Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier: m6ctyio7tTELfcSl91vR67KPP3gOWpXkx4VGm57EnFs=
Subject key identifier: 13:54:EE:78:34:E0:C9:B7:28:7F:7D:5B:FC:26:3E:E5:73:82:B3:E9
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 0196C7CD725A488EBDA7C09932FD60687815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number: 1103
Signing time: Tue 13 May 2025 04:00:52 +0000
Manifest this update: Tue 13 May 2025 04:00:52 +0000
Manifest next update: Wed 14 May 2025 04:00:52 +0000
Files and hashes: 1: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: zC2bCSkDxrHWr+d4UqGaZPeJCKI/Zw4UAfHAb8Nqbq8=)
2: I5wQnrgvMCaYn9C8yDvoLQWI0Fs.roa (hash: LLp7jSaPRxKkmfQPCgmC3oWPlWcodXukIf+OL2Y6Xy4=)
3: h62oWk5e6sS8zDCwC47t23u4hGk.roa (hash: KIOG5EX7T8Dsm3c4MU4hyZU5pek+PylPfC7rdsiyJoY=)
4: jGoTTL_48yWV-ohs_hgmOjEwT4E.roa (hash: Q0KSsruo9YLV5d/ARziN3CSGqP5OR6gQhOox+XP9FnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:72:5a:48:8e:bd:a7:c0:99:32:fd:60:68:78:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: May 13 04:00:52 2025 GMT
Not After : May 14 04:00:52 2025 GMT
Subject: CN=1354ee7834e0c9b7287f7d5bfc263ee57382b3e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b3:c5:1d:9e:ca:a6:2f:a3:e2:ee:32:d2:51:
93:25:27:a5:aa:a9:79:8f:9b:b8:17:2d:92:4c:78:
af:c1:3c:97:2d:19:62:93:84:6c:0a:72:73:70:e8:
fc:2a:a6:bd:b9:2f:b7:dd:d2:de:20:6d:ed:ce:61:
7e:35:35:25:1d:24:54:a2:42:4d:c4:9e:2f:e6:aa:
76:f8:19:9f:b4:fc:d0:f6:81:48:9a:31:bd:b2:49:
3a:88:d0:b7:70:39:1b:a3:4b:0c:49:d9:31:4d:03:
68:01:8f:6f:45:b7:18:58:fe:a4:4c:14:f4:80:60:
50:ea:f5:a6:12:e6:09:12:68:4c:bd:ac:c4:69:06:
6d:50:ae:91:6a:34:62:b2:93:9a:9a:e2:93:13:62:
de:d3:ad:48:f8:cb:79:57:68:aa:e0:a3:54:06:4c:
5e:88:3c:ee:4a:aa:07:af:61:bd:b9:45:8b:28:8c:
20:f4:e9:a9:a4:dc:da:5f:10:1d:1a:79:22:90:49:
db:1f:91:54:34:2b:f9:27:76:41:3f:bc:1d:66:9b:
ee:98:f3:c8:d3:2f:5e:45:50:1d:71:86:50:50:19:
80:60:e8:48:46:13:2c:e3:53:44:fb:72:7e:70:a4:
1b:3d:7a:1e:8c:3b:67:00:e8:75:a9:fe:02:b4:99:
f4:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:54:EE:78:34:E0:C9:B7:28:7F:7D:5B:FC:26:3E:E5:73:82:B3:E9
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:34:16:ab:5b:63:4a:19:8c:39:66:c6:f5:d8:b5:43:48:9d:
15:16:37:6c:90:3a:a7:3b:90:9c:2d:cc:5f:c9:52:46:57:96:
93:f2:51:20:32:45:81:3c:ec:c6:37:36:57:57:38:e7:ef:e7:
e0:ee:57:99:1c:b1:fe:e8:e9:35:bf:a1:b0:fe:3d:b4:a3:73:
ba:a2:6d:f6:57:c0:43:4a:ff:10:2f:87:0a:8f:46:74:1b:1c:
7e:fb:e8:03:b5:1a:ef:a2:8e:71:48:dd:4c:0d:ec:7e:da:5e:
35:8e:b7:97:ec:cf:b6:24:aa:1d:01:c9:17:ff:03:8c:56:80:
38:4a:c0:f0:42:45:43:a8:55:d0:43:82:10:30:74:be:92:3e:
9f:e4:b5:9f:6c:14:8b:e5:ed:c9:15:e5:cc:0b:1d:e9:08:fe:
8f:02:f7:80:3c:3f:ab:ed:7a:50:84:f5:72:03:de:5a:c0:7e:
14:c4:7c:2d:87:8f:0d:e5:0a:15:f1:7f:c6:32:85:8f:25:29:
26:07:12:0b:bc:24:1b:9c:cf:14:54:39:b1:95:59:bf:a6:ea:
af:2a:d6:b8:32:ad:58:c3:a4:ca:a4:c4:1f:b3:fd:88:81:3a:
dd:f3:62:cb:dd:e3:55:14:a1:45:9a:3d:11:27:d9:6a:61:c9:
1e:33:14:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 08:31:12 2025 by rpki-client