Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: wCgQ4wuNYarzTLbPbKBKZxvW8un3AM6SCCR0fdV6t2k=
Subject key identifier: 86:0C:F2:74:65:8C:43:85:7B:9A:D1:B4:4E:12:BE:5C:D5:6E:8A:F2
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 019880F927F9B648D14919D64C7E4445A3C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0E03
Signing time: Wed 06 Aug 2025 20:01:08 +0000
Manifest this update: Wed 06 Aug 2025 20:01:08 +0000
Manifest next update: Thu 07 Aug 2025 20:01:08 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: mcM7qiJCzjYMDUW2ejAt9uphLxvNhHaDJ3qMSoMxbvg=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:27:f9:b6:48:d1:49:19:d6:4c:7e:44:45:a3:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Aug 6 20:01:08 2025 GMT
Not After : Aug 7 20:01:08 2025 GMT
Subject: CN=860cf274658c43857b9ad1b44e12be5cd56e8af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:87:d7:d3:00:16:4d:68:f0:dc:1b:71:f7:ba:
c3:d6:d9:c5:bf:91:b9:7f:1f:49:7c:27:66:03:b9:
ed:b6:fb:d5:31:c7:36:5f:7a:2e:15:cb:2f:0c:86:
73:67:5d:0f:25:14:1f:49:58:4b:38:4e:c7:12:45:
e7:11:06:23:cd:b3:73:fc:26:85:d4:d4:72:59:1a:
e1:14:f6:6f:c5:3d:1b:2b:01:bc:06:9c:b8:91:ba:
ed:33:31:cf:54:b5:d0:98:ef:85:2c:79:a8:0f:a1:
92:4c:b4:b5:36:0c:ca:65:38:44:24:22:d4:40:c2:
bb:b0:0a:bc:7c:cf:04:12:e5:19:96:89:33:fd:18:
6a:5e:05:bf:58:57:2a:d0:d0:67:42:8c:0d:7d:ac:
da:b4:ae:00:35:04:21:8e:35:a0:4f:d4:c8:05:bb:
57:3d:c9:34:2f:2d:1a:e5:57:ca:f0:fa:4d:25:91:
4c:e1:df:6e:bd:ac:f2:34:a0:43:f7:d7:55:1e:f6:
94:91:9f:50:00:d2:be:23:4b:75:cb:e5:f7:84:b7:
73:13:68:bf:a4:67:d3:49:b8:83:5d:ea:3a:04:18:
d3:44:bb:5f:49:8b:43:43:51:02:09:cd:7e:34:49:
7e:bb:d7:86:d5:67:65:de:09:a4:1d:2d:a3:65:27:
24:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0C:F2:74:65:8C:43:85:7B:9A:D1:B4:4E:12:BE:5C:D5:6E:8A:F2
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:07:50:c0:26:78:68:a5:bb:c2:06:d9:fc:9c:1e:d2:c7:93:
80:a9:11:6b:58:ad:1e:70:c5:35:a4:0a:a0:e2:31:03:3a:05:
49:88:8f:e5:c1:c1:bb:c2:1c:ee:5b:fe:33:2e:bd:49:8e:da:
65:31:90:1d:30:64:1d:bd:26:d2:fa:3a:8c:77:c4:49:06:bc:
cc:5f:e9:4f:9d:62:81:8a:ec:25:14:4e:9d:bf:24:66:12:04:
3c:52:16:92:51:44:94:57:22:7b:a2:05:ab:a4:ae:7b:7a:c7:
9a:fe:0a:44:75:ff:b5:f5:13:85:a6:fa:68:12:d7:61:74:d5:
cf:12:b2:af:0c:59:ea:d4:e1:3b:51:e0:a0:c6:a8:94:45:bb:
3c:03:d0:d7:42:54:6b:ca:c0:9f:cf:c3:3d:7a:6c:86:79:48:
3c:dc:ba:f6:3e:99:5e:f9:8f:cf:4a:d4:20:6e:24:90:3c:79:
7b:a3:f5:8b:59:47:da:d0:3a:5d:c3:16:c4:59:13:73:0d:b2:
87:f8:8c:f3:f4:00:9c:47:d3:c9:c2:9e:06:92:5c:15:1f:72:
94:4c:3c:b8:8b:40:39:f1:ea:16:29:a3:37:65:49:2f:ca:1b:
7e:d2:16:89:e9:ab:6e:8b:99:d7:74:a4:40:0e:ba:eb:ba:05:
c5:71:6f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:25:02 2025 by rpki-client