Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
File: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft (raw, json)
Hash identifier: aYfvagjU6rmwqW8YuSM1TFHbCXz8iycZ5xHuxL6zcJs=
Subject key identifier: F7:9C:8C:6C:A9:A7:37:B7:58:9A:8F:96:0C:74:AA:35:84:07:C3:F5
Authority key identifier: DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
Certificate issuer: /CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Certificate serial: 019A518744D143906C83FE8354E00A670A5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
Manifest number: 035D
Signing time: Wed 05 Nov 2025 01:00:10 +0000
Manifest this update: Wed 05 Nov 2025 01:00:10 +0000
Manifest next update: Thu 06 Nov 2025 01:00:10 +0000
Files and hashes: 1: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl (hash: y4me8+mmn7dRBB/H+DoPqIpY5SZtDuExgNcXnub5lXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:44:d1:43:90:6c:83:fe:83:54:e0:0a:67:0a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Validity
Not Before: Nov 5 01:00:10 2025 GMT
Not After : Nov 6 01:00:10 2025 GMT
Subject: CN=f79c8c6ca9a737b7589a8f960c74aa358407c3f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:45:a2:8f:44:08:6c:76:78:8b:6f:38:eb:
5a:a4:65:35:ff:f3:37:da:b9:83:cd:a4:1d:11:bb:
7b:cb:1c:ed:ed:78:a8:e0:f7:4c:4e:af:ab:a1:2c:
f5:e3:72:66:f7:58:31:7d:5c:7f:50:de:d9:fc:e4:
49:f0:f7:1c:8f:f9:52:ff:49:a6:b4:c0:62:5b:e0:
b7:02:09:6b:ae:e4:30:2b:15:6a:c3:a0:7f:c5:5f:
93:70:6f:56:eb:5a:03:aa:db:c0:27:c2:13:59:f1:
ba:ab:58:b1:3a:07:f5:62:33:00:71:7d:61:75:12:
7f:41:e5:50:39:43:8b:1c:d7:ea:07:b1:57:f8:2d:
69:33:cb:cb:76:15:33:09:3e:0f:38:4f:3e:c6:c5:
c6:bc:19:91:6a:62:c0:6d:9a:44:01:60:7d:74:4b:
5c:98:2c:14:2d:12:08:b0:6c:a3:65:9c:80:1c:2f:
79:04:a1:00:80:05:21:75:62:26:50:ae:c0:27:80:
3b:7e:9c:85:d5:d3:ec:32:bf:6c:f2:25:f8:69:43:
ee:3b:d0:61:75:6c:b6:3b:9e:20:22:64:0e:de:c9:
8a:64:c3:c9:c8:53:43:db:81:98:99:80:51:2f:06:
ac:86:6a:ae:56:14:57:de:2a:6a:0b:55:42:34:48:
05:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9C:8C:6C:A9:A7:37:B7:58:9A:8F:96:0C:74:AA:35:84:07:C3:F5
X509v3 Authority Key Identifier:
keyid:DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:65:01:17:1c:f1:63:dd:a1:c8:68:8a:ad:49:cd:a4:ee:c6:
3b:44:48:e5:8f:d3:25:88:15:b7:29:61:1b:82:d1:ad:f7:90:
4e:be:4f:cb:a0:fe:6f:94:55:44:af:08:b0:0a:d2:40:f6:f5:
a4:da:b7:cc:7a:aa:2e:fb:27:60:75:4a:f2:09:14:7f:45:0b:
98:18:47:74:bf:88:c6:06:01:8b:1d:a0:78:a2:54:05:7b:b2:
88:8b:10:77:af:6a:cf:21:6a:15:a7:59:0e:e8:09:7d:8d:25:
e7:9b:b1:f2:6a:6f:32:1c:76:c4:8c:bf:e6:90:c3:32:f0:33:
13:a5:94:22:44:cb:28:ec:73:e8:2d:1a:69:dc:7d:95:8f:d8:
9d:75:68:8c:ba:a2:45:e0:70:70:8a:c0:fd:e9:e6:06:1a:27:
64:d1:cc:39:4c:f3:27:c2:6f:59:96:84:18:c5:24:da:36:9d:
18:9e:5e:9d:16:38:75:e8:90:7b:61:34:e3:7b:88:e6:71:a7:
0c:4a:aa:ab:de:48:76:db:1c:5d:4d:90:42:2f:54:76:b6:8d:
dc:37:13:a0:e7:4c:11:3a:83:ba:a5:24:bc:05:dd:4b:0d:a2:
b1:45:13:86:25:4d:fb:32:d5:63:73:8d:d3:7b:07:da:75:fe:
6c:88:90:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:29 2025 by rpki-client