Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
File: 3g2da2l8ochlcMJWhi5oWLR5nIU.mft (raw, json)
Hash identifier: soXfiDLiNbpKMvlgGTvjAJctjhBOC/Pw0fih+IZSwiI=
Subject key identifier: 75:0A:12:5D:46:57:9E:86:CB:C7:85:E3:CC:6B:E7:F3:69:34:BB:67
Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Certificate serial: 01969E2C7BCAF1C54F1D0F316F0C802DA841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
Manifest number: 152A
Signing time: Mon 05 May 2025 02:00:37 +0000
Manifest this update: Mon 05 May 2025 02:00:37 +0000
Manifest next update: Tue 06 May 2025 02:00:37 +0000
Files and hashes: 1: 3g2da2l8ochlcMJWhi5oWLR5nIU.crl (hash: 7F4zPWCgVmalVVmzMBkpoCmEDK8/fqz3OaQc2eaL/Mk=)
2: CURhnBTebRtFbuqIF-dFXdwxOsI.roa (hash: N2c5XcgW+AQpVpLwLHbjy6S9Vm1RjK7GXpDlAsFZpfk=)
3: EUX35BVNkJsUjFXuBk75OVm9PCc.roa (hash: K2j+jUDEk3zskvvRatSmoYAxHWdNXJq7sEJx+OMyHQQ=)
4: EpSf_xGsxic86z10zbwqzKmasW8.roa (hash: eSnnnz/WKP7V/MJyjND4ey6FBA8RQok1qLjk+ng6oW4=)
5: P2rbCazRzAecS6cq7qBlJh3ulhk.roa (hash: eS1swdw4PwPA3JuCzPIM9DRGgb8q7vXujdInn+mWiHc=)
6: mld6HE3RapKTIrTK3ARnJwX6Nfo.roa (hash: QckW2u4tae0vEXpqjOByW8q7ybuT0MKIf8YyQZ8Ec7k=)
7: pX4EUgeDNNWi24hGb7Vs1LSwVFU.roa (hash: 8qojOgWb70IVU0ElW5/Sut6REATPavh52G81zhsEHj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:7b:ca:f1:c5:4f:1d:0f:31:6f:0c:80:2d:a8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Validity
Not Before: May 5 02:00:37 2025 GMT
Not After : May 6 02:00:37 2025 GMT
Subject: CN=750a125d46579e86cbc785e3cc6be7f36934bb67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:20:a6:95:8b:fd:13:ef:c5:fd:6a:b0:f0:
3b:d0:1e:fc:88:31:52:bf:78:ec:a8:3f:bc:22:46:
59:a2:f1:31:22:a8:b0:7a:e6:9d:c4:1a:4c:b0:b7:
92:da:c4:c5:1d:57:23:7c:fb:3f:4f:84:92:40:d5:
37:d9:0a:d4:8a:6c:30:6c:5a:7b:e6:6a:85:8d:10:
3f:94:9b:21:bc:01:cd:a7:9c:15:3a:fd:95:74:da:
8b:74:f8:e4:e7:84:d8:6f:10:b3:73:ad:c7:d0:12:
15:4c:b9:c5:ac:c3:6c:49:5f:79:09:7d:b4:33:2e:
64:d4:2a:a0:81:76:b6:ce:07:b4:e1:86:9e:09:08:
ee:44:cc:14:4d:7d:c4:8f:27:59:b6:fe:25:3f:66:
4a:aa:a2:33:74:12:36:17:11:aa:d5:7b:0b:1e:19:
cc:b6:3a:64:77:83:dd:14:8f:23:96:b2:88:83:5f:
b4:0e:5c:d6:25:74:66:0d:e5:8b:31:b2:11:b6:43:
b6:29:bd:ac:4b:1e:69:55:e5:7f:66:7c:d2:90:87:
a0:2c:2d:b8:88:c0:25:fc:8d:1d:60:c4:7f:49:8d:
5e:1c:1e:b7:b2:5f:83:90:ed:42:77:7e:f6:36:10:
12:99:10:9d:a0:66:2a:f8:12:20:e8:8b:66:e3:b1:
80:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0A:12:5D:46:57:9E:86:CB:C7:85:E3:CC:6B:E7:F3:69:34:BB:67
X509v3 Authority Key Identifier:
keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ce:c9:85:60:49:8d:ea:9f:71:80:2a:80:03:97:94:0e:fe:
8c:b5:82:3d:e8:00:60:6d:3a:ef:87:d6:6d:45:a8:a8:4c:fb:
52:1f:b2:54:8b:83:5f:35:7c:04:d1:d3:81:07:25:2d:65:06:
a3:f5:24:cf:94:30:13:a5:12:14:25:86:bc:f3:bf:dd:2a:96:
fa:34:3b:53:5c:8a:23:ae:ea:af:ec:f2:22:7e:1d:40:cf:47:
44:78:a7:4d:3f:65:20:ec:91:b0:e5:1c:d2:17:3f:4c:7e:90:
b6:48:b6:da:aa:62:4d:0c:76:00:bc:d9:45:19:59:29:85:2e:
61:7e:81:a3:e7:e2:79:e2:81:e8:53:8f:8d:37:f4:ab:65:55:
60:00:86:c1:cd:9e:5b:e5:6a:c3:73:28:cd:07:95:d4:48:69:
b5:4d:eb:c3:a5:ce:a5:bb:a0:74:69:f6:40:db:1b:fe:f3:67:
3e:1e:59:2e:ac:85:a7:a7:84:6c:20:16:11:bd:33:de:5f:1e:
95:49:36:d1:82:5c:85:70:f8:81:9f:e2:45:a1:14:61:f2:03:
1c:ba:5d:9a:b2:86:d9:cb:5c:f9:01:f7:44:96:f6:ee:3b:6b:
ef:a5:10:1c:34:cf:da:04:07:4d:6d:e6:89:6b:e6:06:79:23:
86:22:bb:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 03:49:59 2025 by rpki-client