Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File: 3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier: L6q5qFjBreCYMLjCtoRAn76hMHUjIY7u1YFr66ufuRY=
Subject key identifier: D8:E6:74:84:53:9F:7D:4E:64:3A:2C:3C:83:3D:7A:C5:48:72:09:EA
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer: /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial: 0196CD618CD42CAD120F7DFFB3F924FB9557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number: 0BCD
Signing time: Wed 14 May 2025 06:00:44 +0000
Manifest this update: Wed 14 May 2025 06:00:44 +0000
Manifest next update: Thu 15 May 2025 06:00:44 +0000
Files and hashes: 1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: qE95nYgxe9t4KFRvljyRKFp6zef7JTmLv0jdaNyh6yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:61:8c:d4:2c:ad:12:0f:7d:ff:b3:f9:24:fb:95:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Validity
Not Before: May 14 06:00:44 2025 GMT
Not After : May 15 06:00:44 2025 GMT
Subject: CN=d8e67484539f7d4e643a2c3c833d7ac5487209ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5c:ab:42:3c:16:c6:d5:cf:53:e2:52:c4:3d:
3d:17:bf:16:6e:2c:bd:13:12:20:b0:1a:c0:05:6a:
e9:c9:62:b0:42:f4:5b:19:18:65:9e:5f:f0:56:b5:
9c:18:36:90:e0:74:c9:2c:59:41:6a:0f:cb:2d:82:
f4:2d:8b:20:24:56:d8:42:d4:66:f1:04:73:3f:cc:
8c:9d:dc:ce:9a:d7:2a:5e:e4:c1:10:aa:6f:85:19:
24:fd:ff:9c:1f:79:44:e5:b5:06:5f:10:1e:bd:a0:
59:9c:79:9f:b5:b8:35:26:e0:2e:60:25:f6:d6:ea:
1f:80:91:9d:ac:90:0a:fb:d0:9c:f3:48:90:fe:3b:
af:c8:ea:34:3c:e7:13:c6:3b:60:1c:90:8f:55:da:
38:f1:48:cc:bf:e5:3d:cc:b3:a6:b6:1a:9a:60:ba:
5c:62:32:fb:55:24:06:8b:2c:89:40:e6:01:7f:9f:
44:9d:20:6c:33:ba:97:70:42:4f:fa:3b:58:02:5b:
7d:4a:94:f6:0a:5f:c6:b7:40:5d:7a:61:dc:46:8c:
08:f9:40:3d:2b:54:51:dd:79:b2:73:af:09:b4:1d:
aa:0a:62:5b:82:0d:a3:2f:2a:ad:2f:c4:e3:ee:67:
02:48:e9:77:b9:42:1e:6f:51:9c:87:72:2f:59:11:
8e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E6:74:84:53:9F:7D:4E:64:3A:2C:3C:83:3D:7A:C5:48:72:09:EA
X509v3 Authority Key Identifier:
keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:59:55:ee:18:03:16:d2:94:03:74:11:85:9e:93:da:b4:6f:
82:45:c2:4b:d9:ab:f9:77:b7:17:92:3c:d3:83:bd:93:34:96:
02:db:d9:a2:23:e1:d2:de:a7:4f:b3:d0:2f:b3:de:c5:9d:2c:
71:35:18:87:14:9a:c5:f0:a0:e2:2e:ef:ee:5e:e8:09:8b:ac:
ee:35:11:55:86:86:77:71:e0:63:3f:e7:bf:99:6d:e3:f9:9f:
fc:1f:6c:6c:29:84:33:17:bd:40:20:43:f6:53:a5:22:b6:e8:
da:ae:62:ac:61:11:2a:d2:be:fa:f0:e0:2e:12:94:7f:a0:a7:
9b:4a:e5:09:43:d6:f5:1a:98:d3:de:b2:3a:09:d1:b9:c3:13:
e5:40:be:5f:2b:79:b0:c6:f7:1d:3a:65:a9:3e:85:e6:b6:e7:
04:c6:b0:a0:01:fe:c4:fa:13:5e:69:07:42:52:87:29:cf:20:
b0:8b:1f:44:08:39:3b:dd:03:2c:a8:32:a1:1b:66:5d:8c:93:
7f:c7:89:1c:e5:ca:7a:79:ce:58:26:9a:cc:c2:54:a7:1a:40:
43:a8:d1:dc:3e:57:98:03:11:5a:06:2d:ad:70:2b:82:79:61:
fd:bf:fa:b9:84:de:33:c6:22:7a:2e:df:84:b8:34:58:60:3e:
f6:1e:d4:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 09:05:55 2025 by rpki-client