Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
File: 3o44GHrnDLx77WlXWfDgMpn7swI.mft (raw, json)
Hash identifier: n0VEPwE/DPt08jhxoClsT7+6+EVOSxnKQKK6diHOdAM=
Subject key identifier: E7:81:02:7B:69:BA:6C:4E:65:64:58:A1:78:39:D9:9A:C4:64:11:E1
Authority key identifier: DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
Certificate issuer: /CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Certificate serial: 0198819DAC4BFF51CE1BE4B4CE2F614BCF5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
Manifest number: 02A6
Signing time: Wed 06 Aug 2025 23:00:50 +0000
Manifest this update: Wed 06 Aug 2025 23:00:50 +0000
Manifest next update: Thu 07 Aug 2025 23:00:50 +0000
Files and hashes: 1: 3o44GHrnDLx77WlXWfDgMpn7swI.crl (hash: fRj4vqCYCUUBfPjYRxUuNpS20U7FCl2sGBA3d79rI0E=)
2: wSO8Qf5_v1p-oNDifbsTI9tUaPY.roa (hash: t8VFb4R1YuauyoB16s9G5smfDaNXuP879i5idHgDRZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:ac:4b:ff:51:ce:1b:e4:b4:ce:2f:61:4b:cf:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Validity
Not Before: Aug 6 23:00:50 2025 GMT
Not After : Aug 7 23:00:50 2025 GMT
Subject: CN=e781027b69ba6c4e656458a17839d99ac46411e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1f:f6:b5:11:08:4a:32:a5:8e:04:e6:17:0f:
3e:55:05:76:a3:4e:17:aa:6c:68:12:77:af:67:2c:
1f:33:95:28:02:8e:19:d9:bf:79:ff:f2:d4:3b:c4:
92:f8:27:d8:1f:14:21:d8:de:fa:c8:94:b1:e6:a6:
bc:a2:c7:aa:4f:93:54:a1:b6:8f:34:df:31:26:de:
3b:96:96:af:2a:8d:7c:1e:e5:a3:ec:e7:99:4d:07:
b8:df:d8:22:53:08:63:80:ec:00:0f:99:c0:39:c1:
43:e1:c6:ce:43:c2:60:a2:df:e9:31:da:ee:e2:63:
ee:c4:00:02:fa:0b:94:c4:c1:8e:93:25:a9:7e:bf:
0c:11:66:73:49:54:ff:8e:16:5e:a8:4e:b0:6b:c6:
1a:c8:6e:85:f9:cf:28:50:a4:fa:d5:4f:84:0a:9d:
e0:b0:1e:70:d5:7e:37:a4:d5:54:47:a2:96:03:39:
ce:4e:10:95:6c:ee:d5:77:06:b6:a1:98:1f:c2:ef:
ce:62:4a:b7:20:10:61:18:65:4a:cc:4c:23:44:c4:
58:2f:f0:d8:9d:32:27:e3:98:63:52:23:75:64:a6:
97:77:5b:8b:bd:7d:85:fa:0e:af:12:2d:0e:f1:ed:
22:f8:5c:a5:09:04:2a:0f:9a:96:0b:10:8f:23:22:
bc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:81:02:7B:69:BA:6C:4E:65:64:58:A1:78:39:D9:9A:C4:64:11:E1
X509v3 Authority Key Identifier:
keyid:DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c8:26:0c:1f:6a:bb:4c:7a:a0:61:cc:1f:fa:42:b4:19:02:
74:67:17:9d:64:0d:cf:d2:ca:40:4d:1f:5c:c6:7e:3b:29:d7:
69:ab:0e:ba:b5:1b:83:10:6e:af:53:6b:8d:58:e0:8c:af:1f:
1a:55:59:4f:c8:e0:a0:39:f4:1c:a0:f7:79:be:e8:bc:d8:4d:
e6:4e:df:e9:b6:07:b9:95:ba:ca:f7:31:b6:29:07:87:c6:94:
bf:bf:23:80:00:4f:e1:2b:5f:bb:71:c7:18:b3:11:11:44:63:
a1:60:c6:d4:4a:d9:46:77:be:76:e3:ac:21:2c:ac:41:35:a2:
b4:79:05:b3:34:f3:b5:bd:0e:1f:4f:19:e7:e9:c9:2e:f2:ac:
b6:e3:4a:af:dd:c9:51:0c:32:e8:96:e8:33:72:0e:04:bb:6b:
84:82:5e:11:67:a7:b7:9e:a5:4c:7b:e5:6c:c1:5b:64:91:c2:
45:69:be:c8:2c:c2:4a:9d:fd:d1:bd:f0:a2:ae:c5:ad:85:e5:
60:56:75:d5:39:73:dd:36:3d:75:a2:d2:37:32:87:e5:66:ad:
98:3b:5f:e9:67:3b:d2:11:09:d9:ee:a8:b6:f5:13:67:10:44:
db:f8:18:44:07:79:bd:03:53:22:49:22:53:7b:4d:be:bf:66:
20:c7:7d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:05:45 2025 by rpki-client