Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
File: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft (raw, json)
Hash identifier: XiirHYmiu7fYIiXIUAyr1hAaYUePyqVzU4EWskcpc60=
Subject key identifier: 0B:AC:27:18:9D:B9:35:CE:12:C7:30:07:C6:0F:3D:A5:7E:A9:64:99
Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652
Certificate serial: 019A4F2B7D4D47F7DBA791514DF7D4EF41CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
Manifest number: 03B5
Signing time: Tue 04 Nov 2025 14:00:41 +0000
Manifest this update: Tue 04 Nov 2025 14:00:41 +0000
Manifest next update: Wed 05 Nov 2025 14:00:41 +0000
Files and hashes: 1: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl (hash: Sa1FUPSMDeNYWGgAjrx6yztt2henw5xUOXgyhkFLllw=)
2: _uzKcHUnRqCblBfJ7LQOWwPDs9E.roa (hash: QtEg8CgvNKFjK8sDnq+KQm/gvMScP6wDUlBc5heZNlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:7d:4d:47:f7:db:a7:91:51:4d:f7:d4:ef:41:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652
Validity
Not Before: Nov 4 14:00:41 2025 GMT
Not After : Nov 5 14:00:41 2025 GMT
Subject: CN=0bac27189db935ce12c73007c60f3da57ea96499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e6:74:58:12:9c:0b:5b:5b:28:c2:d7:23:8e:
06:c8:59:67:08:96:23:be:4c:d8:30:5f:84:61:21:
56:d5:31:f0:c8:f0:a1:ce:2d:4d:b4:66:92:b7:98:
fb:6e:e4:ec:cf:e5:3b:51:51:ef:82:06:eb:31:d7:
54:5b:b4:88:4f:18:17:37:cb:52:4b:93:05:11:9a:
e0:4c:f4:82:ee:fa:fe:43:8a:41:8d:b4:df:4b:a6:
9e:86:42:df:3f:47:8c:19:5b:86:ea:04:5f:80:f8:
bf:97:b0:49:66:83:22:f7:24:35:53:6d:ad:28:d6:
25:0f:7c:4a:e6:0a:77:b5:1b:91:06:41:65:89:57:
83:13:f2:91:3a:62:c5:02:96:e8:a0:60:fa:e7:10:
6b:01:2b:a6:f5:34:bb:5a:d8:e1:ae:1d:f6:4e:47:
f2:73:44:5e:e6:4e:a1:46:56:20:b0:c4:e3:21:92:
cf:23:fb:15:0f:5f:7b:55:e8:8e:b5:9e:85:94:e0:
7a:0a:a5:02:1f:a9:3f:58:9b:68:ed:14:72:74:f1:
d1:45:ac:72:90:bb:67:39:28:39:dd:89:73:16:3d:
24:83:e6:a1:f6:be:c5:c5:6f:2c:80:bf:34:1b:fb:
fd:c8:4f:97:30:51:a8:11:57:5f:62:9e:31:e2:21:
cf:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AC:27:18:9D:B9:35:CE:12:C7:30:07:C6:0F:3D:A5:7E:A9:64:99
X509v3 Authority Key Identifier:
keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:4c:e0:88:3f:04:42:2d:c1:f4:52:0e:ff:3a:1e:4f:34:11:
22:fc:ac:68:d7:b3:82:19:d8:93:b5:e0:7d:64:58:ad:ff:6f:
c3:cd:25:be:7d:61:5e:c4:14:42:87:f6:07:43:74:55:cf:1c:
7c:f0:d0:0a:2b:a4:4d:b3:2f:6c:ce:82:f1:ff:9e:e3:b6:c1:
c1:68:31:ef:b8:da:12:bc:de:43:05:b2:42:2e:cb:77:4e:d0:
82:76:5c:ae:35:57:ca:14:a4:c1:8c:bb:1c:f4:60:b2:4d:16:
df:8b:de:da:65:45:91:5a:72:ef:86:5c:69:d0:fb:54:58:ba:
d5:aa:8a:47:8c:da:97:bc:de:41:d0:a3:35:b9:60:78:c1:e1:
25:dc:ec:23:88:95:19:b7:6c:67:ad:bb:72:d5:d1:97:77:18:
80:6a:79:49:ce:86:19:a3:ca:c8:34:d0:41:56:c9:7f:3a:be:
bf:df:0e:dd:68:73:92:a2:90:a5:29:7c:1b:c4:13:8f:97:da:
a5:be:7f:a7:19:2b:82:95:b3:c2:0a:96:d6:de:c5:f2:63:5d:
23:d5:8c:fc:eb:a6:17:d3:2a:b0:6e:7d:91:a2:f4:0e:cb:b6:
8b:ee:89:7f:4e:d6:d1:a5:48:43:86:a8:66:74:5a:68:37:55:
20:1b:aa:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:32 2025 by rpki-client