Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
File: 3erZGbhaEwUdAgi34o3cyzmLFNY.mft (raw, json)
Hash identifier: 8xrCKVDMogxFhV9RCPcEzds29C415m62Id598tNK36I=
Subject key identifier: 76:CA:55:D5:36:8A:88:F5:DA:A1:00:C7:19:10:9D:0D:3F:16:D7:DD
Authority key identifier: DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
Certificate issuer: /CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Certificate serial: 019874F4F870F4A79B725EA6DA502F6EC68B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
Manifest number: 161C
Signing time: Mon 04 Aug 2025 12:01:08 +0000
Manifest this update: Mon 04 Aug 2025 12:01:08 +0000
Manifest next update: Tue 05 Aug 2025 12:01:08 +0000
Files and hashes: 1: 3erZGbhaEwUdAgi34o3cyzmLFNY.crl (hash: ZFGB+6vO7p71CP3Z8EzUmW56VTd0AP3Q7w+OrSZZ6CE=)
2: gyBGqWNKS8K0vTNBAA3GKNL77Vo.roa (hash: BXXbMCiaPDwWpKluJbMJNiQFpxOCWm/ZXx0AVN6V8Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f4:f8:70:f4:a7:9b:72:5e:a6:da:50:2f:6e:c6:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddead919b85a13051d0208b7e28ddccb398b14d6
Validity
Not Before: Aug 4 12:01:08 2025 GMT
Not After : Aug 5 12:01:08 2025 GMT
Subject: CN=76ca55d5368a88f5daa100c719109d0d3f16d7dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:89:41:64:2f:17:34:a1:33:92:44:f3:45:a2:
bb:6e:a0:26:a7:fb:4c:b0:f2:44:b3:86:ed:7c:a9:
bc:88:d2:6c:75:7d:4b:f9:a5:0e:e2:54:20:41:a5:
03:bc:43:f2:22:b3:07:41:d8:52:50:58:1e:72:4c:
a8:b4:07:79:9b:c6:ca:79:69:9d:1a:0d:85:66:a0:
e4:91:9c:4a:47:a1:64:37:b3:85:8f:4a:bd:8a:79:
b7:dd:2e:e2:d9:17:61:44:c2:c1:10:30:7e:53:a8:
11:2b:a9:0e:fd:7e:53:f4:f6:88:45:dd:03:a9:bc:
7e:9e:27:e0:ce:5f:1a:0b:92:9f:1d:5e:d0:e8:02:
ec:55:49:56:68:28:ee:a0:60:49:a3:35:9c:30:f0:
f1:2f:64:58:62:ce:9d:a0:12:dc:53:18:0e:7c:64:
d1:5e:ea:66:86:a1:90:a6:3e:e5:08:30:36:5e:cb:
96:dc:bb:56:16:6e:85:f2:98:11:17:cc:14:80:dd:
7e:22:df:94:c5:24:0f:c0:19:df:ba:8e:1b:52:a0:
e6:be:ed:11:cf:60:04:ce:af:31:ba:23:39:0a:1b:
93:b8:ba:e7:4b:4e:fb:71:25:d0:7b:c5:20:d1:94:
de:b9:90:96:c6:f8:a7:32:78:11:ba:9a:a3:49:ee:
41:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:CA:55:D5:36:8A:88:F5:DA:A1:00:C7:19:10:9D:0D:3F:16:D7:DD
X509v3 Authority Key Identifier:
keyid:DD:EA:D9:19:B8:5A:13:05:1D:02:08:B7:E2:8D:DC:CB:39:8B:14:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3erZGbhaEwUdAgi34o3cyzmLFNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8effe4-edbb-4dd4-85d4-48b8b5a9b411/1/3erZGbhaEwUdAgi34o3cyzmLFNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:c9:1e:3e:35:63:e8:d2:ea:ca:8d:fa:56:de:8f:5a:c1:5a:
7c:2e:d6:64:26:3f:11:56:d8:ed:a4:76:52:14:42:b4:de:c5:
e9:93:8f:69:bf:24:39:36:76:0c:57:df:da:dc:1b:07:34:5d:
db:4c:dd:10:dd:15:6b:26:ac:25:f9:42:e4:10:71:16:da:5c:
d4:05:ba:14:3d:ee:c5:6c:92:9a:e7:4c:bc:32:ff:43:fa:f3:
2a:33:8d:26:57:ba:e3:37:fa:09:b4:70:c5:3e:44:19:18:c0:
2b:e5:7d:74:61:f5:03:ea:4f:77:e8:51:c5:45:a0:ed:95:23:
33:83:15:5e:31:9a:fd:fe:77:29:50:ec:3c:bd:05:d7:be:ec:
ee:96:30:93:16:d1:4c:ee:7a:0a:ce:bd:dc:72:96:ad:4c:d4:
b8:45:fd:5c:4c:bc:a0:28:2a:0f:e3:d3:89:46:37:c6:ab:77:
16:fc:22:dc:e1:c8:8b:b6:3e:f5:c8:ec:55:9d:3d:d0:be:ed:
1c:c7:79:bc:60:5c:83:e7:f5:3d:ba:22:17:5e:55:00:20:96:
a4:ca:66:e9:78:25:69:76:56:b8:f9:8f:e1:55:35:ce:91:4b:
7e:b9:7c:ec:3e:f6:e7:26:22:44:ec:27:ab:2f:5c:87:89:5e:
7c:39:71:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh09Phw9Kebcl6m2lAvbsaLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZWFkOTE5Yjg1YTEzMDUxZDAyMDhiN2UyOGRkY2NiMzk4
YjE0ZDYwHhcNMjUwODA0MTIwMTA4WhcNMjUwODA1MTIwMTA4WjAzMTEwLwYDVQQD
Eyg3NmNhNTVkNTM2OGE4OGY1ZGFhMTAwYzcxOTEwOWQwZDNmMTZkN2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn4lBZC8XNKEzkkTzRaK7bqAmp/tM
sPJEs4btfKm8iNJsdX1L+aUO4lQgQaUDvEPyIrMHQdhSUFgeckyotAd5m8bKeWmd
Gg2FZqDkkZxKR6FkN7OFj0q9inm33S7i2RdhRMLBEDB+U6gRK6kO/X5T9PaIRd0D
qbx+nifgzl8aC5KfHV7Q6ALsVUlWaCjuoGBJozWcMPDxL2RYYs6doBLcUxgOfGTR
XupmhqGQpj7lCDA2XsuW3LtWFm6F8pgRF8wUgN1+It+UxSQPwBnfuo4bUqDmvu0R
z2AEzq8xuiM5ChuTuLrnS077cSXQe8Ug0ZTeuZCWxvinMngRupqjSe5BQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHbKVdU2ioj12qEAxxkQnQ0/FtfdMB8GA1UdIwQY
MBaAFN3q2Rm4WhMFHQIIt+KN3Ms5ixTWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS84ZWZmZTQtZWRiYi00ZGQ0LTg1ZDQt
NDhiOGI1YTliNDExLzEvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS84ZWZmZTQtZWRiYi00ZGQ0LTg1ZDQtNDhiOGI1YTliNDEx
LzEvM2VyWkdiaGFFd1VkQWdpMzRvM2N5em1MRk5ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABskePjVj
6NLqyo36Vt6PWsFafC7WZCY/EVbY7aR2UhRCtN7F6ZOPab8kOTZ2DFff2twbBzRd
20zdEN0VayasJflC5BBxFtpc1AW6FD3uxWySmudMvDL/Q/rzKjONJle64zf6CbRw
xT5EGRjAK+V9dGH1A+pPd+hRxUWg7ZUjM4MVXjGa/f53KVDsPL0F177s7pYwkxbR
TO56Cs693HKWrUzUuEX9XEy8oCgqD+PTiUY3xqt3Fvwi3OHIi7Y+9cjsVZ090L7t
HMd5vGBcg+f1PboiF15VACCWpMpm6XglaXZWuPmP4VU1zpFLfrl87D725yYiROwn
qy9ch4lefDlxJw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:03:46 2025 by rpki-client