Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
File: 3g2da2l8ochlcMJWhi5oWLR5nIU.mft (raw, json)
Hash identifier: NLScDZmuJK4L49SdGCq9ip8FSgMiampGgY7ZHOmNtx8=
Subject key identifier: 3A:43:06:1B:82:B2:93:5B:F7:7E:5B:83:85:DE:FA:41:B8:75:D6:A7
Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Certificate serial: 0197B8211C2DBB590273748538905B1ABF70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
Manifest number: 15BC
Signing time: Sat 28 Jun 2025 20:01:06 +0000
Manifest this update: Sat 28 Jun 2025 20:01:06 +0000
Manifest next update: Sun 29 Jun 2025 20:01:06 +0000
Files and hashes: 1: 3g2da2l8ochlcMJWhi5oWLR5nIU.crl (hash: CFp3mUl0V5RVa2Yn95amiqDhq7tNXuVwXU9g5S9Mahw=)
2: CURhnBTebRtFbuqIF-dFXdwxOsI.roa (hash: N2c5XcgW+AQpVpLwLHbjy6S9Vm1RjK7GXpDlAsFZpfk=)
3: EUX35BVNkJsUjFXuBk75OVm9PCc.roa (hash: K2j+jUDEk3zskvvRatSmoYAxHWdNXJq7sEJx+OMyHQQ=)
4: EpSf_xGsxic86z10zbwqzKmasW8.roa (hash: eSnnnz/WKP7V/MJyjND4ey6FBA8RQok1qLjk+ng6oW4=)
5: P2rbCazRzAecS6cq7qBlJh3ulhk.roa (hash: eS1swdw4PwPA3JuCzPIM9DRGgb8q7vXujdInn+mWiHc=)
6: mld6HE3RapKTIrTK3ARnJwX6Nfo.roa (hash: QckW2u4tae0vEXpqjOByW8q7ybuT0MKIf8YyQZ8Ec7k=)
7: pX4EUgeDNNWi24hGb7Vs1LSwVFU.roa (hash: 8qojOgWb70IVU0ElW5/Sut6REATPavh52G81zhsEHj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:1c:2d:bb:59:02:73:74:85:38:90:5b:1a:bf:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85
Validity
Not Before: Jun 28 20:01:06 2025 GMT
Not After : Jun 29 20:01:06 2025 GMT
Subject: CN=3a43061b82b2935bf77e5b8385defa41b875d6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:70:1e:92:ca:13:8c:b1:2d:13:fc:5d:c9:7d:
4e:7d:bd:c3:9d:a7:00:74:16:0c:52:d6:bf:d6:83:
82:49:fb:e1:c6:18:31:d9:7f:8e:2f:d7:3b:90:11:
a0:94:3d:47:62:d8:57:8a:d1:cf:31:1f:5f:63:f6:
29:aa:9b:55:5f:22:95:5d:d0:4a:ca:1b:6a:6f:62:
dd:80:31:51:41:27:9d:b9:14:19:e5:fa:a4:99:d9:
5e:00:d7:69:ea:c6:df:12:5a:3c:69:5a:58:5b:1d:
e7:9f:98:bb:31:f8:3a:3e:b7:4c:89:69:4f:2b:09:
ca:d4:04:79:66:ff:e6:66:f8:5b:b1:33:c8:cd:0f:
b7:32:a5:b9:2e:98:30:44:37:be:2b:d0:55:4b:45:
96:03:de:50:28:95:55:41:90:63:b6:e0:57:ed:db:
66:be:9d:35:35:d1:d7:2d:16:97:17:2d:27:ac:8d:
c4:76:ad:4a:42:79:74:4d:eb:b4:92:e0:fa:6f:ab:
b9:6d:47:aa:bc:1a:ac:5e:8f:6f:48:9d:83:fa:84:
00:dc:5e:98:97:e6:e6:7c:be:f5:64:bd:14:05:df:
63:a3:d3:78:c8:be:a1:c5:a3:0c:28:e2:dc:38:fa:
dd:c1:51:32:0a:5f:af:b6:7c:0c:0e:af:2f:49:80:
5e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:43:06:1B:82:B2:93:5B:F7:7E:5B:83:85:DE:FA:41:B8:75:D6:A7
X509v3 Authority Key Identifier:
keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:3c:26:f9:14:e6:25:04:c3:b8:ce:07:35:51:9b:71:9c:50:
dd:0c:01:c6:46:72:04:06:9a:99:18:61:8c:76:df:4c:5c:33:
60:85:79:18:0a:1c:03:a2:78:c3:19:7e:9c:60:00:e9:7d:a0:
13:49:fe:f5:6e:5b:58:92:a5:28:07:3c:7b:f9:c6:9f:b7:4b:
16:0f:d5:67:1a:2d:06:fb:ae:96:c2:e9:f5:76:da:95:10:45:
15:ae:fa:2b:71:af:f2:b1:08:72:96:ce:94:47:e3:77:6a:f5:
9b:16:a0:df:19:00:13:d8:9b:b2:40:ea:d8:13:d6:52:77:53:
80:8e:cf:ca:72:af:91:7b:35:3a:e4:27:c3:60:99:7c:52:04:
08:39:b8:44:f4:8a:bc:b0:e5:1e:40:9b:78:5f:0b:96:8e:d6:
33:5e:6c:1a:b7:c4:b5:1f:c9:47:c4:6f:d4:77:f9:d2:04:8a:
40:e9:b6:28:d6:f2:20:9c:10:e7:cc:53:8b:31:33:d0:d3:f6:
4f:69:ab:8a:74:cc:97:84:21:3c:f4:31:33:03:ce:d4:e6:92:
30:4c:54:a8:93:4e:6c:a6:06:ac:b3:b0:30:cd:b9:5d:da:ba:
15:4f:32:c8:f4:d2:76:e9:28:64:93:cc:b1:e6:cd:0f:b1:1a:
e5:8b:a0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:36:46 2025 by rpki-client