Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
File: 3tvumMupuOYloRR7s7VRl9LQoFc.mft (raw, json)
Hash identifier: 11Nbi4JQO1mrt0FBYOEiinuUvh6jl0Kqh6K51mvydbg=
Subject key identifier: 19:19:18:CE:24:C1:06:BA:B0:D8:EC:F6:CF:7F:6C:AE:71:A3:6E:2B
Authority key identifier: DE:DB:EE:98:CB:A9:B8:E6:25:A1:14:7B:B3:B5:51:97:D2:D0:A0:57
Certificate issuer: /CN=dedbee98cba9b8e625a1147bb3b55197d2d0a057
Certificate serial: 019A4D066E104DEC0F3FAC901689DB88AB6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tvumMupuOYloRR7s7VRl9LQoFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
Manifest number: 0774
Signing time: Tue 04 Nov 2025 04:00:58 +0000
Manifest this update: Tue 04 Nov 2025 04:00:58 +0000
Manifest next update: Wed 05 Nov 2025 04:00:58 +0000
Files and hashes: 1: 3tvumMupuOYloRR7s7VRl9LQoFc.crl (hash: xBU46vrgmfAOGWs4Av8iNM1IvknNHZYZYELRq+sGxN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3tvumMupuOYloRR7s7VRl9LQoFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:06:6e:10:4d:ec:0f:3f:ac:90:16:89:db:88:ab:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dedbee98cba9b8e625a1147bb3b55197d2d0a057
Validity
Not Before: Nov 4 04:00:58 2025 GMT
Not After : Nov 5 04:00:58 2025 GMT
Subject: CN=191918ce24c106bab0d8ecf6cf7f6cae71a36e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:31:c6:25:c7:f7:f1:71:71:45:f1:48:78:bf:
6a:e1:40:07:75:b1:7b:a3:9e:97:7a:1f:ce:22:ef:
94:37:49:53:67:27:fa:d1:5e:35:7c:05:9e:d1:ba:
6e:a3:ab:4c:25:be:fd:e1:33:5e:55:c4:d5:ff:60:
77:ab:ab:99:64:95:25:5e:d3:ed:0f:9e:93:53:75:
19:52:7d:52:5b:56:b4:4e:37:2f:2c:63:8d:33:a8:
8c:fa:b3:92:04:9c:58:0e:61:ec:52:bc:d8:76:ab:
d7:76:c3:86:9f:95:a3:c5:67:ca:42:ee:2b:fe:37:
2c:1a:c5:78:4b:58:25:05:66:8a:9f:fb:20:08:25:
37:80:85:12:76:a7:ed:ea:d5:93:1a:19:9e:54:c7:
14:73:77:53:41:e9:31:c9:05:fc:bd:12:05:1a:14:
94:3d:b9:fd:46:da:be:e6:61:62:2b:eb:94:44:78:
af:2e:cc:2e:98:83:45:c0:a1:cc:4a:0d:03:12:74:
af:f4:b0:5d:d5:e7:2c:2a:81:f9:59:46:3f:58:a4:
93:cb:c1:a6:f2:23:ab:9b:28:ce:d6:0a:f0:32:1a:
9b:73:9f:30:36:11:12:de:93:c4:b3:77:7b:85:f8:
e3:52:4f:45:0d:77:61:9c:b5:a0:03:7d:47:2f:a0:
7e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:19:18:CE:24:C1:06:BA:B0:D8:EC:F6:CF:7F:6C:AE:71:A3:6E:2B
X509v3 Authority Key Identifier:
keyid:DE:DB:EE:98:CB:A9:B8:E6:25:A1:14:7B:B3:B5:51:97:D2:D0:A0:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tvumMupuOYloRR7s7VRl9LQoFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:24:93:5b:4a:78:a6:fe:92:d0:ac:70:71:1a:94:d6:3b:f0:
7b:0a:ac:85:4a:a3:ad:e5:e3:09:fc:be:df:47:fc:33:e8:60:
61:c8:2e:8d:82:3f:d4:94:c9:3d:4b:2d:28:be:d5:8a:c6:1d:
81:41:b6:3f:cd:53:79:4f:2d:ea:a8:87:85:1a:f1:0e:64:f2:
8c:1b:1e:08:4f:97:90:ba:d9:2d:a8:fc:5d:b6:b7:68:b3:5b:
3e:32:c5:1b:35:0e:b6:ec:f2:26:6f:20:b1:5e:e2:46:d5:25:
f0:13:e8:76:a3:85:2d:be:29:2a:51:2a:59:ae:d6:79:63:91:
af:fa:5c:b4:a0:f1:48:47:bd:9b:a2:77:ed:50:28:da:c2:78:
79:79:e3:03:2f:23:08:8f:80:96:1f:b9:63:4f:64:c3:ae:c6:
dd:f5:26:57:dc:a3:19:75:99:e1:c5:36:d9:25:da:6e:80:a7:
88:73:84:bc:cc:e1:50:fc:bf:4d:4e:0b:36:4e:91:cd:a9:70:
47:21:3a:68:cc:84:58:20:33:64:08:99:d0:b7:66:04:0d:ea:
e2:9a:56:d4:41:3f:0e:99:b9:39:d7:66:3a:23:be:0f:45:3a:
e6:ba:6c:0c:a9:05:21:6d:1f:da:97:ed:58:5f:52:21:3a:b0:
0d:a1:f4:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:47:03 2025 by rpki-client