Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
File: a3bJMU-szahJARCzTnmUbdjrrTo.mft (raw, json)
Hash identifier: CyyAvtZNPfxasai1C39sWfHz3LJYfIPlXns890NpeYU=
Subject key identifier: EB:C3:B9:B8:75:4C:7A:9B:E1:33:4D:AB:00:0D:A1:D8:55:5D:15:9B
Authority key identifier: 6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
Certificate issuer: /CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Certificate serial: 0197B6A1FDBE10078ECDAFFCE1197488052C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
Manifest number: 0C96
Signing time: Sat 28 Jun 2025 13:02:38 +0000
Manifest this update: Sat 28 Jun 2025 13:02:38 +0000
Manifest next update: Sun 29 Jun 2025 13:02:38 +0000
Files and hashes: 1: GQ4okKYObDE-j1xycURkWS4ZSu4.roa (hash: WJRKBv0neQmanj6UIle0b8oMi28WgQBdTYQH6BO3sRs=)
2: a3bJMU-szahJARCzTnmUbdjrrTo.crl (hash: JMMZqWwYAM4S0AlAAOU7UISSTkhObj85BPXYlgvrpXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:fd:be:10:07:8e:cd:af:fc:e1:19:74:88:05:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b76c9314faccda8490110b34e79946dd8ebad3a
Validity
Not Before: Jun 28 13:02:38 2025 GMT
Not After : Jun 29 13:02:38 2025 GMT
Subject: CN=ebc3b9b8754c7a9be1334dab000da1d8555d159b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6f:bb:c1:b2:88:63:ae:e5:25:6f:02:5c:2d:
eb:c7:64:bc:4f:56:ae:d8:fc:c4:db:6b:34:2b:d1:
61:64:34:a0:1e:10:30:27:30:21:db:c2:61:41:ce:
e4:22:4a:1a:ce:f0:d8:63:74:b5:54:68:1a:05:e3:
9e:c6:b9:ed:a6:3f:c5:6c:0a:28:d6:aa:9e:aa:e2:
78:0c:75:14:8c:a3:40:9c:ff:c6:e1:cc:a7:3a:36:
43:92:09:82:a0:51:1b:46:63:10:eb:7c:54:c5:3e:
cd:43:6b:81:85:54:0b:e7:3a:34:24:ec:ec:8f:87:
b0:53:d9:97:27:bc:c7:1f:7c:f5:0e:21:c4:1d:ce:
9a:fa:a8:8b:9f:7b:7d:e6:2a:1f:b9:f8:54:a7:4d:
a9:51:e3:64:c8:4c:75:88:e3:02:97:15:71:e2:83:
65:ba:db:54:f2:dc:48:67:e7:ac:9a:34:1d:72:6f:
37:e6:81:11:15:a6:9a:45:63:f7:ce:93:f3:ab:85:
94:76:d5:91:45:ba:22:96:51:d8:4e:94:fe:9f:33:
d5:e5:e7:33:e5:85:34:f7:de:6a:04:64:c9:92:d4:
dd:07:d4:0a:45:58:33:19:7e:65:ff:b3:65:9f:57:
00:bb:99:81:52:fd:95:9d:55:80:3c:19:91:ef:0b:
99:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C3:B9:B8:75:4C:7A:9B:E1:33:4D:AB:00:0D:A1:D8:55:5D:15:9B
X509v3 Authority Key Identifier:
keyid:6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:02:b9:02:22:9e:ae:4f:f7:61:48:4e:54:32:dd:c3:f7:f4:
6d:94:5d:6e:0d:71:ac:d6:d6:54:69:98:31:d8:6b:d2:27:40:
70:89:d9:d1:f7:81:4d:95:30:53:ea:18:6a:d8:c9:dd:1b:71:
59:1d:1f:7f:f5:85:bb:2a:be:df:5c:fc:cf:30:45:70:55:bb:
eb:70:bf:64:69:3c:94:ab:cd:92:bb:51:cc:1b:6a:40:88:39:
80:bc:59:08:f6:20:f5:21:70:a3:bc:c7:26:41:eb:22:60:34:
89:56:68:a6:63:62:51:29:42:38:e0:72:03:cb:27:5d:a2:19:
a5:17:12:23:b1:5c:a2:8b:1c:48:76:45:23:a7:4d:3d:d8:4b:
40:90:f7:5b:d2:7c:eb:19:43:0e:39:4f:9a:6c:79:43:bd:ed:
50:da:d6:c0:3c:99:11:c3:8b:b5:90:0c:ee:2f:7e:dd:20:63:
b7:d6:cf:5f:65:19:ee:82:a2:aa:82:68:da:56:42:5b:d0:d6:
f6:c3:49:57:2d:d7:0f:a5:53:09:29:0d:5e:e4:0c:8e:82:bb:
ce:f6:39:d7:2c:6f:4d:09:27:36:64:9f:b9:b0:b0:a7:3d:a2:
87:f0:18:09:e9:b4:24:63:f5:63:03:d0:c1:52:17:94:a3:01:
a9:ca:b5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:42:13 2025 by rpki-client