Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: F/aUHETo4hYMZIbsbgz0hIajmhKbwqPlAbhBRKzP3ZI=
Subject key identifier: C2:70:95:3E:7C:A3:7B:CA:E6:74:A6:47:D2:8D:90:1C:C2:63:74:53
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 0197B88F82F9283B84B32744CC48263176DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1547
Signing time: Sat 28 Jun 2025 22:01:42 +0000
Manifest this update: Sat 28 Jun 2025 22:01:42 +0000
Manifest next update: Sun 29 Jun 2025 22:01:42 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: ITdeNTptnkKqNyuYMavXj/nK4uvFsdKu2XokrIJ/8KA=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:82:f9:28:3b:84:b3:27:44:cc:48:26:31:76:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Jun 28 22:01:42 2025 GMT
Not After : Jun 29 22:01:42 2025 GMT
Subject: CN=c270953e7ca37bcae674a647d28d901cc2637453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d4:6f:b4:e4:42:53:16:7b:ca:d3:54:34:5f:
d9:97:81:db:6a:03:b7:8b:f7:b6:28:b0:2c:e7:27:
69:c4:b7:3f:71:35:f2:e7:c6:92:0f:a8:6e:99:58:
e1:94:e8:6f:ae:b5:5f:04:fe:22:aa:6c:3f:ea:38:
f1:ea:05:03:51:31:86:29:a8:90:24:80:ff:8a:5b:
6e:8e:79:12:e3:58:21:71:a7:bf:a0:66:b2:c2:17:
67:74:92:87:b4:21:71:1e:f5:b3:17:7d:b6:f6:50:
1b:20:4e:5f:5e:09:18:b5:dc:e1:8d:b1:7d:72:52:
ed:45:45:3e:4a:c2:b5:95:00:40:74:d8:3b:ad:a4:
a1:f5:bb:42:00:12:06:17:e4:49:0f:c9:66:3d:5d:
cb:f4:46:19:13:80:61:15:ac:8f:cf:8e:85:53:b9:
1a:31:e2:9b:3b:dd:a5:66:ec:82:29:d6:b6:37:b3:
b9:e4:e4:23:93:b3:4f:70:fa:bf:de:1d:a5:2e:e1:
ef:6c:9c:97:6d:8e:f5:78:80:70:13:52:7b:85:45:
37:ed:f1:9f:5d:df:23:e9:9a:7c:77:f1:46:75:73:
81:99:9d:32:51:99:11:71:db:cd:24:08:f1:ea:68:
84:17:b6:98:64:ed:d3:b0:ac:c2:16:d4:cc:90:78:
f1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:70:95:3E:7C:A3:7B:CA:E6:74:A6:47:D2:8D:90:1C:C2:63:74:53
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:4f:16:ab:29:d6:5e:6f:9b:63:06:9b:de:3b:f6:8f:86:89:
d4:96:31:e9:93:86:89:2c:04:12:3f:12:25:93:3f:14:68:cc:
0d:ae:76:b4:42:db:1f:cf:d7:b6:ae:a0:cf:08:57:90:45:71:
7c:e3:e3:68:0d:3d:0d:e9:6d:39:83:ee:37:cc:ec:97:9d:e7:
3f:21:0a:1c:73:c4:ae:8e:29:13:e3:1a:e0:b7:21:06:7d:18:
bc:9f:ef:d8:1b:8b:6f:d3:b6:e7:db:4c:45:20:d3:f7:eb:cd:
96:73:33:98:19:d3:29:90:d1:e6:da:a9:1f:4a:02:30:94:7e:
ce:a7:b1:dd:b0:a5:b6:45:b9:a1:19:ac:90:d0:2a:a0:4e:8f:
c6:c5:4a:db:fc:c0:7a:5d:16:75:c3:1b:7c:94:5f:6b:60:3d:
72:05:0e:e6:cc:5d:7e:d9:aa:b8:11:ec:71:c4:1f:eb:2b:36:
9f:b6:47:e6:29:ab:06:42:39:6a:06:d5:63:08:4d:59:6a:ac:
39:ad:de:fc:4e:01:21:28:42:72:65:14:e5:a3:b7:fa:68:32:
2f:56:47:51:45:e7:f6:00:94:ce:71:13:13:7a:4d:cd:60:a4:
d7:91:eb:f0:f8:10:0b:9b:68:65:57:1e:00:09:bd:32:93:d9:
52:02:96:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:14:39 2025 by rpki-client