Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: 85Ktb9kXsC5EjPBmbnHt/Gxgggr2uM7vHuhwMDIkqIw=
Subject key identifier: 5D:9F:48:A9:4E:80:AC:83:29:B0:3A:3E:42:F7:11:B4:51:76:D7:83
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 01987418FC7D8AEE15C4852F00959A9693ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 10B1
Signing time: Mon 04 Aug 2025 08:00:51 +0000
Manifest this update: Mon 04 Aug 2025 08:00:51 +0000
Manifest next update: Tue 05 Aug 2025 08:00:51 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: 9+nr8Uz0goPfw/h1oX1iCA2PmKLwLLyqaX0rIc/FlHM=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:fc:7d:8a:ee:15:c4:85:2f:00:95:9a:96:93:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Aug 4 08:00:51 2025 GMT
Not After : Aug 5 08:00:51 2025 GMT
Subject: CN=5d9f48a94e80ac8329b03a3e42f711b45176d783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:80:0d:d3:fa:1d:27:4b:e8:ef:69:8e:75:29:
64:6f:ed:9a:54:a9:e0:db:16:10:a5:86:6d:d5:c0:
e1:ea:06:b8:f0:84:b9:e4:a0:9a:26:97:59:e4:42:
cd:ef:84:cc:5f:bb:16:a9:8f:e2:d5:1e:b5:10:65:
86:20:23:70:35:3d:9b:94:bd:f9:fb:a0:d9:72:2f:
88:18:1e:eb:54:a9:a8:d3:bb:ef:43:2d:7f:9a:46:
3e:c3:63:58:33:e2:1b:48:ff:a9:2e:e9:58:e8:b8:
26:7d:3a:d0:ce:fc:c5:c0:df:c3:b4:35:db:7a:62:
47:09:80:39:0f:61:d2:c2:db:9e:5f:9c:1f:dc:52:
87:39:0b:78:21:1c:ac:57:a8:6d:8a:c9:a4:bc:01:
d9:9b:7b:e7:ac:bd:48:d8:55:9c:27:4b:3f:f5:45:
91:88:eb:2c:8b:fa:7c:f5:b2:46:aa:0f:0d:ff:ed:
38:9d:45:4d:27:75:05:6f:66:24:c0:f2:ba:40:43:
2b:39:80:95:d1:47:21:db:51:e8:5d:46:c0:06:f6:
59:bf:00:c4:6d:4d:04:f8:88:5a:58:0c:5d:15:67:
75:cc:66:84:9c:e1:f2:2f:0f:4b:90:c6:d5:2a:1e:
22:69:03:9f:f9:4b:60:64:fc:55:27:c5:43:8a:eb:
4b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:9F:48:A9:4E:80:AC:83:29:B0:3A:3E:42:F7:11:B4:51:76:D7:83
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:5a:95:12:61:77:ea:52:7c:24:eb:7f:ee:44:e5:65:4b:40:
db:bb:bf:f5:ea:1a:17:e1:0f:e7:d0:71:d7:66:b6:32:79:e2:
7d:5a:a4:04:4c:d7:04:04:4d:21:91:1d:cd:79:b5:ff:48:a2:
06:ff:ee:d3:40:33:bf:d2:cd:d8:99:b3:35:17:9f:2b:1b:0a:
63:04:10:f0:f7:4e:67:18:bd:16:7e:eb:eb:a3:cc:f0:2c:8a:
3e:6a:f4:36:38:95:87:df:1c:e2:f8:1b:25:dc:0f:81:9b:31:
32:11:2d:e2:28:b8:df:6b:a4:80:02:70:1a:cf:4d:4d:ab:25:
98:bf:02:2c:51:b9:0f:f8:75:10:c9:be:04:73:e1:59:f9:88:
4f:b2:40:c7:27:41:fe:d7:60:ad:63:3a:db:4e:d2:3c:a0:78:
03:e4:93:26:76:75:bd:5d:5a:0c:08:c4:d0:d3:01:dd:fe:f9:
99:4a:eb:bf:ab:56:86:8a:28:b9:1d:62:91:7c:56:4f:ab:32:
fa:8f:a6:b8:46:89:6f:eb:6b:65:c2:2d:0b:e0:57:a5:b5:61:
2e:0b:9e:e1:d2:0d:ec:fc:61:d0:ec:06:a7:07:d3:76:70:f5:
be:68:f8:6e:00:fe:36:42:7a:9c:69:98:aa:05:a7:80:b8:85:
f8:69:1f:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0GPx9iu4VxIUvAJWalpPtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkODVkYzZiNjE0M2ExN2ZlYjQ5ODIwZWE1MjAwNDg5NThm
NDhhZGMwHhcNMjUwODA0MDgwMDUxWhcNMjUwODA1MDgwMDUxWjAzMTEwLwYDVQQD
Eyg1ZDlmNDhhOTRlODBhYzgzMjliMDNhM2U0MmY3MTFiNDUxNzZkNzgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoAN0/odJ0vo72mOdSlkb+2aVKng
2xYQpYZt1cDh6ga48IS55KCaJpdZ5ELN74TMX7sWqY/i1R61EGWGICNwNT2blL35
+6DZci+IGB7rVKmo07vvQy1/mkY+w2NYM+IbSP+pLulY6LgmfTrQzvzFwN/DtDXb
emJHCYA5D2HSwtueX5wf3FKHOQt4IRysV6htismkvAHZm3vnrL1I2FWcJ0s/9UWR
iOssi/p89bJGqg8N/+04nUVNJ3UFb2YkwPK6QEMrOYCV0Uch21HoXUbABvZZvwDE
bU0E+IhaWAxdFWd1zGaEnOHyLw9LkMbVKh4iaQOf+UtgZPxVJ8VDiutLKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF2fSKlOgKyDKbA6PkL3EbRRdteDMB8GA1UdIwQY
MBaAFN2F3GthQ6F/60mCDqUgBIlY9IrcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQt
NGFjODU2YTgxODJkLzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8yYTFkMzUtNmUzMS00MGU2LTk0YjQtNGFjODU2YTgxODJk
LzEvM1lYY2EyRkRvWF9yU1lJT3BTQUVpVmowaXR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVqVEmF3
6lJ8JOt/7kTlZUtA27u/9eoaF+EP59Bx12a2MnnifVqkBEzXBARNIZEdzXm1/0ii
Bv/u00Azv9LN2JmzNRefKxsKYwQQ8PdOZxi9Fn7r66PM8CyKPmr0NjiVh98c4vgb
JdwPgZsxMhEt4ii432ukgAJwGs9NTaslmL8CLFG5D/h1EMm+BHPhWfmIT7JAxydB
/tdgrWM6207SPKB4A+STJnZ1vV1aDAjE0NMB3f75mUrrv6tWhooouR1ikXxWT6sy
+o+muEaJb+trZcItC+BXpbVhLgue4dIN7Pxh0OwGpwfTdnD1vmj4bgD+NkJ6nGmY
qgWngLiF+GkfxA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:07 2025 by rpki-client