Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft
File: 3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft (raw, json)
Hash identifier: 25fkTnyIGhibepxUcdTCJd4fzK5kiXI9iac7r1SBxs4=
Subject key identifier: 65:2B:F6:34:FE:39:EB:AC:C2:DA:A7:BD:9B:F1:F5:7E:20:C7:CD:B7
Authority key identifier: DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4
Certificate issuer: /CN=dc6917645d9d220435f91c7e46c8110cf89acbe4
Certificate serial: 0197B70E958AAAAC0D906D822E28C6FA9372
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft
Manifest number: 0D96
Signing time: Sat 28 Jun 2025 15:01:15 +0000
Manifest this update: Sat 28 Jun 2025 15:01:15 +0000
Manifest next update: Sun 29 Jun 2025 15:01:15 +0000
Files and hashes: 1: 3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl (hash: 8gUvqceyK4pIUBdCWYhqBK/+blbZzr/CSfnG3t9yqSw=)
2: C9mugrtzW_-CpWlbrAzn7HLndJs.roa (hash: us/IF6tfe4s5IdJAAyc5z0B0e23waKBVaik+zvz/TyQ=)
3: yll503ISaq2wNzfEAk_Qb_MtGbg.roa (hash: LYtS+Gvc0u0aK5E+MP2oP4ZNnIbSc6rSwiTMseFfpYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:95:8a:aa:ac:0d:90:6d:82:2e:28:c6:fa:93:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc6917645d9d220435f91c7e46c8110cf89acbe4
Validity
Not Before: Jun 28 15:01:15 2025 GMT
Not After : Jun 29 15:01:15 2025 GMT
Subject: CN=652bf634fe39ebacc2daa7bd9bf1f57e20c7cdb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4e:e6:94:f4:52:b7:9d:15:93:4c:da:c1:c3:
35:d7:f9:ee:15:73:fa:cd:af:69:20:cc:0b:45:f1:
72:11:f0:d8:d0:0b:db:93:fe:16:12:8b:dc:09:b7:
93:ec:28:fc:a7:e7:42:6a:e0:cc:f9:24:25:e1:91:
9f:45:a0:1a:ac:53:17:ae:ff:6c:75:3a:ae:89:1d:
a2:97:5f:0b:ff:45:95:1e:ff:7e:9f:f7:37:13:e9:
28:7a:9f:ea:b2:56:6f:cf:fa:0c:50:24:c0:17:09:
a6:62:f3:72:89:56:39:53:a1:b9:5b:58:a2:57:5f:
11:4a:27:99:02:15:d7:ec:20:c4:c3:b0:d4:21:a6:
58:3e:2b:55:64:47:41:0f:d7:56:0e:92:ea:b6:30:
60:32:6b:8e:9c:4f:df:f1:89:21:ae:7d:da:a4:44:
07:df:38:ce:f9:2f:d8:6a:de:81:ae:f8:66:c8:59:
0b:84:75:ec:54:b1:ce:01:f6:0c:6b:5f:76:c0:9c:
b1:a9:c5:60:03:44:78:45:98:9c:b5:59:9f:f3:d5:
0b:fd:51:c3:23:cb:e5:96:0a:8e:e3:5e:da:ff:cc:
5c:96:fd:57:b9:f4:49:ee:3e:f7:85:d2:2d:ae:e5:
9d:bf:fd:69:43:30:85:37:c7:c6:c8:99:9c:61:cb:
ee:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:2B:F6:34:FE:39:EB:AC:C2:DA:A7:BD:9B:F1:F5:7E:20:C7:CD:B7
X509v3 Authority Key Identifier:
keyid:DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:07:f3:93:8e:51:f0:f1:f5:76:9e:ba:b1:3f:f4:64:c3:a9:
f0:be:25:ca:66:b0:4f:ed:6f:91:44:46:34:50:84:3b:95:81:
7f:2e:e4:04:b6:7c:20:b5:99:57:d2:89:1f:83:d2:d7:07:21:
0c:19:e1:57:4f:2d:3f:30:40:a9:76:fb:4c:2c:a5:53:d9:49:
d0:75:09:cd:37:8c:50:5f:fe:88:7f:17:06:c7:76:d6:e3:a1:
81:21:2b:bf:28:ba:b0:c9:cc:b5:04:2d:9d:8a:a5:13:ba:95:
f7:c8:bc:c0:52:80:1b:e9:52:8e:6d:40:e3:c9:77:65:d5:63:
5c:ce:88:40:b3:ad:47:4e:23:6e:4a:59:cb:22:51:3d:1b:9e:
77:c6:10:c1:4e:99:01:6c:74:c9:66:e3:f2:fb:f4:d3:b2:4f:
82:a6:09:81:92:8d:93:d5:24:92:57:c7:c3:79:8c:85:49:28:
2e:51:01:09:01:e8:2f:54:2c:5b:4d:ac:af:cf:02:a2:da:b2:
a1:d6:6e:bf:59:05:2e:8e:a3:38:50:04:81:96:e4:09:3b:54:
60:dd:71:7f:b9:0c:7d:5b:17:c2:fa:e0:b1:57:7b:76:46:7a:
fb:83:39:2b:b9:07:24:05:f1:bb:6d:f2:e8:16:99:53:9f:dc:
e3:2b:ba:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:44:43 2025 by rpki-client