Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
File: 3sQzl3xytL5diI9WhT7TGh_x78Y.mft (raw, json)
Hash identifier: v1UGgXauQWzl1uRKcH3MquUwOYv+8HbBRbaLIwaMbIA=
Subject key identifier: 0A:6D:DE:46:98:4E:6A:DE:15:7D:74:72:48:5B:15:E5:12:67:D4:F9
Authority key identifier: DE:C4:33:97:7C:72:B4:BE:5D:88:8F:56:85:3E:D3:1A:1F:F1:EF:C6
Certificate issuer: /CN=dec433977c72b4be5d888f56853ed31a1ff1efc6
Certificate serial: 01989592816EC19381312771C15D658268DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3sQzl3xytL5diI9WhT7TGh_x78Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
Manifest number: 0D08
Signing time: Sun 10 Aug 2025 20:01:03 +0000
Manifest this update: Sun 10 Aug 2025 20:01:03 +0000
Manifest next update: Mon 11 Aug 2025 20:01:03 +0000
Files and hashes: 1: 3sQzl3xytL5diI9WhT7TGh_x78Y.crl (hash: 2Hxn98xWzsWl8YwTz/SLAUz9C5aJwtgJoHHHzekUpq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3sQzl3xytL5diI9WhT7TGh_x78Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:81:6e:c1:93:81:31:27:71:c1:5d:65:82:68:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dec433977c72b4be5d888f56853ed31a1ff1efc6
Validity
Not Before: Aug 10 20:01:03 2025 GMT
Not After : Aug 11 20:01:03 2025 GMT
Subject: CN=0a6dde46984e6ade157d7472485b15e51267d4f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d8:23:20:05:45:03:7e:d5:0c:9c:36:02:02:
9e:24:9e:30:8c:9e:2a:78:a4:21:bc:11:a8:f0:0c:
29:c5:4c:e0:32:fd:18:f9:8c:c9:30:3f:97:da:76:
b9:07:98:56:75:30:59:ac:6e:37:0b:b9:5a:22:00:
ca:10:8d:2d:d2:4a:51:e7:bb:bd:ba:b6:23:b4:17:
af:25:2f:e0:4f:fe:c0:39:3d:05:93:bc:6d:b9:19:
15:86:61:fe:f3:49:0d:52:67:b6:17:69:c1:04:7c:
bc:eb:42:a4:30:99:90:7a:1a:3f:66:af:1a:4a:8f:
bd:e3:aa:ce:dd:b5:28:30:09:2a:9b:8b:b3:10:16:
74:77:35:2f:b6:bb:41:60:c5:cd:c5:ed:21:81:e0:
9e:52:3b:7e:e1:e4:56:40:ec:8c:c0:5f:de:92:63:
bf:4d:c2:9a:15:91:bc:4a:10:b3:2f:66:b5:89:9b:
3b:10:e5:b5:2e:34:68:7f:73:8a:59:b6:2b:b4:c2:
c3:03:e1:81:45:95:2b:fd:4e:ad:6d:1a:58:3b:34:
0e:dc:b4:7d:6c:3b:67:05:83:63:8e:ee:e2:c8:c2:
33:b3:00:1b:4e:4d:3d:e9:d3:f5:e2:66:84:52:a5:
b5:77:6c:88:1b:49:f7:af:2e:a1:62:2c:43:fb:17:
49:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:6D:DE:46:98:4E:6A:DE:15:7D:74:72:48:5B:15:E5:12:67:D4:F9
X509v3 Authority Key Identifier:
keyid:DE:C4:33:97:7C:72:B4:BE:5D:88:8F:56:85:3E:D3:1A:1F:F1:EF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3sQzl3xytL5diI9WhT7TGh_x78Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:71:de:c9:a3:a0:d0:dc:84:1f:a8:6c:7c:f9:c0:8c:cc:86:
5a:af:fb:6a:4a:ac:e5:58:5a:26:10:34:fd:5e:b3:97:b3:17:
8b:21:e9:04:2d:76:86:52:76:24:a3:60:b6:eb:ba:f8:db:28:
45:f3:bb:9f:6e:28:aa:b8:07:62:fc:f0:db:e8:bf:74:be:45:
c8:e2:f0:0a:4e:31:14:e8:77:81:df:78:c9:0d:12:dc:6e:d3:
83:84:7a:ac:7b:2e:4d:df:66:5b:f7:13:cd:eb:33:b2:af:8a:
68:ec:bf:72:11:20:2f:7b:5d:d7:53:e4:09:9f:65:db:a8:55:
63:26:60:9c:89:06:0a:86:96:cb:56:90:b7:6a:eb:e0:01:4d:
b6:49:7a:fc:0e:da:5d:09:d3:ad:a2:0b:0c:99:cf:2e:c8:40:
f6:37:6e:8c:74:8a:4b:a3:3b:3f:da:df:7e:17:24:77:b2:c7:
48:e7:21:81:6e:56:f7:b5:98:24:ff:01:a6:49:88:bb:aa:48:
c5:8c:18:d3:95:c6:ec:b5:ac:f9:21:01:b0:8b:e0:94:4d:c9:
1a:59:79:7b:e1:a1:7d:87:91:b2:51:4a:a5:1f:5d:fd:db:0b:
1f:14:1b:0b:af:ca:be:75:5e:42:85:11:20:73:e0:14:68:20:
5c:d8:b3:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiVkoFuwZOBMSdxwV1lgmjcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYzQzMzk3N2M3MmI0YmU1ZDg4OGY1Njg1M2VkMzFhMWZm
MWVmYzYwHhcNMjUwODEwMjAwMTAzWhcNMjUwODExMjAwMTAzWjAzMTEwLwYDVQQD
EygwYTZkZGU0Njk4NGU2YWRlMTU3ZDc0NzI0ODViMTVlNTEyNjdkNGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9gjIAVFA37VDJw2AgKeJJ4wjJ4q
eKQhvBGo8AwpxUzgMv0Y+YzJMD+X2na5B5hWdTBZrG43C7laIgDKEI0t0kpR57u9
urYjtBevJS/gT/7AOT0Fk7xtuRkVhmH+80kNUme2F2nBBHy860KkMJmQeho/Zq8a
So+946rO3bUoMAkqm4uzEBZ0dzUvtrtBYMXNxe0hgeCeUjt+4eRWQOyMwF/ekmO/
TcKaFZG8ShCzL2a1iZs7EOW1LjRof3OKWbYrtMLDA+GBRZUr/U6tbRpYOzQO3LR9
bDtnBYNjju7iyMIzswAbTk096dP14maEUqW1d2yIG0n3ry6hYixD+xdJNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFApt3kaYTmreFX10ckhbFeUSZ9T5MB8GA1UdIwQY
MBaAFN7EM5d8crS+XYiPVoU+0xof8e/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3NRemwzeHl0TDVkaUk5V2hUN1RHaF94NzhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80NTZhODUtYjdhMS00MTgzLWE2NGYt
MjIzZjUwOGMwNTVhLzEvM3NRemwzeHl0TDVkaUk5V2hUN1RHaF94NzhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80NTZhODUtYjdhMS00MTgzLWE2NGYtMjIzZjUwOGMwNTVh
LzEvM3NRemwzeHl0TDVkaUk5V2hUN1RHaF94NzhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVnHeyaOg
0NyEH6hsfPnAjMyGWq/7akqs5VhaJhA0/V6zl7MXiyHpBC12hlJ2JKNgtuu6+Nso
RfO7n24oqrgHYvzw2+i/dL5FyOLwCk4xFOh3gd94yQ0S3G7Tg4R6rHsuTd9mW/cT
zeszsq+KaOy/chEgL3td11PkCZ9l26hVYyZgnIkGCoaWy1aQt2rr4AFNtkl6/A7a
XQnTraILDJnPLshA9jdujHSKS6M7P9rffhckd7LHSOchgW5W97WYJP8BpkmIu6pI
xYwY05XG7LWs+SEBsIvglE3JGll5e+GhfYeRslFKpR9d/dsLHxQbC6/KvnVeQoUR
IHPgFGggXNizjA==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:11:44 2025 by rpki-client