Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
File: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft (raw, json)
Hash identifier: JmZzHV5aODvEvK9FCcLNW354bsonuCpGLcvC69Iy8zo=
Subject key identifier: 25:4C:A6:DB:0F:3A:00:58:05:BA:83:A7:FF:72:4E:43:F7:3E:FC:6B
Authority key identifier: DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
Certificate issuer: /CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Certificate serial: 0198879F5D38CF226443460CDBD10F7FBD7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
Manifest number: 161C
Signing time: Fri 08 Aug 2025 03:00:24 +0000
Manifest this update: Fri 08 Aug 2025 03:00:24 +0000
Manifest next update: Sat 09 Aug 2025 03:00:24 +0000
Files and hashes: 1: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl (hash: aYXEVH85bKgP75yb+IH6heLxKBYfgHDOf93eHnF+sGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:9f:5d:38:cf:22:64:43:46:0c:db:d1:0f:7f:bd:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Validity
Not Before: Aug 8 03:00:24 2025 GMT
Not After : Aug 9 03:00:24 2025 GMT
Subject: CN=254ca6db0f3a005805ba83a7ff724e43f73efc6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:76:95:9d:bf:14:e5:8a:4e:af:62:9a:92:
48:73:e0:a2:cd:16:ec:43:c9:41:9e:4f:5d:15:f4:
9f:6c:54:e6:fe:b7:5a:5d:d2:9d:7d:c3:59:f8:ce:
a2:06:9b:5c:7e:48:f3:28:f9:0b:25:da:02:14:7c:
63:c5:b8:ca:34:01:69:00:06:73:7e:4b:d6:63:bb:
da:24:79:12:08:5a:6c:14:b6:9c:6d:2d:c0:b7:bb:
fa:41:54:b8:12:df:67:20:09:c8:b3:24:d3:f0:b8:
0c:b4:f5:95:75:ae:77:1d:74:0b:81:34:d3:a5:62:
a0:37:c8:60:8c:f0:4e:a7:cc:8a:e6:d4:9a:e1:06:
16:f6:85:f1:2f:30:c5:3f:bd:c5:62:99:ac:df:cc:
e8:ce:96:3c:ff:15:b0:68:96:99:88:bd:0d:63:c4:
aa:ea:0d:72:fb:fa:11:49:46:c9:62:89:ed:cf:47:
85:59:f6:74:e5:f1:39:2b:88:5e:cd:fa:03:6c:04:
a1:2e:f4:06:54:b7:9c:07:95:f8:5b:bb:8a:45:df:
21:35:b2:b6:09:93:6c:37:cc:17:8a:58:c4:17:f7:
98:d6:5a:22:a0:cc:ea:b0:d2:0f:cf:2a:e2:03:ec:
a1:90:20:52:2b:57:0f:fb:72:36:e2:76:39:49:03:
57:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:4C:A6:DB:0F:3A:00:58:05:BA:83:A7:FF:72:4E:43:F7:3E:FC:6B
X509v3 Authority Key Identifier:
keyid:DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:42:b6:bf:29:ac:41:92:93:d2:8e:23:f2:47:d4:21:28:08:
70:74:a8:ef:f5:ea:20:53:ed:da:29:17:6a:cd:b5:30:b8:b4:
c4:62:a3:19:82:94:76:e1:d3:ea:56:1b:20:48:0c:00:ea:1c:
62:fc:b7:bc:2e:db:41:1d:a2:9b:db:cd:0f:14:eb:13:6d:6e:
54:25:39:d3:b2:de:22:24:22:87:8e:8a:2e:85:4b:07:9b:1f:
77:7b:00:51:f1:41:f7:04:25:7b:80:43:a3:58:b2:45:a6:5e:
0e:eb:f7:6c:19:92:c8:6b:4c:a5:83:3d:71:75:c9:90:3b:80:
d2:6b:bb:7d:8c:e6:0a:1d:e3:c8:e7:6b:34:ff:bf:88:b0:63:
01:02:99:20:67:d7:e0:0d:b3:2f:70:d4:d2:b3:ee:5c:99:b9:
2f:af:8f:4c:c8:0b:66:09:38:43:ea:07:3d:a2:56:a5:b3:5f:
90:94:4b:ca:28:df:aa:24:7f:a9:86:c0:e6:ec:e1:b5:6c:48:
4d:6c:35:eb:7c:a9:0b:fc:8d:b4:4b:06:3f:b4:c0:65:01:da:
c7:82:8f:58:54:5c:be:7d:55:ab:93:a8:e4:68:fc:a5:a0:a4:
15:7c:8b:4f:87:98:62:35:9a:00:09:ff:94:26:8f:a0:9a:92:
91:90:a1:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiHn104zyJkQ0YM29EPf718MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkYjdiMDAxOWUxOWYxMTJmNGQyYmNmZDZlYTEyZDkwODFm
YzU4N2UwHhcNMjUwODA4MDMwMDI0WhcNMjUwODA5MDMwMDI0WjAzMTEwLwYDVQQD
EygyNTRjYTZkYjBmM2EwMDU4MDViYTgzYTdmZjcyNGU0M2Y3M2VmYzZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywl2lZ2/FOWKTq9impJIc+CizRbs
Q8lBnk9dFfSfbFTm/rdaXdKdfcNZ+M6iBptcfkjzKPkLJdoCFHxjxbjKNAFpAAZz
fkvWY7vaJHkSCFpsFLacbS3At7v6QVS4Et9nIAnIsyTT8LgMtPWVda53HXQLgTTT
pWKgN8hgjPBOp8yK5tSa4QYW9oXxLzDFP73FYpms38zozpY8/xWwaJaZiL0NY8Sq
6g1y+/oRSUbJYontz0eFWfZ05fE5K4hezfoDbAShLvQGVLecB5X4W7uKRd8hNbK2
CZNsN8wXiljEF/eY1loioMzqsNIPzyriA+yhkCBSK1cP+3I24nY5SQNX2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCVMptsPOgBYBbqDp/9yTkP3PvxrMB8GA1UdIwQY
MBaAFN23sAGeGfES9NK8/W6hLZCB/Fh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2Jld0FaNFo4UkwwMHJ6OWJxRXRrSUg4V0g0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9lZmEzZjEtNzY3MS00Y2UzLTlmZTEt
YTg2ZGY5ODNhNzRjLzEvM2Jld0FaNFo4UkwwMHJ6OWJxRXRrSUg4V0g0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni9lZmEzZjEtNzY3MS00Y2UzLTlmZTEtYTg2ZGY5ODNhNzRj
LzEvM2Jld0FaNFo4UkwwMHJ6OWJxRXRrSUg4V0g0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwkK2vyms
QZKT0o4j8kfUISgIcHSo7/XqIFPt2ikXas21MLi0xGKjGYKUduHT6lYbIEgMAOoc
Yvy3vC7bQR2im9vNDxTrE21uVCU507LeIiQih46KLoVLB5sfd3sAUfFB9wQle4BD
o1iyRaZeDuv3bBmSyGtMpYM9cXXJkDuA0mu7fYzmCh3jyOdrNP+/iLBjAQKZIGfX
4A2zL3DU0rPuXJm5L6+PTMgLZgk4Q+oHPaJWpbNfkJRLyijfqiR/qYbA5uzhtWxI
TWw163ypC/yNtEsGP7TAZQHax4KPWFRcvn1Vq5Oo5Gj8paCkFXyLT4eYYjWaAAn/
lCaPoJqSkZChWw==
-----END CERTIFICATE-----
Generated at Fri Aug 8 10:13:35 2025 by rpki-client