Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: 25KPKGial4qaPnxe0d64nxcOM/MBVYc7JEytvg+rn1Y=
Subject key identifier: C5:D9:6A:A9:D4:87:83:CD:04:0D:95:C7:0F:EF:73:C6:8A:E3:21:63
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 01988FFE1C545CD83C275F7482C32102C3AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 1627
Signing time: Sat 09 Aug 2025 18:00:51 +0000
Manifest this update: Sat 09 Aug 2025 18:00:51 +0000
Manifest next update: Sun 10 Aug 2025 18:00:51 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: ZbTzXGJHFCl0r0f00G7sIAlEkDOgsTTPa6ZpI+ZkmCM=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:fe:1c:54:5c:d8:3c:27:5f:74:82:c3:21:02:c3:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Aug 9 18:00:51 2025 GMT
Not After : Aug 10 18:00:51 2025 GMT
Subject: CN=c5d96aa9d48783cd040d95c70fef73c68ae32163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:33:0c:f8:b1:08:e2:27:17:18:a8:ba:e3:ce:
0e:af:1c:db:e7:ac:ae:92:87:19:b4:09:21:5f:f0:
1a:8e:a7:5c:aa:9a:ae:45:65:cd:23:ef:e0:95:c8:
b5:d2:14:59:be:97:81:31:2e:a0:8c:52:d6:1b:4a:
38:38:0d:a0:ae:98:15:ea:25:18:3b:f9:f7:da:42:
0f:49:ab:e8:82:bc:98:1d:f2:37:af:0c:79:6a:09:
d5:ec:2e:14:a1:c6:5b:bf:62:d3:c2:f5:a8:a4:e3:
01:2f:b9:9b:1f:45:3e:26:74:b3:a2:0f:20:8b:b2:
79:d5:e9:97:85:a2:3f:1c:ed:8d:c2:01:60:97:00:
3f:f3:96:25:f9:6e:d7:1d:df:54:d8:ee:0d:84:9d:
cc:38:c9:6f:63:be:30:8d:f4:34:0a:15:72:cd:5e:
fb:13:c7:04:31:a3:12:52:d3:e6:09:29:6d:94:a5:
18:10:c4:40:5e:53:65:10:9a:36:0b:10:f0:62:cb:
4e:91:b0:b8:92:80:c2:dd:f9:fd:4c:69:a4:a2:ba:
cc:2d:7a:b3:36:4e:49:6c:29:1e:d6:11:28:aa:e9:
9f:92:f2:4b:ef:2f:26:a2:fb:58:7d:89:e2:0d:fe:
6c:e4:cb:ea:1e:72:34:9e:00:eb:88:05:a1:a2:f7:
9f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D9:6A:A9:D4:87:83:CD:04:0D:95:C7:0F:EF:73:C6:8A:E3:21:63
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:4c:bb:d7:03:2c:b0:1b:11:ee:b8:a4:5d:44:81:6f:22:e8:
4d:35:9f:c5:aa:fe:5d:76:ce:62:00:fd:46:fb:bb:e6:f7:0b:
6f:d9:c4:99:61:f5:c5:28:5a:00:f9:d4:ac:6c:38:ea:1b:ea:
42:0f:2e:f1:6c:e6:41:ad:b7:89:d5:d8:9d:0a:2c:ef:16:4f:
73:57:99:6c:bd:67:7a:55:98:87:63:6b:5c:85:a4:c4:59:c2:
ed:c3:1b:0f:10:ae:37:c7:cc:e0:8d:1f:85:12:50:2d:7b:7a:
0a:13:e9:98:1a:37:fe:f4:b7:2e:ed:dc:ad:b6:4f:c6:31:c5:
25:95:bf:41:53:3a:50:b5:1c:6e:bf:f2:b5:74:a1:e9:65:6e:
60:24:8d:45:19:b5:1d:05:e8:ce:e3:28:e3:61:72:32:c9:2b:
30:87:d6:3e:6a:81:eb:85:0c:a3:e2:37:e6:ce:bc:33:c0:62:
88:e0:e1:97:d1:7c:e1:85:a7:47:e2:37:83:a1:c3:47:eb:c9:
ca:9f:9b:a6:cb:1a:24:5e:46:c1:9d:31:a6:37:44:b8:0a:7a:
8e:df:0b:fc:78:7c:62:99:b8:bd:83:f4:60:a8:ba:f1:44:7b:
8f:0e:b1:9d:a0:d9:98:bc:f6:ae:30:53:06:a4:5c:25:cf:e9:
40:7e:d0:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:46:36 2025 by rpki-client