Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
File: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft (raw, json)
Hash identifier: X0dxPgJ9x753upQoCbPItESXH0rwexdfUEZWP+lq6T8=
Subject key identifier: FD:8D:9C:16:45:B4:89:59:35:A7:B3:E3:CB:AB:5D:D4:2F:27:E8:60
Authority key identifier: DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
Certificate issuer: /CN=de23f18c576d6fa609133533c0d0e38d7732c652
Certificate serial: 0198A083FD999A0F492863804FF256BD1A7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
Manifest number: 02D6
Signing time: Tue 12 Aug 2025 23:01:01 +0000
Manifest this update: Tue 12 Aug 2025 23:01:01 +0000
Manifest next update: Wed 13 Aug 2025 23:01:01 +0000
Files and hashes: 1: 3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl (hash: /udCIgDgbnEV+yPMMiDUaUBY3g4+d8SBD71m1aOxp4I=)
2: _uzKcHUnRqCblBfJ7LQOWwPDs9E.roa (hash: QtEg8CgvNKFjK8sDnq+KQm/gvMScP6wDUlBc5heZNlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:83:fd:99:9a:0f:49:28:63:80:4f:f2:56:bd:1a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de23f18c576d6fa609133533c0d0e38d7732c652
Validity
Not Before: Aug 12 23:01:01 2025 GMT
Not After : Aug 13 23:01:01 2025 GMT
Subject: CN=fd8d9c1645b4895935a7b3e3cbab5dd42f27e860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b3:c9:1a:5f:cb:3b:7f:4b:eb:9d:b4:80:ce:
ff:7c:12:94:44:2c:4c:4d:c2:0f:95:62:f3:4f:7b:
c3:d5:07:af:57:5a:70:86:4b:76:16:db:26:c4:93:
d2:76:01:10:e0:4b:ab:0d:10:83:c6:28:2e:32:a4:
4b:1c:30:c1:c1:a9:31:95:43:d4:4e:b9:da:23:d4:
f1:d0:37:a1:d7:a7:cb:94:ee:a4:92:89:1d:ab:e4:
60:cd:1d:a7:e3:9c:b5:67:d3:15:cb:67:35:ea:c1:
00:67:40:dc:f5:de:6a:f8:b8:72:d6:bd:2b:8b:e7:
f0:d8:ee:49:a0:a9:eb:e6:e6:5b:d7:57:fc:d4:b6:
c7:13:e0:c4:2b:f9:9f:b0:f9:8c:dc:3c:bf:04:ef:
cb:70:e2:0f:05:5e:7b:34:cb:5c:61:38:89:1f:8d:
50:d0:05:98:a3:d3:5e:e9:23:1f:9f:f8:12:82:de:
68:c5:2e:43:77:f3:e7:6c:a7:1e:36:5e:6e:35:19:
c0:3e:93:21:ad:ff:01:3a:04:12:9d:43:2b:f0:23:
c3:66:28:40:a4:cb:b4:b4:49:66:73:f3:3c:ef:d0:
b9:df:1d:ef:0d:81:b5:e7:84:e1:55:bd:25:ca:55:
17:f1:00:94:6f:44:c2:ec:8c:d7:b3:e4:0e:39:d8:
fa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:8D:9C:16:45:B4:89:59:35:A7:B3:E3:CB:AB:5D:D4:2F:27:E8:60
X509v3 Authority Key Identifier:
keyid:DE:23:F1:8C:57:6D:6F:A6:09:13:35:33:C0:D0:E3:8D:77:32:C6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iPxjFdtb6YJEzUzwNDjjXcyxlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/98c5d9-e2be-493b-8657-5e86006e20ae/1/3iPxjFdtb6YJEzUzwNDjjXcyxlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:12:d8:ae:a3:9b:93:f7:c1:d4:6e:ef:ea:bc:79:20:c7:3a:
c0:5a:39:63:61:82:85:eb:79:1c:3a:bf:f1:87:86:31:38:23:
19:74:4d:31:18:0e:fa:52:f7:b4:1a:d3:db:3c:44:1c:2e:ab:
68:d8:f0:3e:3f:7e:18:21:f0:bf:fc:c4:01:29:1c:01:23:b3:
df:3c:8d:23:cb:e0:1d:b7:fd:df:ec:8a:7a:93:d6:8a:af:be:
08:4d:4d:86:ce:bd:4d:d6:e8:64:ef:01:3a:43:9b:e4:10:32:
77:ba:b3:35:62:94:85:9e:88:51:a8:90:21:18:b1:cf:71:0e:
e1:e5:23:f4:b5:05:b3:ef:4b:89:6e:cd:7f:91:67:14:2b:c2:
6e:51:57:48:51:a2:bd:5b:55:4e:06:ed:12:7b:21:83:75:50:
f8:c8:ec:c2:93:f9:d9:fc:31:f2:cc:1f:02:cb:96:11:76:49:
58:0d:26:85:c4:1a:15:d4:fb:71:86:af:42:66:71:fd:98:30:
24:f4:33:8d:64:55:25:fe:70:e4:a5:44:cd:2f:f4:9f:db:0d:
a3:a1:fc:7e:87:7b:3b:06:52:97:69:e9:56:ea:2e:98:c7:94:
67:b6:ad:98:75:10:50:bc:64:f2:67:13:a3:e7:dc:78:cb:85:
da:37:3d:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZigg/2Zmg9JKGOAT/JWvRp9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMjNmMThjNTc2ZDZmYTYwOTEzMzUzM2MwZDBlMzhkNzcz
MmM2NTIwHhcNMjUwODEyMjMwMTAxWhcNMjUwODEzMjMwMTAxWjAzMTEwLwYDVQQD
EyhmZDhkOWMxNjQ1YjQ4OTU5MzVhN2IzZTNjYmFiNWRkNDJmMjdlODYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbPJGl/LO39L6520gM7/fBKURCxM
TcIPlWLzT3vD1QevV1pwhkt2FtsmxJPSdgEQ4EurDRCDxiguMqRLHDDBwakxlUPU
TrnaI9Tx0Deh16fLlO6kkokdq+RgzR2n45y1Z9MVy2c16sEAZ0Dc9d5q+Lhy1r0r
i+fw2O5JoKnr5uZb11f81LbHE+DEK/mfsPmM3Dy/BO/LcOIPBV57NMtcYTiJH41Q
0AWYo9Ne6SMfn/gSgt5oxS5Dd/PnbKceNl5uNRnAPpMhrf8BOgQSnUMr8CPDZihA
pMu0tElmc/M879C53x3vDYG154ThVb0lylUX8QCUb0TC7IzXs+QOOdj6rQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP2NnBZFtIlZNaez48urXdQvJ+hgMB8GA1UdIwQY
MBaAFN4j8YxXbW+mCRM1M8DQ4413MsZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTct
NWU4NjAwNmUyMGFlLzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi85OGM1ZDktZTJiZS00OTNiLTg2NTctNWU4NjAwNmUyMGFl
LzEvM2lQeGpGZHRiNllKRXpVendORGpqWGN5eGxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhhLYrqOb
k/fB1G7v6rx5IMc6wFo5Y2GChet5HDq/8YeGMTgjGXRNMRgO+lL3tBrT2zxEHC6r
aNjwPj9+GCHwv/zEASkcASOz3zyNI8vgHbf93+yKepPWiq++CE1Nhs69TdboZO8B
OkOb5BAyd7qzNWKUhZ6IUaiQIRixz3EO4eUj9LUFs+9LiW7Nf5FnFCvCblFXSFGi
vVtVTgbtEnshg3VQ+MjswpP52fwx8swfAsuWEXZJWA0mhcQaFdT7cYavQmZx/Zgw
JPQzjWRVJf5w5KVEzS/0n9sNo6H8fod7OwZSl2npVuoumMeUZ7atmHUQULxk8mcT
o+fceMuF2jc97g==
-----END CERTIFICATE-----
Generated at Wed Aug 13 05:53:47 2025 by rpki-client