh/ytVheAfJkVBRXd+88U=)
2: K0TFEKD6Jt4eOFvjhXpLcR-sKAw.roa (hash: DiTuJ8zdptPdKEXMu7Rx5XzUhg/taulk9eNvKwAnd+E=)
3: Low4CRi4iGKYokty-NINmJn09rg.roa (hash: Mly1uM7PqUcjuRWWihLVa+ejMa5zwEjs5HqRkIM9ZCc=)
4: TUldFuXRlNkhcxG2k3pbkLp8w6k.roa (hash: u8w+hKuVRJcapFna3Gt95nB+zwn2rJ1IH60Do+ZSEr0=)
5: VFLtaw7ddcrkuS71SLZjd28hT9Y.roa (hash: wkImuoriz8/Wt+wr39TPtXLgxrVgYHqbWY2XyO00qX4=)
6: fWDdDEZ5-7TJ7ifcAQ9Kizx3VI0.roa (hash: 9iAjE9rwQQFIjLwRuw0Wl4wwOwQae4btRIJRt6LJVxE=)
7: iYMgW4EcYcU5AKm4CceLlPmJSsA.roa (hash: 7zWW49XDo1LsXGWIP2om4UTMjsubF7Ml4DbV3OJ7N00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:74:b3:d9:1e:3a:28:73:4b:45:73:f0:f1:f3:bf:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217
Validity
Not Before: Nov 4 20:00:16 2025 GMT
Not After : Nov 5 20:00:16 2025 GMT
Subject: CN=52f2197157c3733c622ac77dc6aaeeca57dfe590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2b:8f:e8:a6:0e:67:51:ea:d3:61:93:5c:6a:
57:a5:20:df:11:a3:9a:20:fb:e6:19:d1:ee:b5:e8:
e2:8e:0f:ed:fb:5a:a6:62:4f:11:3c:dd:80:c6:cb:
21:12:ea:20:fb:20:e2:e9:ed:ee:d0:05:ba:49:2e:
84:85:cf:95:76:e0:dc:66:60:50:e4:5f:aa:4a:2e:
99:6f:d4:90:a7:38:82:e8:c8:76:15:ad:6c:13:75:
eb:62:38:88:c5:a5:1a:3b:04:87:6f:cc:43:94:66:
48:64:0a:f1:27:60:bd:85:00:a6:08:b4:1c:bc:4f:
e9:ad:56:f4:94:e2:54:c6:7c:7d:01:b1:c1:d9:57:
c6:72:4d:77:99:c9:46:07:91:5d:3c:06:a3:2b:db:
ed:d9:c3:fa:e1:d5:74:61:df:9b:a6:29:e5:ca:5d:
59:ea:6f:37:6e:a6:77:d5:74:50:3f:ad:9f:2e:2e:
4b:a8:3c:b5:60:e6:a8:d3:9e:61:39:ac:ce:dd:a0:
d2:5b:0f:49:1e:61:cc:21:dc:af:a4:5e:b2:50:bb:
2d:e6:32:d6:aa:94:cf:f2:d3:d2:f7:2e:a6:fb:4d:
38:1b:e8:eb:97:6f:d6:75:fb:a6:91:40:e0:16:0b:
d3:49:cc:51:0c:6a:f6:d1:37:59:f3:4f:58:c8:10:
18:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F2:19:71:57:C3:73:3C:62:2A:C7:7D:C6:AA:EE:CA:57:DF:E5:90
X509v3 Authority Key Identifier:
keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:bf:65:4f:c1:f4:9b:78:a6:d1:db:94:6e:87:42:e5:96:7e:
93:e1:79:d2:b2:c4:85:bd:8a:e4:e2:c0:de:9b:02:26:8a:c0:
3d:71:17:69:92:07:3b:bc:ff:44:89:02:7f:60:e9:88:2b:17:
65:8b:ba:77:b5:45:fe:7b:0a:61:b9:a5:fe:22:16:b5:e4:b3:
57:15:c3:46:78:4f:0f:8f:13:1c:46:9a:8b:f7:c5:fe:9b:99:
3b:82:74:47:62:3f:2b:db:1c:b6:a2:e3:2a:a1:d6:46:cc:cf:
52:fa:d5:ff:68:30:ae:e1:68:7c:b3:a6:ca:4e:f1:32:e5:bf:
3a:67:04:48:e2:46:dc:44:58:27:20:8b:a8:69:7c:b5:a9:ca:
9f:6d:53:98:50:91:bc:56:e2:91:a1:a6:06:14:e1:00:e4:96:
0b:92:16:a2:91:ef:60:33:58:56:36:69:bf:64:63:35:a9:65:
9d:d6:02:95:24:a6:70:66:e4:54:3d:14:d5:c2:be:b2:c4:ed:
45:3b:92:48:e5:30:c9:79:3c:1d:a7:d3:2a:ec:71:73:fa:6f:
ca:ec:85:e5:94:75:88:24:bc:eb:ca:8f:f7:64:b0:47:ef:df:
ba:a4:2b:fb:58:25:f8:a3:db:45:15:cb:43:12:5e:cb:83:8e:
43:e6:a4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:59:33 2025 by rpki-client