Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: 904/3odgQrEtQt1/y65Eml7xmDQBjQ7U+YEa2AbCABA=
Subject key identifier: CD:FA:92:2B:A2:1C:D0:E1:D7:17:20:17:FF:CB:22:98:24:16:EE:F5
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 0197B88F3FA7314B29ABCE38C8FC2BFEC151
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 09BB
Signing time: Sat 28 Jun 2025 22:01:25 +0000
Manifest this update: Sat 28 Jun 2025 22:01:25 +0000
Manifest next update: Sun 29 Jun 2025 22:01:25 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: 7FYTbLer6RreLsXeBzGQMFR4Prt5vWWHcjluw29IaMw=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:3f:a7:31:4b:29:ab:ce:38:c8:fc:2b:fe:c1:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Jun 28 22:01:25 2025 GMT
Not After : Jun 29 22:01:25 2025 GMT
Subject: CN=cdfa922ba21cd0e1d7172017ffcb22982416eef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:82:75:49:ac:89:02:04:0c:13:99:a3:76:e8:
ce:86:aa:b3:3e:77:a2:7f:3c:f3:6a:91:5e:bb:1b:
48:b8:f2:19:e5:91:09:05:0c:c3:18:3f:97:3e:48:
98:30:1b:9f:9e:5f:17:d1:f8:57:2b:10:44:ab:26:
5f:83:b6:2c:ca:72:e6:c7:64:99:52:58:fd:c0:7e:
85:cb:a8:a5:04:5a:2b:5c:9a:78:7e:23:7b:ae:71:
73:ed:27:d8:6b:d2:a2:b9:cf:e4:93:8a:a4:4e:42:
79:b9:6b:ac:c5:26:85:13:81:05:90:33:bb:7d:aa:
b2:e9:ea:00:6c:40:06:37:ac:c5:c2:93:0f:5e:bc:
9d:5f:e0:ac:be:31:b6:68:0b:3a:66:71:d4:51:d8:
97:ab:87:ad:36:fb:3e:b6:c7:09:7b:c9:dd:23:58:
86:ae:9c:2f:a0:e7:6e:2f:e1:bc:74:94:28:2e:63:
12:a9:c6:1c:ee:bc:b7:f3:d8:4f:54:98:c2:b6:c4:
0a:56:53:50:65:d7:dc:a6:0f:af:32:10:13:0c:8a:
70:30:80:b7:bb:52:f7:1b:c3:54:db:e7:f3:78:c7:
f0:53:f0:87:48:da:57:3f:64:93:49:96:85:47:39:
2b:f6:60:1c:1b:84:87:75:1f:77:a8:99:11:55:d8:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:FA:92:2B:A2:1C:D0:E1:D7:17:20:17:FF:CB:22:98:24:16:EE:F5
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:12:46:73:06:d6:ae:1a:88:2f:4f:04:db:1c:44:1a:5c:50:
77:19:00:96:90:fc:c2:51:93:ef:d4:31:7b:f1:d3:95:56:e7:
8c:4c:24:64:52:c8:96:75:e4:6c:70:3a:d6:73:1b:f3:c7:b8:
67:94:cd:03:e7:50:3f:ff:c3:e6:26:ed:b8:e2:af:b5:ae:4c:
fd:3a:d9:d8:8d:ac:5f:f2:dd:dd:ae:1a:58:8e:9d:a5:28:7c:
9a:eb:57:24:26:e1:70:44:82:29:6e:c4:af:c9:d3:75:a1:46:
f9:e1:1e:5f:3c:44:25:9d:d9:29:54:d2:d5:69:33:19:c7:de:
cb:25:41:15:f8:21:16:b6:2b:43:dc:d1:8e:66:47:2b:29:4a:
f2:c9:a5:18:87:5a:53:90:1d:51:54:06:69:a1:12:1f:db:22:
31:7a:79:a7:fd:be:f9:43:82:b5:21:80:1a:dd:71:33:62:9a:
6d:2f:db:57:07:ed:ce:84:c8:a0:07:29:57:b7:dc:d1:88:e2:
19:14:d7:aa:51:3f:c9:f4:53:60:d2:9d:51:3a:b2:c8:4d:72:
d0:0a:cf:9c:d9:c6:04:18:e0:0e:38:6f:6a:f5:39:5d:29:12:
5f:ca:02:aa:eb:b4:04:fc:3e:f9:02:1d:b9:62:84:3b:74:b2:
a4:0f:2e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:51:55 2025 by rpki-client