Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json)
Hash identifier: Jt4y+vsmhuDqlbyz6MPM8MJngWmj1Rwiq9HGOfdUCVc=
Subject key identifier: BE:5D:E3:B7:59:62:58:1B:01:9A:16:C1:C1:45:92:57:2C:AB:DA:44
Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6
Certificate serial: 0197B7EA9D1CC9E6431E34884120F00634BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
Manifest number: B1
Signing time: Sat 28 Jun 2025 19:01:35 +0000
Manifest this update: Sat 28 Jun 2025 19:01:35 +0000
Manifest next update: Sun 29 Jun 2025 19:01:35 +0000
Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: m+1JCW2PQ6m3o3w6qVk45DH2a5PKsJ6fLMctdrFZeH8=)
2: 4YPbiAtEI4aIVwSYoOB9atG5l_o.roa (hash: 5G9M3UH6Px38TdWKWNsZTcUTomaq2supA1BUuPBFOUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:9d:1c:c9:e6:43:1e:34:88:41:20:f0:06:34:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6
Validity
Not Before: Jun 28 19:01:35 2025 GMT
Not After : Jun 29 19:01:35 2025 GMT
Subject: CN=be5de3b75962581b019a16c1c14592572cabda44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:59:e0:05:f1:15:1f:bc:07:a0:33:e6:b3:
dc:02:6e:ae:3c:b8:2b:03:05:18:c0:f2:0b:27:6d:
ae:9a:b7:91:ec:cc:04:0b:c2:aa:50:6f:0d:b1:3c:
71:93:fc:99:ca:52:12:e9:76:f9:e8:83:57:ef:c5:
2d:e9:a7:87:95:1d:72:a4:21:e0:b9:63:02:2a:87:
98:67:1d:d4:4d:be:c1:f0:81:2d:be:c9:e5:0e:10:
9c:d4:4f:8d:f3:2f:3e:00:c3:e2:db:cd:ef:7c:ad:
9c:89:2b:45:36:c0:63:11:41:59:b1:5a:ba:a5:44:
2e:54:f0:6a:83:5c:78:dd:f4:3a:da:f1:a0:cc:f6:
fe:78:44:81:6a:91:ea:70:bf:8c:b6:e1:40:30:33:
3e:70:de:8d:fb:ad:cc:fd:1f:0b:16:3c:d4:1e:f6:
65:1b:48:e0:ec:14:bc:ef:ae:c4:02:14:3f:1a:aa:
9e:b0:36:cf:f9:9f:13:dc:e3:2e:eb:16:e5:f1:94:
da:d7:f7:f5:fa:45:d2:9f:d2:5d:d6:6a:0d:42:65:
31:fc:9f:63:50:45:7f:95:17:de:1a:75:28:47:f0:
04:9c:9f:83:10:e8:58:18:25:89:b7:f1:cd:41:6b:
2c:cf:bc:d3:9e:9e:e7:ec:08:e0:c3:32:5b:8a:4a:
c8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5D:E3:B7:59:62:58:1B:01:9A:16:C1:C1:45:92:57:2C:AB:DA:44
X509v3 Authority Key Identifier:
keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:f1:7c:82:56:83:dd:d5:63:87:cb:6e:80:28:d0:85:fb:2e:
64:41:f8:32:31:fb:e5:c0:fb:a3:7e:fa:75:54:da:1c:71:df:
fd:85:33:92:b0:7c:37:9a:c3:89:9d:7e:42:f7:6b:96:0e:6f:
e1:9a:ec:4c:0f:ea:74:dc:fd:dd:8c:ac:3f:7d:a1:94:ea:f0:
02:b6:f8:54:2c:44:e7:69:c9:b4:91:c4:c7:bf:97:37:54:84:
2c:01:f9:9d:53:c1:37:69:68:83:92:a0:70:2e:2b:16:1e:78:
d2:12:d5:c8:68:0b:05:07:f3:12:63:74:45:d8:c4:cc:b8:d1:
55:cc:21:29:42:9a:f6:86:3b:bd:cc:6f:a5:47:90:28:37:ed:
31:13:b1:70:28:5f:2f:c1:0d:d4:99:a2:25:56:42:5e:00:1a:
ba:7e:5d:b7:0d:42:b5:96:82:ab:03:16:c0:95:6b:55:12:62:
c7:4c:35:31:d4:00:30:bc:17:f1:2a:c4:45:ab:72:02:0f:c2:
1a:36:4d:ba:af:f9:6e:07:4f:7a:ad:db:cf:96:77:6a:a3:d5:
2f:04:f8:bc:4e:36:e0:ec:8d:9a:d9:31:ed:ed:41:88:c5:f5:
b6:9f:35:d5:15:c3:12:b9:0f:15:44:c7:31:04:61:71:8a:e2:
8d:05:42:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:07 2025 by rpki-client