Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: VT/SjrZjwHHew0csh8s78czhnRdrpoXudwqHBhYktvI=
Subject key identifier: B6:F6:70:78:05:57:A4:44:3F:3E:15:8A:09:07:7D:21:D9:61:F6:01
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 0197B5C4E9D6B6791BDB02512BCE0CABC7F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 14F4
Signing time: Sat 28 Jun 2025 09:01:10 +0000
Manifest this update: Sat 28 Jun 2025 09:01:10 +0000
Manifest next update: Sun 29 Jun 2025 09:01:10 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: w21V9q6Mu/s5DtXNRRkZSy68aEjxjXtLCcSCJtN8Ogk=)
2: RmRTHkNLraqOOzazgFQdU_YCKkM.roa (hash: 5SoXabo2aLivwm4lm+kA69S7S7+v67Nc52d80muCgcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:e9:d6:b6:79:1b:db:02:51:2b:ce:0c:ab:c7:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Jun 28 09:01:10 2025 GMT
Not After : Jun 29 09:01:10 2025 GMT
Subject: CN=b6f670780557a4443f3e158a09077d21d961f601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:8f:ab:73:b1:63:3d:4e:2b:5d:59:70:34:4d:
e5:f5:9e:ad:df:71:a2:b6:a8:cf:f3:e7:55:ff:09:
09:4e:ed:25:b5:58:cc:22:24:07:f6:69:0c:31:22:
96:a4:ea:56:bc:3e:6d:5d:b6:50:0a:51:25:56:cf:
c8:20:c3:94:61:5e:0d:f6:63:00:8c:4a:bb:1f:24:
e3:0f:b6:a3:cd:4a:4e:75:a0:78:f5:d1:87:e5:c3:
7b:09:e7:d4:e8:bc:e9:41:d8:23:12:ce:a8:62:31:
f1:94:d4:88:cd:d8:54:02:d7:6b:2d:a9:82:a1:70:
bc:83:db:00:99:33:d9:f0:ef:1b:b8:3e:03:2e:ed:
69:81:ec:be:57:dc:ae:c2:d6:76:bc:cc:a3:1a:e6:
1e:cf:1e:5b:5d:47:a3:43:12:f9:77:55:5b:ad:df:
1a:24:56:e0:99:ce:64:31:48:3c:2f:25:93:8f:19:
a7:ed:b0:a0:ed:f8:11:3c:6b:47:bc:76:fd:0d:69:
ea:5b:ac:b7:2a:30:86:4d:7e:45:47:e3:a8:44:1c:
d0:11:c7:f2:e2:26:4f:6d:54:88:5c:9c:e9:a1:0b:
6d:de:63:9f:a1:7e:2d:1b:e5:1c:d7:30:45:8e:6b:
28:45:10:80:46:dc:83:a5:ba:22:56:6b:13:93:99:
7b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F6:70:78:05:57:A4:44:3F:3E:15:8A:09:07:7D:21:D9:61:F6:01
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:76:5a:9b:86:59:44:11:81:a5:db:df:f5:4c:97:9b:4a:d5:
63:9b:ea:1a:e2:f4:06:3f:c0:d4:c1:36:1f:50:70:36:ef:8b:
a0:db:04:58:42:82:ad:6a:36:b0:6d:24:db:5d:10:26:59:68:
aa:84:f4:23:d8:1a:a7:33:17:9b:96:03:db:5c:14:63:6d:7a:
f7:bd:32:2c:70:a0:e4:fe:ab:a2:42:67:48:a0:14:64:9e:b8:
ce:a6:a5:93:d9:b5:7e:b8:9a:4e:da:83:bc:1f:91:0c:dd:7d:
22:fc:df:de:1f:88:e5:e7:1c:8a:3e:5f:dc:b4:6c:9d:1a:5e:
a4:6f:7b:68:f6:57:34:0c:1f:61:23:55:dd:34:9f:c9:2c:34:
d1:1e:e3:0b:6b:67:9e:a1:df:c1:cb:21:47:49:56:06:ae:11:
1c:3d:29:7d:ee:db:d3:bd:8e:87:24:1e:4d:a0:d1:9f:8f:c0:
ac:0d:95:11:05:7d:d5:28:36:4c:1f:09:a0:4c:48:b9:7e:f0:
32:03:a5:d3:01:f9:71:2d:9f:5e:b3:6e:6f:c6:9d:2a:44:0a:
2c:4b:e4:7f:0f:c8:19:2a:73:f1:20:a2:5b:7c:09:7f:37:b9:
8e:85:21:69:b2:40:5a:01:d9:55:d1:d8:30:71:21:94:52:d4:
d9:1b:5c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:23 2025 by rpki-client