Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json)
Hash identifier: Ec9RNw+Dfyg5vrGtaxVtzb/bBeqPvaN0Sg+kDYT1WG0=
Subject key identifier: E3:3F:39:E3:99:99:77:F4:95:9A:19:36:D7:F8:E9:C9:CC:1F:4D:DE
Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Certificate serial: 019891111C4476600000C957C2FB80ACFC9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
Manifest number: A3
Signing time: Sat 09 Aug 2025 23:01:14 +0000
Manifest this update: Sat 09 Aug 2025 23:01:14 +0000
Manifest next update: Sun 10 Aug 2025 23:01:14 +0000
Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: sWqlopQ2ZcjEsdu2+SMwpWrSpb6Ox8Fc+bcJTL82Tbc=)
2: oF0UnfdG9SgR1YrjEvyyzHdI2NQ.roa (hash: C+won2ayhOZhVuYFZ85jDDGUEWPlmXvRmRnHCUNjIgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:11:1c:44:76:60:00:00:c9:57:c2:fb:80:ac:fc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Validity
Not Before: Aug 9 23:01:14 2025 GMT
Not After : Aug 10 23:01:14 2025 GMT
Subject: CN=e33f39e3999977f4959a1936d7f8e9c9cc1f4dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0f:82:91:94:59:a1:a9:c7:4e:95:57:ae:7c:
a8:51:7e:15:a3:79:17:41:1e:78:3e:13:d9:37:5d:
a7:53:1d:54:1e:40:63:d2:6e:9c:79:42:d2:1e:cd:
47:03:a6:50:0b:3e:82:03:97:d4:f2:3f:a9:0f:83:
f5:62:a7:c0:2f:94:50:57:65:00:3c:02:e7:2e:4f:
48:82:27:8c:d4:d2:1f:e3:1a:c5:73:cd:24:56:9f:
44:ef:0c:0c:06:0f:fc:53:1d:28:e2:1e:07:3b:15:
98:19:cd:35:cc:2f:36:22:92:b2:ae:db:12:97:1b:
2a:70:d9:0d:b5:ef:df:8e:23:23:8c:7d:d2:f4:bc:
6d:da:e1:2c:de:fb:77:13:72:b2:8c:b9:f2:d2:4b:
fa:11:45:39:1a:38:3f:5b:41:48:28:93:d3:87:af:
5c:57:0b:cb:3c:28:f1:1c:c8:24:f1:be:0f:4a:8f:
8d:e3:f7:d7:64:0b:7c:a5:2e:a4:37:96:15:47:28:
c5:01:f6:55:c8:9e:0e:ae:ac:b3:e1:6e:11:7b:b2:
d2:61:9d:99:b4:52:00:02:e5:40:b8:3a:3d:78:be:
85:0f:9b:5d:c0:fd:75:33:ed:09:82:3a:04:6d:41:
d5:83:7b:a4:ec:de:7f:f5:cd:15:77:4e:f5:7a:53:
13:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3F:39:E3:99:99:77:F4:95:9A:19:36:D7:F8:E9:C9:CC:1F:4D:DE
X509v3 Authority Key Identifier:
keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:72:32:a1:05:39:18:7a:a0:1f:5f:26:72:ac:25:26:49:b2:
e6:5a:a1:08:e8:53:a6:15:51:16:a3:52:4f:e7:60:a8:dc:b4:
da:a7:db:51:78:1c:ee:4b:c0:1c:da:79:51:56:77:11:9a:70:
a6:55:b4:83:4f:cb:e3:2e:99:b1:6d:24:13:ed:14:95:17:b8:
49:af:f2:33:4e:46:30:af:fb:36:f3:94:13:8f:54:5f:39:0c:
89:3f:3c:01:cb:f1:c1:c7:00:2a:69:fe:fc:f6:ff:58:49:6c:
60:42:cf:f1:9b:bb:a9:82:d4:4b:cd:c5:40:3c:26:9a:f6:8c:
f8:2e:65:e1:fa:85:f7:00:2d:73:09:c2:8e:28:ba:6e:8c:be:
9b:d7:eb:07:b4:8d:cd:77:52:45:76:e2:e7:d0:ca:37:39:2d:
b5:4e:3b:5c:d3:0e:b7:c4:06:77:96:32:86:ed:99:f4:fe:5e:
fc:44:6b:a4:2b:b6:d7:bc:d6:da:5a:68:6f:41:5d:d6:66:09:
d3:3b:b9:1d:3f:99:19:8d:31:0f:14:bb:54:68:f4:58:f5:13:
43:98:c8:1e:18:02:28:53:34:94:10:61:5b:eb:3b:e5:8b:71:
2a:f6:99:32:10:9d:4d:89:77:a3:7f:d2:6a:1d:95:8d:c9:5c:
7d:f0:09:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:56:05 2025 by rpki-client