Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: aqJhncQB2FaY415Ee6uasy0Ab+YqeimTC6oeF/T3lEQ=
Subject key identifier: 5D:E9:18:F0:C6:00:AD:10:FC:C6:89:A4:39:10:80:79:BC:25:C0:9F
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 019875D249E9226E83C4B3DF030AF6F02967
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0A1D
Signing time: Mon 04 Aug 2025 16:02:52 +0000
Manifest this update: Mon 04 Aug 2025 16:02:52 +0000
Manifest next update: Tue 05 Aug 2025 16:02:52 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: MbD7mH44ai7CTIoEqOw2IgJwTQKulp+aoGPcUvs79dI=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d2:49:e9:22:6e:83:c4:b3:df:03:0a:f6:f0:29:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Aug 4 16:02:52 2025 GMT
Not After : Aug 5 16:02:52 2025 GMT
Subject: CN=5de918f0c600ad10fcc689a439108079bc25c09f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:63:43:56:31:e9:b8:72:e2:9d:e2:fe:64:12:
e6:64:4a:77:b9:88:e7:ad:25:06:8e:7e:4a:fe:b6:
fe:21:d8:33:bb:0e:4c:5f:72:f8:c3:7e:e6:a5:dc:
29:fb:64:e0:7a:44:15:0c:25:e6:a7:cf:c7:ee:79:
55:ad:9b:fe:11:30:ea:59:81:64:5e:1d:5b:bd:99:
a3:3a:5b:c3:5d:fc:80:33:8f:85:98:2f:53:f0:c5:
c4:2a:99:f1:01:42:8e:b6:c0:43:5c:b7:97:85:b2:
97:95:5a:c9:1f:7a:ce:fb:0b:ed:69:55:60:6a:34:
da:e6:73:af:f8:82:b3:4b:8b:0e:07:3a:12:36:41:
50:ee:d9:dc:68:ea:0e:8d:c6:08:c2:11:1f:04:21:
30:1a:e0:9e:3d:7f:bc:76:28:20:ae:e5:b1:00:d9:
c7:cb:8d:97:35:5f:cf:02:d8:45:4b:f6:e2:6d:04:
dd:1b:e6:07:4d:81:5b:24:05:cc:4d:5a:72:83:ef:
ac:ef:28:9c:9f:12:ca:8a:e3:4c:0e:bd:13:7c:f2:
48:33:97:fd:24:de:d9:b3:23:6e:fe:c5:a2:2f:f0:
69:88:6e:b4:4f:70:12:4b:78:35:0b:22:fe:70:9d:
44:23:7f:73:13:44:95:d2:42:b3:9d:76:37:e2:b9:
9e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E9:18:F0:C6:00:AD:10:FC:C6:89:A4:39:10:80:79:BC:25:C0:9F
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a4:ce:21:00:3d:48:f5:0a:cc:62:9e:e6:07:6e:41:04:75:
3a:96:c6:0d:5f:80:67:b3:f3:da:c5:e3:13:1b:3c:4b:da:62:
2b:5b:07:3c:25:2c:92:97:fe:12:ee:26:08:de:39:86:29:70:
9f:14:94:4d:48:e2:63:34:77:c9:c3:70:c9:67:94:b6:f9:a0:
b6:c4:d9:52:07:54:ca:66:a8:7d:07:bc:79:eb:79:54:38:fe:
bf:e6:ae:df:ee:ea:59:17:f8:be:f9:2f:e9:f7:f7:59:9e:1b:
5f:c7:91:d4:dc:52:47:ac:ba:71:02:02:d8:1d:f0:4e:83:13:
f4:64:9a:b9:da:63:2b:e3:06:de:7f:16:39:9d:c8:5c:43:02:
5c:22:eb:a7:5d:2b:5e:69:1b:5c:3b:db:a9:27:91:8c:eb:00:
18:92:ec:e6:53:c6:5e:e1:64:1c:46:07:d8:d8:1b:ea:45:06:
10:3a:44:96:ff:c8:94:92:63:90:77:9b:71:1b:ca:1c:a2:95:
ac:6b:d3:ac:49:d2:c0:b9:fc:be:1b:25:1f:97:c5:2e:3c:de:
2c:a5:64:bb:79:60:78:0d:bb:67:91:68:0a:6c:fc:9b:a5:27:
4c:2c:0a:f4:82:aa:06:c7:19:18:2a:bf:ec:fb:19:4b:82:93:
b3:ed:1d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:11:48 2025 by rpki-client