Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
File: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft (raw, json)
Hash identifier: O6vKAYS9aqePykUXfcGyRhY+WBVPtzJjKR49UmjrhVQ=
Subject key identifier: 38:98:F0:B8:AA:9C:A2:0B:2F:35:47:1C:08:CF:BD:8D:77:51:A4:40
Authority key identifier: 2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
Certificate issuer: /CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Certificate serial: 01989749D872EDE16824AB06DBFF890F59B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
Manifest number: 03F2
Signing time: Mon 11 Aug 2025 04:00:55 +0000
Manifest this update: Mon 11 Aug 2025 04:00:55 +0000
Manifest next update: Tue 12 Aug 2025 04:00:55 +0000
Files and hashes: 1: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl (hash: QZXsIpWp3EevneI5v0jjOhMBCOo4yFK0nT8Vk+BPWFg=)
2: sWNNpgMtdwo9DAGm3hQEfuzD9Oo.roa (hash: vP2EAWCKtEv68Ix4O5DKWgGMPVW5lFga8QKrSKSQB2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:49:d8:72:ed:e1:68:24:ab:06:db:ff:89:0f:59:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Validity
Not Before: Aug 11 04:00:55 2025 GMT
Not After : Aug 12 04:00:55 2025 GMT
Subject: CN=3898f0b8aa9ca20b2f35471c08cfbd8d7751a440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:49:ed:ea:f3:e5:0e:a5:62:a2:de:cf:d7:ab:
95:fe:40:e3:c8:3c:b7:39:4f:fc:68:cd:39:88:e8:
f3:54:32:2b:4b:a0:a8:df:6a:4b:bc:cb:95:b9:27:
57:08:c6:a8:3f:31:8e:3c:00:7b:f7:7e:8e:3c:79:
4c:63:b2:42:67:cd:73:00:fb:b4:1d:d9:14:5f:53:
08:b2:1f:1a:86:a7:77:9a:72:74:d7:b6:f8:93:35:
71:e9:8d:6a:7c:95:f5:58:a4:ee:cc:31:95:53:3e:
af:90:0a:af:5e:73:ce:7e:c8:c0:b6:73:b6:bc:72:
09:ee:21:29:da:dd:a8:ea:5f:6d:c7:52:96:d4:0a:
e0:77:1e:e2:da:c4:d0:ca:2f:8f:fa:68:86:61:34:
b4:7e:36:b9:8a:62:f1:5f:cb:06:00:59:54:17:14:
53:85:b3:3b:56:fa:c4:4a:39:a3:e8:d4:89:7d:a5:
db:a6:60:80:59:90:c4:98:e4:cb:97:4f:c5:c0:6c:
2e:42:71:93:b4:84:a7:07:09:ee:02:66:2e:c4:bd:
92:c9:9e:df:00:8e:24:8e:67:cf:70:67:9a:6a:01:
57:24:64:10:b8:bc:27:70:0d:c3:b2:83:fb:6d:04:
9a:c0:2f:ef:a0:ef:4a:2d:5c:24:26:8e:da:7c:25:
f9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:98:F0:B8:AA:9C:A2:0B:2F:35:47:1C:08:CF:BD:8D:77:51:A4:40
X509v3 Authority Key Identifier:
keyid:2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:4a:d3:e5:f3:4c:a7:7d:54:ed:a0:8f:75:66:c1:45:6d:f2:
3f:cb:69:ed:79:2c:2d:df:de:6e:a3:c1:d2:49:db:48:70:24:
63:5e:f8:41:af:0b:02:51:40:6e:50:e7:d9:09:d5:77:0e:5d:
5c:03:84:1d:d2:fe:06:3a:cd:5d:63:ac:21:82:ec:d2:10:25:
97:89:d2:a1:3e:df:52:7c:2f:8c:94:3c:54:37:b3:84:d7:f1:
74:1f:97:30:86:f6:30:8f:fa:83:f7:37:49:a6:58:fe:bb:b6:
54:3f:2a:ab:54:b4:de:30:50:f8:ed:31:5c:aa:c4:36:d4:64:
57:05:ae:f9:31:a7:1f:f1:5c:19:63:1e:52:5c:c2:5f:2a:07:
ba:59:a5:58:ea:b2:64:83:11:03:98:e7:69:e8:71:42:78:bf:
2f:53:46:43:1f:d9:ac:55:33:44:95:2f:05:34:71:92:5b:57:
55:da:87:de:52:83:46:00:23:0f:3a:fa:bc:c8:75:60:08:60:
d7:ea:23:d7:de:c3:b3:c3:af:1e:23:d1:c0:64:02:f3:8d:1a:
96:7c:8d:eb:1b:29:b0:18:f2:ec:4f:db:37:b0:da:fc:0c:cc:
68:a2:da:12:8d:e0:09:b7:f6:7a:6d:ea:b9:03:94:28:ea:24:
e0:7c:9f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:47:09 2025 by rpki-client