Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
File: 3o44GHrnDLx77WlXWfDgMpn7swI.mft (raw, json)
Hash identifier: uv7lpkVZ0EydzAFNaapj07lV6FjdsbAW4l9yR7hIFh0=
Subject key identifier: B4:32:C2:31:B1:41:45:30:FE:18:C6:01:EB:64:9C:67:55:15:26:02
Authority key identifier: DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
Certificate issuer: /CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Certificate serial: 019A511998774ED49916F933EE26CB55914E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
Manifest number: 0396
Signing time: Tue 04 Nov 2025 23:00:22 +0000
Manifest this update: Tue 04 Nov 2025 23:00:22 +0000
Manifest next update: Wed 05 Nov 2025 23:00:22 +0000
Files and hashes: 1: 3o44GHrnDLx77WlXWfDgMpn7swI.crl (hash: PW7Y5zc4I4tVIgXue4hc40L0ZOfJze3YevdOx/emLPA=)
2: wSO8Qf5_v1p-oNDifbsTI9tUaPY.roa (hash: t8VFb4R1YuauyoB16s9G5smfDaNXuP879i5idHgDRZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:98:77:4e:d4:99:16:f9:33:ee:26:cb:55:91:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Validity
Not Before: Nov 4 23:00:22 2025 GMT
Not After : Nov 5 23:00:22 2025 GMT
Subject: CN=b432c231b1414530fe18c601eb649c6755152602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:94:28:7c:5d:bf:cb:ab:b8:89:d9:6c:43:24:
1d:bf:71:b5:9e:6a:df:0e:3e:5a:b0:99:dc:e6:b5:
c8:93:4f:27:1a:18:e2:f5:66:dc:66:8c:04:e4:4a:
6c:0b:bb:9f:3c:c8:5c:51:42:13:2b:be:90:8c:58:
c2:df:80:61:b3:1a:e6:7a:b2:7b:29:95:e8:47:24:
6f:72:92:41:48:6f:4c:c6:91:f3:eb:03:57:d8:c7:
1b:e6:88:75:ae:2f:2d:45:58:b7:e1:30:b6:7a:bd:
61:aa:b2:ec:bc:fd:f1:e9:00:40:90:21:ce:9a:25:
fc:39:a7:27:ac:57:c0:22:4c:f8:41:9f:06:5b:6a:
e2:4f:d6:c9:4a:8f:a7:d8:04:95:0d:a6:40:13:78:
ba:ff:d0:ee:1b:08:89:c8:89:e0:bd:6a:dd:d9:53:
89:65:30:71:a7:82:b2:16:0a:10:08:1c:5d:13:90:
90:ae:5d:84:18:d8:5d:e1:4f:bf:ce:c8:a0:29:c9:
9b:60:eb:15:0e:c2:6c:75:df:99:ce:70:12:7a:bb:
91:ac:09:59:f4:ed:99:a3:9e:11:2e:44:04:a6:e1:
1a:e8:d8:c3:6b:25:c5:2e:7b:67:be:8e:c4:16:b6:
9e:59:7e:41:10:19:12:05:ef:d0:e1:d8:44:04:12:
7f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:32:C2:31:B1:41:45:30:FE:18:C6:01:EB:64:9C:67:55:15:26:02
X509v3 Authority Key Identifier:
keyid:DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:28:4b:2d:a4:05:cc:3b:ff:33:c1:6e:a5:88:1b:fe:39:1b:
d4:ff:63:c9:ca:3f:0c:23:b3:68:3a:71:56:56:c3:13:43:b9:
8a:2e:bc:03:7a:41:38:63:9a:ac:98:cf:22:c1:c4:a8:d6:68:
3d:b1:57:00:b4:0f:f6:b6:be:c0:04:79:96:bb:4a:6d:ed:a3:
c6:59:79:e0:67:f4:27:b2:28:0f:78:c1:cd:94:ab:f4:15:d9:
91:b1:1b:eb:ca:d1:34:bd:54:df:95:48:b5:60:10:b8:b6:42:
11:8d:92:31:8d:83:da:38:87:12:6a:3f:2b:23:97:e7:7b:76:
c9:3e:e0:8d:45:58:d6:72:19:25:af:ff:86:df:f0:7a:61:87:
59:31:4d:29:a0:5e:55:36:9e:fb:4b:60:68:7b:f6:a6:27:41:
39:08:33:92:c7:54:58:e1:87:f8:c2:5a:69:66:bc:f9:3f:3f:
a8:e7:bd:1e:7c:66:d5:1c:e3:7d:59:96:a3:d9:44:fe:25:d6:
e4:07:30:bb:92:46:4d:de:f8:68:62:49:8c:39:31:f7:b0:9d:
9f:d4:83:06:d3:43:65:2b:8c:71:42:6a:ef:ce:42:97:99:8b:
1f:dc:1d:75:ab:88:f4:8b:0e:da:43:c3:30:83:05:0c:e8:3b:
de:8d:8a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:33:07 2025 by rpki-client