Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
File: a3bJMU-szahJARCzTnmUbdjrrTo.mft (raw, json)
Hash identifier: UzcYnlXArSLsgNpNIRrK2lR7tMJxPCsqrxrH0MlQe0A=
Subject key identifier: E6:B3:F9:CD:92:27:0F:06:7B:E5:C2:44:8F:20:DC:F3:F7:07:4D:62
Authority key identifier: 6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
Certificate issuer: /CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Certificate serial: 0196B9A41AF52EAE6138ECAE38DA3341FC42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
Manifest number: 0C13
Signing time: Sat 10 May 2025 10:01:01 +0000
Manifest this update: Sat 10 May 2025 10:01:01 +0000
Manifest next update: Sun 11 May 2025 10:01:01 +0000
Files and hashes: 1: GQ4okKYObDE-j1xycURkWS4ZSu4.roa (hash: WJRKBv0neQmanj6UIle0b8oMi28WgQBdTYQH6BO3sRs=)
2: a3bJMU-szahJARCzTnmUbdjrrTo.crl (hash: gCM6FOe1cORbjBU8MQww0+owUQYEehg2/iO8iNoOQAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a4:1a:f5:2e:ae:61:38:ec:ae:38:da:33:41:fc:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Validity
Not Before: May 10 10:01:01 2025 GMT
Not After : May 11 10:01:01 2025 GMT
Subject: CN=e6b3f9cd92270f067be5c2448f20dcf3f7074d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b9:ff:f0:39:d2:44:fd:1c:ac:75:14:63:8b:
72:85:d1:36:3a:fb:bf:78:39:53:de:f3:e2:06:70:
5c:81:15:8f:0e:a5:04:5f:eb:63:5d:30:d0:4f:f3:
af:01:42:71:23:fc:03:ed:1c:58:37:fc:3d:cc:05:
f6:16:89:4a:db:f8:66:52:a0:b8:a2:69:92:1e:6f:
b7:3a:50:79:bb:b0:3a:49:d7:1f:68:ce:83:f1:37:
50:32:bf:15:2d:08:68:61:79:46:08:88:b5:e5:c8:
9e:15:48:52:a3:58:52:ce:a0:31:68:d5:e4:83:99:
62:60:de:08:85:e9:ad:51:41:c1:37:13:cc:df:95:
93:62:8f:e7:5a:fa:67:e7:04:2c:17:92:9f:61:50:
40:6f:b2:a8:6b:f9:14:63:d9:21:da:46:ce:17:ce:
80:d5:73:ff:76:66:f9:49:8e:d1:e8:ee:e4:16:da:
7a:ee:61:4a:ea:17:48:25:63:0c:40:a9:ea:8c:58:
ad:1a:fc:da:c4:0d:67:fc:70:12:71:c2:70:65:37:
cf:42:78:94:6f:a7:0c:54:f6:e1:87:9d:f6:ba:95:
44:66:ff:ae:54:e1:82:db:86:e9:cf:f1:b8:9c:58:
1d:23:12:30:09:b8:ee:b9:a5:26:8f:9b:ca:9a:30:
45:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B3:F9:CD:92:27:0F:06:7B:E5:C2:44:8F:20:DC:F3:F7:07:4D:62
X509v3 Authority Key Identifier:
keyid:6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:6d:6c:c7:e1:a5:96:d6:fd:73:fb:d4:ba:32:ed:82:80:67:
64:93:ec:38:b4:90:48:2c:ab:d9:8c:ee:52:8f:85:df:3f:8d:
13:dc:cd:10:b6:0f:7a:87:22:f8:54:55:d5:22:93:54:6c:19:
9e:ec:02:4c:26:2f:2e:47:a6:5f:82:b8:3e:2e:e5:09:78:3a:
7e:73:95:29:fa:22:a2:c4:30:63:83:c1:2a:6b:9a:02:67:fc:
8c:79:33:90:37:88:d4:64:16:01:92:03:df:45:1a:bf:ef:fc:
dc:9a:c5:b9:09:83:a5:a0:8a:d3:36:42:14:2c:f8:18:04:50:
d7:bd:98:ca:a2:cb:87:24:be:d2:c6:cd:02:fe:f6:c9:27:7c:
fe:96:a4:d5:8b:6c:7f:8c:09:de:89:09:1c:85:3d:5e:1a:bc:
d2:ed:b3:69:19:02:eb:a4:59:0b:77:54:81:0c:6c:43:c3:f3:
6c:ee:21:d8:66:ba:27:8f:8a:31:f4:bb:5a:27:d4:2f:63:fb:
9c:bd:d7:45:9a:a3:3a:f7:35:5a:bc:d6:78:75:2c:99:46:b1:
9c:ee:6a:3c:b2:c8:9d:14:60:47:49:68:60:17:95:ea:16:8e:
be:19:3f:ae:af:3f:d8:e8:89:c3:84:4c:19:df:b7:15:43:93:
60:15:5f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 16:39:10 2025 by rpki-client