Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File: 3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier: 4SU7mFWtl06dcJbHIZCxoTbWDtalkmBZWSAC/Kwj84s=
Subject key identifier: 24:57:99:5A:70:7F:D0:23:40:25:9D:67:88:1C:D0:E5:D6:6F:0B:B4
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer: /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial: 0197C2A54FA47E4AEFADBA69C40DE7DBCE68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number: 0C4C
Signing time: Mon 30 Jun 2025 21:01:43 +0000
Manifest this update: Mon 30 Jun 2025 21:01:43 +0000
Manifest next update: Tue 01 Jul 2025 21:01:43 +0000
Files and hashes: 1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: io/0u8DETTFkqUmdGEm6vpBMpi1WFCEE0Ai0wn0x7PI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 21:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:a5:4f:a4:7e:4a:ef:ad:ba:69:c4:0d:e7:db:ce:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Validity
Not Before: Jun 30 21:01:43 2025 GMT
Not After : Jul 1 21:01:43 2025 GMT
Subject: CN=2457995a707fd02340259d67881cd0e5d66f0bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7f:37:18:4e:22:61:35:d1:87:dc:6b:b9:c6:
6d:7f:24:d9:8b:ac:e1:1c:59:5b:a0:eb:68:7d:61:
3c:b4:c5:79:c8:cf:37:af:d5:2b:a7:46:50:6e:dd:
f0:6d:56:af:19:c0:79:0e:a5:ec:94:16:64:9b:00:
3b:8e:64:31:42:b7:16:d3:3f:d8:f6:1e:c2:67:35:
1f:48:db:af:51:3e:18:f8:6e:42:aa:de:74:21:27:
67:6f:0f:ae:77:46:4a:45:24:6f:27:c8:24:2f:31:
42:63:3c:e9:73:8e:5d:6b:2a:1e:ff:ef:27:fa:75:
fa:b5:38:45:ca:23:59:d3:70:4f:57:9e:7f:90:ee:
26:db:43:c4:04:17:4c:52:6d:b6:7c:24:7d:42:43:
e1:51:c5:00:f5:6b:98:14:28:0d:4d:50:4b:a4:ca:
c2:bf:7e:05:b7:63:d4:3f:75:e8:f3:b2:2b:af:30:
d7:af:88:ac:db:aa:08:e8:89:41:94:80:b4:a1:65:
a9:ea:8d:f1:07:f7:a9:c1:ab:55:b7:c1:95:60:46:
ba:6d:94:e8:31:95:b4:2b:f8:14:cc:d0:0f:63:b8:
f5:12:4f:37:9d:16:b8:05:5a:bb:07:ae:43:cc:fe:
f6:b9:f2:11:df:a0:da:a9:e2:b8:73:56:5c:1c:ab:
81:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:57:99:5A:70:7F:D0:23:40:25:9D:67:88:1C:D0:E5:D6:6F:0B:B4
X509v3 Authority Key Identifier:
keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:f6:e3:25:1a:e1:5e:82:72:cd:2e:e9:dd:d5:1d:83:de:52:
19:73:79:8d:0e:aa:47:92:61:c6:97:35:5b:13:a7:23:a0:21:
c2:3d:86:59:bf:83:8c:c7:54:9b:76:81:2b:3d:8c:0a:09:c1:
b1:5c:c0:6e:9d:ab:04:4b:be:e2:56:cf:88:36:8c:cb:41:7a:
c5:e6:d9:8f:be:5e:a1:7b:d8:86:a5:6c:f8:36:e8:13:5f:fb:
48:e9:cb:c3:9e:02:7f:ac:75:88:8e:56:6d:45:18:29:78:1b:
20:87:d8:7f:14:d9:4b:da:e3:30:b8:0d:79:b7:f1:cf:21:64:
17:6e:84:78:e3:fb:87:16:e3:6b:18:33:e2:52:78:36:da:a8:
5e:18:79:84:60:58:29:5b:25:dc:17:56:65:0c:b7:66:0a:c3:
a1:c9:0d:a9:3b:ef:5a:27:51:36:e8:ca:14:7d:8a:ec:c7:e5:
bb:97:cc:64:8e:9a:37:ac:cf:9e:96:bc:f5:43:bf:be:9f:f2:
30:24:5e:df:02:13:92:f2:59:e2:42:b4:b1:72:20:71:b6:c4:
15:10:11:9e:e3:36:88:2c:64:9d:06:db:28:b9:4a:19:f0:cf:
3e:65:97:c2:2c:5e:cd:89:81:41:d4:6c:98:01:68:61:dc:67:
b8:4c:ba:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:03:00 2025 by rpki-client