Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
File: 3fz_0QDcAH8alqRDDqhyOJxX1s8.mft (raw, json)
Hash identifier: aOoLpyw76Cx2PrcbJRGZY4ZbmEk7ioz/J1iVC/EOmv8=
Subject key identifier: A1:54:7B:3F:89:F5:74:99:F3:A6:F2:B6:C5:53:A1:6D:24:D2:34:9B
Authority key identifier: DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
Certificate issuer: /CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Certificate serial: 019896DC8352D8B78F937C7D26CF6A3F51F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
Manifest number: 031B
Signing time: Mon 11 Aug 2025 02:01:30 +0000
Manifest this update: Mon 11 Aug 2025 02:01:30 +0000
Manifest next update: Tue 12 Aug 2025 02:01:30 +0000
Files and hashes: 1: 3fz_0QDcAH8alqRDDqhyOJxX1s8.crl (hash: l1i8L2Se40YO6wx/Rssa8CtmZLjXSsOhuJxhUOHnI8c=)
2: SHvoKKIBU3wgrybj6zWAE812zjc.roa (hash: yK7W9vbdAmqtnEpvGmawrHGyq/oUYACQgVTYc+60SM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:dc:83:52:d8:b7:8f:93:7c:7d:26:cf:6a:3f:51:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Validity
Not Before: Aug 11 02:01:30 2025 GMT
Not After : Aug 12 02:01:30 2025 GMT
Subject: CN=a1547b3f89f57499f3a6f2b6c553a16d24d2349b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:30:9f:2a:bd:be:a6:c7:e8:34:64:69:de:44:
52:ef:1d:94:a1:a9:fc:35:39:09:2a:a2:a4:14:ff:
27:91:e3:41:64:2c:82:53:4f:f3:a7:73:9c:0d:47:
3e:1d:f6:c8:eb:c4:93:9f:59:78:dc:54:f2:96:02:
55:2e:a6:11:d4:b2:92:96:20:99:9d:8b:41:98:83:
56:20:b9:1c:c6:83:a0:6f:8d:30:98:e5:b6:58:7f:
c7:39:a3:a7:ae:81:b8:29:03:f1:01:60:b0:07:27:
d8:f1:01:89:04:12:40:bb:17:60:e9:ac:4b:f8:5b:
93:d5:60:58:80:31:45:1a:bf:79:e3:33:f1:3c:1f:
d1:f9:fa:52:61:eb:57:67:54:1b:2b:13:ca:be:d3:
41:75:59:d4:f8:97:eb:73:67:46:ad:62:4d:9b:d2:
f8:0f:b0:fc:49:f9:ed:1f:7b:37:a7:fd:3c:84:0c:
c2:b7:b0:2c:ac:17:c8:03:e5:40:a9:5e:71:1e:ef:
9e:d8:d1:72:c2:f2:46:b1:78:c0:f1:f3:30:fe:d2:
34:e2:c4:18:07:f2:de:b2:ba:30:c5:56:37:fd:9e:
a4:15:ce:be:7f:a8:77:fe:09:bf:69:61:99:e8:e8:
fe:4e:92:af:13:da:b5:ac:53:a9:b7:87:07:10:60:
25:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:54:7B:3F:89:F5:74:99:F3:A6:F2:B6:C5:53:A1:6D:24:D2:34:9B
X509v3 Authority Key Identifier:
keyid:DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:dc:28:b1:0c:c3:49:ac:0e:5c:d9:86:6b:8d:20:9c:68:10:
f3:85:8f:94:69:fc:b7:4d:46:f9:35:ec:c6:98:61:60:2a:47:
5b:39:70:18:46:4b:6d:f1:b8:c0:6b:96:f3:85:fb:25:49:1a:
fc:d1:6a:1a:47:3d:27:5d:53:c5:e7:14:6f:3c:e5:d5:03:e7:
43:f9:99:46:bf:c6:ed:52:1a:19:9b:01:73:fa:04:14:09:ae:
db:37:70:f7:6b:d5:f7:a4:32:12:01:c5:19:a3:eb:51:b6:7e:
49:d2:7b:a0:5a:f4:18:8b:cd:ff:aa:ac:9f:68:84:47:a5:1a:
6a:b8:a0:ef:34:75:09:16:c0:e8:41:df:39:19:8a:f6:55:fd:
4f:4a:3f:d1:10:00:9d:d8:8b:12:a4:32:00:02:d7:1a:46:7b:
a8:e2:1d:87:4f:04:4e:f5:b9:9f:9d:e4:22:5c:8c:0f:8e:88:
90:fe:d0:0e:34:df:d3:d0:51:e6:8c:a6:c5:66:12:7a:bc:7c:
1a:8f:bc:1f:b3:06:73:f4:6d:ae:ad:38:18:29:8f:29:86:76:
50:68:c0:aa:ab:de:cb:49:c8:fc:68:3b:e1:0e:a1:52:29:55:
fa:d6:ad:f9:89:b0:9a:a9:bb:c8:1e:13:63:7c:88:eb:86:44:
cc:59:73:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:47:03 2025 by rpki-client