
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: QP8lAb78Y30VoDLFJtXC+sOBCCtns/ZM/R3HkeV+DZs=
Subject key identifier: 03:B3:44:25:FB:E7:74:CA:0A:7D:F4:8E:52:53:35:FB:DE:C5:EC:50
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019880C248F4720242050FE2BCBE307AA0BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 1441
Signing time: Wed 06 Aug 2025 19:01:12 +0000
Manifest this update: Wed 06 Aug 2025 19:01:12 +0000
Manifest next update: Thu 07 Aug 2025 19:01:12 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: 7twdeAmCxzeYnFMzjGRKGuFNp9DSAGixUS9iDB7mtw4=)
2: WwmcE7wGl7pyI1JEZUrcMqc8ydE.roa (hash: eYdzJRuLYCeHIGBMM52itYWmfWw58ujov0m3EgFoPMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:48:f4:72:02:42:05:0f:e2:bc:be:30:7a:a0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Aug 6 19:01:12 2025 GMT
Not After : Aug 7 19:01:12 2025 GMT
Subject: CN=03b34425fbe774ca0a7df48e525335fbdec5ec50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a0:69:f3:a2:9f:72:65:74:00:12:8b:c2:3f:
23:fd:75:ea:f5:1d:34:a8:02:80:9b:25:05:0e:96:
38:e9:2c:c0:99:bd:7d:34:b0:05:06:c4:12:2a:d1:
9f:3f:9f:bc:9e:cb:13:c5:8f:c7:2a:08:d5:12:5b:
9f:c6:fa:73:ca:9f:e6:bb:37:9e:85:dc:c7:8b:2c:
bd:62:0d:4d:0b:ec:b5:f8:0b:7b:2d:ce:47:7f:3e:
ca:a2:38:36:40:23:90:c8:f2:b8:95:69:9d:ca:36:
ad:15:90:ab:93:29:33:76:fc:6f:2b:e9:fb:37:38:
88:ed:b6:53:94:7f:02:3a:ed:90:80:76:a8:93:39:
4d:00:8e:67:c2:72:65:4d:e7:91:0e:01:af:da:c0:
20:22:4d:d4:fe:e6:db:72:22:17:0d:6a:b0:ab:a3:
a4:3e:00:9a:78:4d:b7:36:cb:f7:a7:d9:9c:cb:da:
fb:75:b5:67:0b:d4:55:b7:e5:bf:d6:89:a2:f6:0f:
52:14:e1:c6:8c:e8:41:b6:dd:f7:77:67:d9:46:2a:
e1:01:4a:8e:18:72:35:18:a0:d3:5e:7f:68:ac:f0:
4f:cd:f3:e2:37:59:83:c4:51:5c:6b:cf:69:8d:bd:
db:94:85:ca:95:8c:9a:14:e6:b4:6e:2e:2a:bb:b8:
19:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B3:44:25:FB:E7:74:CA:0A:7D:F4:8E:52:53:35:FB:DE:C5:EC:50
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:0d:b9:1b:1a:ac:b2:8b:3a:36:d5:39:88:d6:1a:68:ae:ee:
58:18:07:94:57:e3:74:b0:11:38:61:42:fc:36:72:f3:38:21:
2e:9e:56:6f:8b:cc:1f:c1:6a:41:42:59:5c:28:7e:43:30:59:
f3:c1:75:f7:e6:e3:fe:3f:22:94:1d:b2:55:83:ae:6b:3c:69:
b3:35:45:ce:53:7b:69:8e:03:ec:7f:75:5b:c8:0c:d0:be:c2:
4a:56:03:58:80:2d:51:84:41:37:4d:3d:82:5d:63:f6:db:64:
85:2a:e2:b1:83:2d:be:0a:e2:7e:bd:46:f0:c7:f6:c6:7b:20:
41:2b:6a:c0:f1:8b:54:cc:eb:4d:df:4a:96:9b:ed:ed:8a:54:
14:58:81:74:a3:99:6e:96:81:b5:a9:38:c1:9a:bb:f4:06:a2:
85:1b:58:d9:5f:33:76:35:2e:af:b2:3f:b7:9c:2c:4f:d8:bc:
41:f0:cc:fa:a8:14:c0:61:1a:87:33:65:5f:11:7d:52:c7:60:
19:ad:3c:ef:64:47:2f:85:43:71:b9:a7:e2:68:08:95:20:95:
b6:6c:6f:25:63:a1:1d:53:77:36:43:f0:fd:d4:96:85:a6:a1:
3e:3c:dc:ec:d2:b5:c8:72:b9:1d:d0:1e:ea:21:5f:c3:c4:07:
66:7d:e9:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAwkj0cgJCBQ/ivL4weqC/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTJmOTY1YTllYzMzZTJjMmU4N2I2MTYxYmVlZmI4YmUy
ODZjYTMwHhcNMjUwODA2MTkwMTEyWhcNMjUwODA3MTkwMTEyWjAzMTEwLwYDVQQD
EygwM2IzNDQyNWZiZTc3NGNhMGE3ZGY0OGU1MjUzMzVmYmRlYzVlYzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qBp86KfcmV0ABKLwj8j/XXq9R00
qAKAmyUFDpY46SzAmb19NLAFBsQSKtGfP5+8nssTxY/HKgjVElufxvpzyp/muzee
hdzHiyy9Yg1NC+y1+At7Lc5Hfz7Kojg2QCOQyPK4lWmdyjatFZCrkykzdvxvK+n7
NziI7bZTlH8COu2QgHaokzlNAI5nwnJlTeeRDgGv2sAgIk3U/ubbciIXDWqwq6Ok
PgCaeE23Nsv3p9mcy9r7dbVnC9RVt+W/1omi9g9SFOHGjOhBtt33d2fZRirhAUqO
GHI1GKDTXn9orPBPzfPiN1mDxFFca89pjb3blIXKlYyaFOa0bi4qu7gZ9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAOzRCX753TKCn30jlJTNfvexexQMB8GA1UdIwQY
MBaAFN4S+WWp7DPiwuh7YWG+77i+KGyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQt
YjZkMTJhYzY2ODMxLzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8wZjAzNzMtZGI2ZC00Nzk3LTgyMGQtYjZkMTJhYzY2ODMx
LzEvM2hMNVphbnNNLUxDNkh0aFliN3Z1TDRvYktNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOQ25Gxqs
sos6NtU5iNYaaK7uWBgHlFfjdLAROGFC/DZy8zghLp5Wb4vMH8FqQUJZXCh+QzBZ
88F19+bj/j8ilB2yVYOuazxpszVFzlN7aY4D7H91W8gM0L7CSlYDWIAtUYRBN009
gl1j9ttkhSrisYMtvgrifr1G8Mf2xnsgQStqwPGLVMzrTd9Klpvt7YpUFFiBdKOZ
bpaBtak4wZq79AaihRtY2V8zdjUur7I/t5wsT9i8QfDM+qgUwGEahzNlXxF9Usdg
Ga0872RHL4VDcbmn4mgIlSCVtmxvJWOhHVN3NkPw/dSWhaahPjzc7NK1yHK5HdAe
6iFfw8QHZn3pwg==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:29:48 2025 by rpki-client