Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: CwbBD8MdCdRRGselYpj4EHMmui+VAkm6jKpMAxoPR8g=
Subject key identifier: CE:AC:CF:EB:1D:45:DE:38:E2:3E:62:59:AB:E9:4E:4A:17:1F:F7:70
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 0197B70E6243B9E553D0C39AA5254CB6F3AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 0A26
Signing time: Sat 28 Jun 2025 15:01:02 +0000
Manifest this update: Sat 28 Jun 2025 15:01:02 +0000
Manifest next update: Sun 29 Jun 2025 15:01:02 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: /z6z+YGLvNwd76tu0uI4BoF0ccTqNBS2AAFPreDToZo=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:62:43:b9:e5:53:d0:c3:9a:a5:25:4c:b6:f3:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Jun 28 15:01:02 2025 GMT
Not After : Jun 29 15:01:02 2025 GMT
Subject: CN=ceaccfeb1d45de38e23e6259abe94e4a171ff770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:a2:fe:be:d5:14:15:3a:c9:1d:e0:5e:0e:
dd:1c:5d:8e:e5:25:fc:88:6b:82:fd:2b:0e:ce:8c:
61:46:4d:e5:20:08:bf:b7:4a:32:0a:10:b5:24:85:
19:ce:e4:3a:04:d6:2a:72:d2:9c:7b:e4:b9:7c:9f:
66:d5:e5:bf:93:13:02:c1:25:a2:d6:30:2c:b6:7d:
39:14:99:46:b1:21:59:fc:67:32:27:9b:a2:0a:99:
95:75:db:db:c7:76:a7:b8:b1:08:69:ac:85:f8:d4:
d8:ee:08:51:86:73:4c:ff:e8:22:0a:b7:05:9a:af:
32:14:6c:c0:23:f6:e4:99:97:d7:d2:2c:3e:47:14:
10:89:14:77:92:38:15:f0:ac:f6:5a:86:34:0b:5a:
43:e3:b0:8e:b3:cc:2e:0b:e3:2b:a4:4a:95:6e:6f:
28:39:f9:b2:77:34:62:b1:fa:08:f7:a5:a6:46:0e:
10:8b:73:90:a4:e4:b6:f1:91:80:bd:5f:16:8e:81:
94:2d:b3:4f:ed:b1:b6:a6:2f:d9:7d:20:27:1a:2b:
cb:9f:9a:15:5f:c3:d6:84:e5:07:13:30:58:6a:7a:
02:37:0a:2d:e5:0e:7a:87:48:34:9f:d5:a2:9a:fa:
fb:96:17:d0:f7:68:ed:30:b1:e4:3e:1b:f2:83:db:
86:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AC:CF:EB:1D:45:DE:38:E2:3E:62:59:AB:E9:4E:4A:17:1F:F7:70
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:cd:9a:6b:2c:32:79:78:72:d2:56:58:ef:ce:90:f6:c7:81:
e6:f6:32:6a:1a:77:1f:9c:7e:2a:bf:b0:3a:91:4e:b5:a4:4b:
70:fb:8a:4c:38:8f:a0:2b:3f:19:2e:0e:99:1f:ff:ee:ab:58:
7a:20:c0:65:a2:36:20:ab:7f:69:a1:8f:61:49:c5:db:17:fe:
34:8e:f5:a0:0c:a2:42:1c:58:03:a5:6c:60:ba:d6:14:a1:22:
3a:fb:0d:46:ac:41:48:4a:31:7b:43:30:4a:b9:e0:9e:5b:9b:
c8:1a:e4:f1:4f:c6:57:37:70:c9:14:5c:d1:8d:9e:66:43:fb:
ea:a8:68:b8:90:fb:08:23:ba:c2:b5:4d:94:d6:fd:a1:4d:a2:
aa:b1:a6:fe:d6:68:c9:f2:53:47:86:ca:51:c9:bf:e1:7b:c9:
3d:99:46:d0:96:10:ea:86:5d:2e:bd:86:e4:d2:5f:e8:6f:44:
13:aa:2d:11:d9:e1:7c:0b:39:51:83:60:11:28:4b:4b:ff:ed:
13:9e:1b:8e:73:8d:53:c6:04:6a:d6:02:67:36:ac:16:95:45:
09:1e:67:08:ea:ec:04:cc:7b:e7:85:46:4a:b9:09:8e:e0:96:
72:d2:6d:80:00:e6:21:22:18:10:8a:b3:1a:51:a7:57:81:5f:
2c:90:d5:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:52 2025 by rpki-client