
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
File: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft (raw, json)
Hash identifier: 6mqmQaDlKZTQK/2W4jGWYL1vt/C5xk7hBEKtoI26fo0=
Subject key identifier: 27:92:CD:51:71:76:09:D2:E2:DF:B5:D7:58:71:91:9D:2F:26:6E:22
Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad
Certificate serial: 019873E2D13E7B78CB172A224F704C3DB229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
Manifest number: 10CA
Signing time: Mon 04 Aug 2025 07:01:41 +0000
Manifest this update: Mon 04 Aug 2025 07:01:41 +0000
Manifest next update: Tue 05 Aug 2025 07:01:41 +0000
Files and hashes: 1: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl (hash: 4g3Ug+e++NbLTCQRG7O6Un0oB2C5uGtaclo7VX9b5b4=)
2: 4PgtcW6j7xPoaJPy67vk2tMAXu4.roa (hash: fufIwyPbWqbMyORM68+h1FhSNKXbFzjdgG7WcXkavWU=)
3: cUPSsBWZ4irx4TApxzbroJpf5do.roa (hash: 6GPPFraRfTGyKrm5jIIIVF8Jt+KHlsZR8YFMwLgpuuE=)
4: xqYP462dYCt-0eOV8zXikdtxg14.roa (hash: YzKJbzm4Szaaz/1aNRHY+rmqu5/8YwNywOTzBNgzdeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:d1:3e:7b:78:cb:17:2a:22:4f:70:4c:3d:b2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad
Validity
Not Before: Aug 4 07:01:41 2025 GMT
Not After : Aug 5 07:01:41 2025 GMT
Subject: CN=2792cd51717609d2e2dfb5d75871919d2f266e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:80:ca:01:95:b0:61:04:e5:67:ec:bf:a8:a3:
bd:7e:e7:08:1e:8a:9f:a7:0b:db:6a:18:d4:bf:cd:
39:5b:b7:7d:cf:9d:f4:5f:57:12:90:1c:87:b2:b0:
bf:dd:dc:b0:ff:11:3b:b6:e0:5e:b6:24:81:34:d8:
eb:dc:c6:26:eb:72:3b:ea:a1:b3:77:94:0e:19:de:
19:72:9a:6f:30:75:a2:c5:86:61:df:bf:31:a0:05:
e8:26:d3:3b:93:cf:12:d5:e7:71:52:35:f6:28:10:
60:a3:3c:37:1c:68:e0:2e:62:a9:7a:23:7a:43:26:
44:26:19:13:a7:17:06:5e:e9:1d:c7:b1:20:1f:32:
ba:02:55:0d:03:e0:7d:72:9e:b7:98:b2:41:59:00:
ca:68:d8:64:45:4f:02:72:b5:f6:8d:f7:a3:85:2c:
8f:76:13:b8:02:e7:4a:57:8c:c9:f9:13:ac:2b:c6:
e0:ca:8e:7e:2d:de:89:64:dc:f9:8b:fb:9f:3c:3e:
10:e9:e2:ad:91:d4:0f:c5:c0:b3:9f:72:71:ec:c3:
38:fb:04:3e:a0:fd:b0:1b:e4:ad:37:57:d5:61:b8:
6f:74:70:74:8f:42:4c:aa:23:8a:4c:13:69:eb:c6:
79:f2:39:0e:b7:a4:97:fa:42:67:8c:3b:09:a7:7c:
a4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:92:CD:51:71:76:09:D2:E2:DF:B5:D7:58:71:91:9D:2F:26:6E:22
X509v3 Authority Key Identifier:
keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d8:9c:96:8d:31:46:79:91:b9:13:bc:99:ca:e1:c1:f5:fa:
30:d7:69:f7:f2:2e:9b:9f:a3:c0:2f:50:5e:a9:44:a5:c0:ca:
3e:12:a9:7e:3e:ac:94:43:88:af:d7:f9:87:10:72:c8:5f:85:
2f:e2:c0:52:00:81:67:d6:cd:b9:9a:18:57:cf:f7:3d:3b:f2:
dd:30:31:ee:23:ae:c4:f8:a3:b8:d6:15:9c:78:5c:6d:fd:21:
42:76:c7:2d:2b:91:8e:a3:b8:c3:bf:46:50:98:6e:6a:41:71:
9e:58:9b:0e:a2:7e:d6:39:85:da:ef:49:b9:7b:f3:24:e2:ad:
cc:10:4b:cc:18:e9:19:bd:81:5f:53:6a:27:ae:93:c4:40:ea:
42:bc:6c:ae:55:42:64:3e:89:c3:64:81:a6:bf:07:be:dd:fd:
76:8d:64:6e:9e:ba:34:b4:82:d9:f9:21:cd:80:8c:6e:f1:ca:
f7:02:3b:b7:61:d2:b6:40:ae:0b:87:02:57:13:8b:2f:93:32:
40:36:fa:82:c1:98:ca:de:3f:16:f2:5d:28:dd:0c:4e:2c:88:
13:3f:74:7e:52:6e:6b:4a:3a:90:95:45:ee:fa:bb:11:0f:c4:
6f:8b:a9:11:5f:d8:2a:b0:b1:cc:77:3e:49:52:f8:bc:da:d4:
e9:f9:1f:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4tE+e3jLFyoiT3BMPbIpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmMDE5OGE3YjNhZmRjZGQ3MDAzNTYyYTA4NzE4NzhlMjM4
NzYwYWQwHhcNMjUwODA0MDcwMTQxWhcNMjUwODA1MDcwMTQxWjAzMTEwLwYDVQQD
EygyNzkyY2Q1MTcxNzYwOWQyZTJkZmI1ZDc1ODcxOTE5ZDJmMjY2ZTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4DKAZWwYQTlZ+y/qKO9fucIHoqf
pwvbahjUv805W7d9z530X1cSkByHsrC/3dyw/xE7tuBetiSBNNjr3MYm63I76qGz
d5QOGd4ZcppvMHWixYZh378xoAXoJtM7k88S1edxUjX2KBBgozw3HGjgLmKpeiN6
QyZEJhkTpxcGXukdx7EgHzK6AlUNA+B9cp63mLJBWQDKaNhkRU8CcrX2jfejhSyP
dhO4AudKV4zJ+ROsK8bgyo5+Ld6JZNz5i/ufPD4Q6eKtkdQPxcCzn3Jx7MM4+wQ+
oP2wG+StN1fVYbhvdHB0j0JMqiOKTBNp68Z58jkOt6SX+kJnjDsJp3yk5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCeSzVFxdgnS4t+111hxkZ0vJm4iMB8GA1UdIwQY
MBaAFN8BmKezr9zdcANWKghxh44jh2CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQt
MGZjYzZjMzAxMWZjLzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQtMGZjYzZjMzAxMWZj
LzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaticlo0x
RnmRuRO8mcrhwfX6MNdp9/Ium5+jwC9QXqlEpcDKPhKpfj6slEOIr9f5hxByyF+F
L+LAUgCBZ9bNuZoYV8/3PTvy3TAx7iOuxPijuNYVnHhcbf0hQnbHLSuRjqO4w79G
UJhuakFxnlibDqJ+1jmF2u9JuXvzJOKtzBBLzBjpGb2BX1NqJ66TxEDqQrxsrlVC
ZD6Jw2SBpr8Hvt39do1kbp66NLSC2fkhzYCMbvHK9wI7t2HStkCuC4cCVxOLL5My
QDb6gsGYyt4/FvJdKN0MTiyIEz90flJua0o6kJVF7vq7EQ/Eb4upEV/YKrCxzHc+
SVL4vNrU6fkfyw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:11:22 2025 by rpki-client