Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json)
Hash identifier: eyGX03NiKvGomX7Kbw2+CcLAWlMVsp9i1Bo4r8rKEQA=
Subject key identifier: D9:75:00:BA:9C:BE:DD:D8:25:4B:1F:22:76:33:70:67:D4:C7:9A:83
Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Certificate serial: 0196DB1CDE51D37C894EAAAF89F52B7F1AA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
Manifest number: 14B2
Signing time: Fri 16 May 2025 22:00:24 +0000
Manifest this update: Fri 16 May 2025 22:00:24 +0000
Manifest next update: Sat 17 May 2025 22:00:24 +0000
Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: mE4H7OHbNSXcfw2dySxd2+kGk52ONQnIxH1PANdAYnE=)
2: 42kA1PGA8no_1otOl8ofpG12v3U.roa (hash: xUXq/2K3klfSiQDOaLNutcuHJyhv84PrwrhgM3PQUAM=)
3: LkJec_DKJKY3truWJ2sI8NcpsVM.roa (hash: b6Bvufz+fttjZflFNHVPDFRMwRxNIOBdrZIhpdVt6mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:db:1c:de:51:d3:7c:89:4e:aa:af:89:f5:2b:7f:1a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b
Validity
Not Before: May 16 22:00:24 2025 GMT
Not After : May 17 22:00:24 2025 GMT
Subject: CN=d97500ba9cbeddd8254b1f2276337067d4c79a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:f3:43:0f:1c:e2:04:a7:de:c6:bb:31:22:
9e:fa:35:4f:de:b1:ab:1c:8e:e1:3d:27:35:4f:3a:
9c:83:f0:28:fa:e6:f9:c6:6e:a1:7e:b1:93:76:e1:
43:25:c5:2e:84:64:3a:1c:68:4b:1b:99:15:21:db:
f8:0c:d2:b2:5d:1a:9d:9a:a4:25:33:35:b1:a9:68:
67:b3:15:29:33:b9:f5:be:0b:45:b6:20:48:b0:24:
4e:7c:c2:92:21:3d:0c:b0:1b:82:58:31:4e:bb:fa:
f3:cb:27:46:84:4b:3e:c0:01:a3:8e:04:fe:65:5c:
83:b0:f0:4f:cd:4f:0d:f0:57:4b:0c:43:9e:50:74:
6b:4d:75:5b:33:a2:48:6f:15:04:b8:b9:98:f2:53:
a4:02:22:f2:e7:5a:a2:bd:3e:a8:4e:66:28:e4:a3:
f0:28:d3:0c:90:d1:ce:4c:19:1c:4c:25:83:0e:11:
e9:12:dd:38:c7:39:c4:8d:6e:4b:a6:eb:d1:d5:8b:
b1:df:53:a1:08:a6:6c:0d:2b:d9:19:c6:26:f8:39:
6f:9a:b8:32:d1:03:fe:a8:8b:86:d1:76:3f:b6:d8:
78:5a:07:60:55:b7:38:fb:6d:09:5f:0c:4b:29:db:
1e:3d:2f:2c:56:f3:4a:54:28:82:3e:9f:4b:4f:44:
6e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:75:00:BA:9C:BE:DD:D8:25:4B:1F:22:76:33:70:67:D4:C7:9A:83
X509v3 Authority Key Identifier:
keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b1:68:aa:da:d7:63:b3:ee:f8:5a:5a:e0:e8:f6:0b:18:ec:
04:e7:74:88:7d:ee:af:63:c8:55:57:c4:e7:e6:d7:66:5e:18:
1c:29:c6:81:51:12:07:6b:e4:7b:65:b9:e9:ad:7b:8f:87:ef:
ca:ba:ff:47:cb:39:bb:85:c7:46:87:2e:3a:cf:0e:32:25:3c:
51:78:df:95:14:3c:61:03:4e:06:fb:6c:5f:fd:03:51:80:1c:
a4:54:67:63:c1:c8:b9:ea:17:e0:e5:e3:f0:1e:73:2c:22:e7:
4a:5f:ec:01:e0:b9:85:96:71:0a:83:31:ca:f0:da:9e:ea:c9:
c8:78:48:e9:24:2d:5d:b0:bf:09:d7:95:63:47:02:a2:ea:da:
19:c6:fb:01:1f:07:23:3a:a9:f9:57:9b:49:67:e0:54:f9:2a:
22:08:b9:18:6c:27:12:fd:3a:73:1e:6f:f1:d1:0f:20:c8:a5:
3c:ad:cf:bd:c4:dd:0a:a7:5e:c4:d0:d9:8c:95:c9:86:02:8c:
23:a2:1d:d9:1f:7c:8d:b7:53:c3:1a:bd:b5:3e:df:94:96:23:
e8:df:3c:b0:8f:bf:e3:80:0f:9e:3b:51:cf:a8:23:c7:c8:6c:
42:f7:92:84:cc:d9:23:c1:5c:d9:77:bb:51:ef:c6:44:b5:e4:
35:6b:78:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 02:30:33 2025 by rpki-client