Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
File: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft (raw, json)
Hash identifier: ECpOP49r9OIqa05OBXB+BFUvc4V8bf6ylxi2p/miy/g=
Subject key identifier: 69:D7:CC:B5:53:51:BE:1A:3F:66:89:91:A1:1C:1E:09:69:B2:C9:4A
Authority key identifier: DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
Certificate issuer: /CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Certificate serial: 01987486F2175F68B48D9C958C122B3BC44B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
Manifest number: 0266
Signing time: Mon 04 Aug 2025 10:00:57 +0000
Manifest this update: Mon 04 Aug 2025 10:00:57 +0000
Manifest next update: Tue 05 Aug 2025 10:00:57 +0000
Files and hashes: 1: 3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl (hash: kWV6jTjgQQE0DmRAP6CJ15IcCeSs+T42mTNoOGxstLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:86:f2:17:5f:68:b4:8d:9c:95:8c:12:2b:3b:c4:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3a98495c27b9ce350ae5b89f99144b0a4c9d
Validity
Not Before: Aug 4 10:00:57 2025 GMT
Not After : Aug 5 10:00:57 2025 GMT
Subject: CN=69d7ccb55351be1a3f668991a11c1e0969b2c94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9c:06:c1:92:4b:98:94:cc:29:0c:4f:5b:fd:
e0:d8:75:b8:dd:fb:e3:09:dc:f0:42:9d:89:3c:4d:
39:c9:6e:85:d1:16:bf:6e:73:16:6c:d9:80:1f:5e:
a7:9c:1c:f4:4c:74:99:6b:96:b6:ff:f3:8c:32:1a:
0b:d9:13:34:31:dc:fe:31:59:b0:69:35:25:d7:1e:
d9:d4:7f:6b:3d:15:9d:bd:af:b1:4a:e6:87:af:d3:
f5:3d:8b:ef:77:37:c1:c1:14:09:28:be:29:e1:cd:
5b:a6:62:54:23:7f:ec:8d:dd:1d:5c:8b:c1:0f:e4:
0c:89:aa:92:d3:73:81:22:69:6c:8a:90:7b:75:91:
fe:93:c8:a3:7c:ae:a5:f5:5c:a3:72:ba:1d:67:af:
0b:61:80:60:45:dd:91:7c:2b:a9:81:9b:92:78:62:
c0:ce:21:98:bc:30:22:ff:06:3e:a0:aa:07:84:8a:
d5:b9:00:3a:86:93:7c:b3:19:b5:94:ca:1f:78:46:
da:de:51:75:f0:24:8d:5c:bd:b5:0e:4a:4d:56:e4:
16:bf:3e:d2:9e:58:4e:35:d1:d6:c6:a9:d1:86:84:
e5:27:47:e1:c4:9b:c5:08:1c:19:04:ff:22:9f:e3:
09:50:28:c1:e6:30:bb:1e:67:3a:f6:d0:d7:09:1b:
3d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D7:CC:B5:53:51:BE:1A:3F:66:89:91:A1:1C:1E:09:69:B2:C9:4A
X509v3 Authority Key Identifier:
keyid:DE:3D:3A:98:49:5C:27:B9:CE:35:0A:E5:B8:9F:99:14:4B:0A:4C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j06mElcJ7nONQrluJ-ZFEsKTJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/cb4127-8e06-47d9-bdf1-c888b20489fc/1/3j06mElcJ7nONQrluJ-ZFEsKTJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:25:f2:e4:32:c7:d8:80:e2:01:1a:d6:d6:9d:04:19:c2:9a:
a6:22:56:af:3d:8e:f2:0e:84:8a:1f:33:72:f5:d6:4c:d2:6c:
42:85:be:be:2c:4e:0f:9a:1a:df:0e:11:96:52:72:c8:ea:0c:
9e:b3:c1:0c:b2:1b:e2:b0:a9:b7:dd:e8:26:e5:1e:09:85:0b:
22:41:c0:dc:d7:83:d4:d1:63:a4:32:25:87:be:e5:73:69:35:
b3:79:f3:2b:d4:42:28:1f:88:c9:d9:78:40:42:04:09:6f:f3:
8c:9c:e7:6c:10:a9:79:be:08:07:89:ac:b2:21:d8:91:ac:dc:
0f:e2:bf:c5:47:2b:5b:3d:41:6f:37:cd:3e:36:58:48:76:a8:
43:71:fe:ec:48:52:9b:b5:eb:0a:e4:a3:13:65:80:f8:56:78:
c8:27:9e:b1:80:64:8f:23:b8:5f:ce:48:7a:87:67:16:b0:a6:
d9:31:29:76:3d:39:cc:de:3d:f9:e6:26:74:b3:e7:40:66:d6:
5b:0d:74:f5:59:50:f7:ce:27:95:9c:3d:7f:8b:01:e6:2d:c9:
3d:f2:54:c1:c5:b3:95:6f:89:c9:e5:0e:39:a6:5f:a5:30:b1:
2f:0b:1e:27:0d:30:24:e5:a5:d1:92:20:d6:cb:de:5d:80:5b:
a7:36:6c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:35:03 2025 by rpki-client