Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: vsiCqUb2mYrmmnzVwfeU7Ugilo/zwRyxDWr6B3rQYOk=
Subject key identifier: EF:5D:49:B6:80:A3:3F:65:BF:32:19:B9:A6:E3:4A:F4:59:D4:0D:AF
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 019A4E19045D2DE81EAF8FC139C4AA98B1DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 09:00:53 +0000
Manifest this update: Tue 04 Nov 2025 09:00:53 +0000
Manifest next update: Wed 05 Nov 2025 09:00:53 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: T10cCF/b/zpJma2Ni5XHNTDSiIM1eNAcdVpng4Bm6qQ=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:04:5d:2d:e8:1e:af:8f:c1:39:c4:aa:98:b1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Nov 4 09:00:53 2025 GMT
Not After : Nov 5 09:00:53 2025 GMT
Subject: CN=ef5d49b680a33f65bf3219b9a6e34af459d40daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:04:c9:1e:a4:80:2d:ea:9b:56:9a:36:29:
6b:95:47:0c:f1:3f:64:ac:48:19:31:72:f0:f1:a5:
d5:47:12:85:cf:8f:47:d1:be:d4:9f:e2:23:d4:e1:
d3:c0:07:41:c8:74:29:e3:32:fb:3c:70:f9:59:c1:
1b:a9:d4:c9:ed:9f:eb:80:63:0d:77:1e:74:ac:a9:
d4:57:c9:0d:59:59:76:87:c5:a5:22:31:d6:93:f3:
80:c1:33:cf:d6:36:a3:4a:87:6c:1c:7b:8c:a4:07:
df:bb:dd:d3:df:33:24:c5:19:a7:bb:2a:20:42:18:
6d:2e:75:b1:e3:1b:12:08:18:0b:e4:93:62:f1:64:
23:9c:cf:e2:df:e0:43:17:8d:af:58:f1:94:ae:b6:
11:19:5d:ba:a7:7a:79:e1:cc:26:5d:a5:1c:d6:8b:
47:80:cb:e7:2c:a9:63:dd:f7:36:b1:97:79:1b:67:
2f:8f:2e:3a:ca:46:3c:b0:5b:38:80:d1:04:67:e3:
3b:cb:06:ed:7d:d2:7f:6c:57:2b:2a:d1:78:9b:d2:
78:15:82:02:8b:45:82:77:fe:42:c0:c0:97:58:05:
9f:40:c7:8a:23:6f:22:64:92:80:0c:0c:b1:9f:03:
4b:60:13:05:3f:14:23:88:32:c9:29:d2:85:41:6a:
0e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5D:49:B6:80:A3:3F:65:BF:32:19:B9:A6:E3:4A:F4:59:D4:0D:AF
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:3a:b4:89:96:43:0b:ae:79:35:44:d0:64:48:cb:69:51:8a:
71:1a:98:81:b7:78:49:44:6b:70:0e:fc:7a:2e:f7:3d:70:3b:
6a:02:16:53:63:64:4c:f4:14:8c:ff:db:1e:db:e3:e3:bd:2f:
76:9b:61:ac:0a:d9:b0:36:b6:f3:61:02:4e:3e:dc:41:e0:fc:
f0:cf:a5:1c:bd:c9:ed:5d:2a:d1:0f:52:51:35:b3:c0:d4:98:
bc:a8:19:4f:01:ad:90:e3:f6:fe:29:86:93:1f:60:58:8e:93:
9e:ea:b7:c6:b9:cc:49:60:ac:e5:a0:d4:f0:b0:67:82:f8:4b:
23:34:e8:27:73:78:ae:ad:5b:44:99:a8:7a:76:5c:0e:b5:a6:
2c:2d:f7:37:0e:16:bd:b1:df:d5:c4:51:95:1f:63:ef:57:d9:
53:2f:03:ee:9c:43:b5:51:83:8a:93:7a:aa:ca:f4:14:c8:6a:
38:f1:54:29:d2:e3:83:ad:74:a0:12:2f:64:f4:73:8f:8a:36:
d1:fc:ff:75:75:5a:84:af:b5:b0:ac:92:37:06:c1:79:9c:47:
b8:bb:e4:2b:7d:da:a8:5a:7e:45:c7:31:48:2d:db:56:78:f7:
25:67:3c:e5:14:08:c0:97:96:95:2a:11:e5:ac:fe:fa:e2:20:
fd:a7:de:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:52 2025 by rpki-client