Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: UlZrrksCNZ732PxJO6UaISDzDvCeakcpJDpkjv9tWnc=
Subject key identifier: 3D:BC:F6:C8:FD:7F:3A:84:76:43:E3:1A:DA:39:73:E7:26:0B:2D:EB
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 0197B74590322FE223705731784D7E9B2325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 16:01:18 +0000
Manifest this update: Sat 28 Jun 2025 16:01:18 +0000
Manifest next update: Sun 29 Jun 2025 16:01:18 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: iqWlA3PK48bdMOTj/kscWcdLh61dNRBybS8gLjekUBU=)
2: OwG4_h94ip7CzANECDf39dfwNGk.roa (hash: XIXqYD1CZdADAiBPHja+pimegzmDxikS2efUTrBV4t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:90:32:2f:e2:23:70:57:31:78:4d:7e:9b:23:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: Jun 28 16:01:18 2025 GMT
Not After : Jun 29 16:01:18 2025 GMT
Subject: CN=3dbcf6c8fd7f3a847643e31ada3973e7260b2deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:95:bc:bc:15:52:df:f5:de:ce:10:e1:49:
8f:21:30:04:c4:6a:39:56:29:00:7e:12:b4:a5:cf:
14:0b:5f:df:14:b4:9c:9c:3e:76:20:40:2a:bd:5b:
bf:ad:d9:e7:a4:68:25:04:24:a5:ec:6c:cd:1f:1f:
3e:0a:6f:05:81:c8:15:e7:8f:f9:5d:7a:3a:26:db:
2f:40:0d:14:4f:6f:f1:77:14:79:97:0e:b0:ca:4b:
d5:e8:1f:d0:33:09:88:66:82:fb:d2:7f:b8:e7:4e:
26:77:d7:8a:9e:31:c3:32:2f:35:a8:ba:91:91:6b:
23:61:3b:f6:ff:b2:68:f8:fc:b4:7d:ec:a1:4a:c0:
6a:d4:6c:3f:c5:d1:30:9f:94:95:64:02:69:d0:9a:
35:30:91:4f:f0:ff:35:a8:66:74:d2:f4:c1:64:04:
7b:c9:81:d6:57:c1:a6:66:27:33:e2:e6:1e:1b:84:
1b:5c:2c:55:7e:3e:0a:3d:8e:d9:f7:29:92:88:30:
0f:11:93:c9:62:84:bd:32:df:66:c0:b9:84:83:80:
21:ea:63:cf:1e:d2:4e:8f:18:90:90:5a:8f:f0:1c:
e1:3e:79:ba:c7:14:f0:35:4c:e4:8e:64:da:c9:7b:
f8:b4:e6:89:3f:d7:f0:28:b6:eb:49:9c:70:30:44:
6b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BC:F6:C8:FD:7F:3A:84:76:43:E3:1A:DA:39:73:E7:26:0B:2D:EB
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:e4:54:1e:eb:ca:c5:45:af:22:ef:d2:82:11:3c:68:7d:88:
35:ce:09:8e:1c:39:63:95:5b:95:74:2c:21:ea:78:91:40:81:
97:8f:30:9d:ea:ea:fb:4d:c1:0b:3c:a4:1f:f3:5d:dc:5a:99:
86:51:82:0e:31:51:21:15:b4:ff:15:1f:bd:a7:bf:d5:3a:43:
17:41:21:6e:d3:6a:e5:ff:d9:6f:86:5d:78:3f:4c:ad:cc:c4:
d7:a0:76:44:a8:4a:eb:3d:17:8e:e0:59:e8:4b:28:ed:ee:4e:
ae:09:64:30:9c:da:33:b8:b1:32:b1:0e:ac:80:2f:e4:87:52:
47:2b:79:16:32:fe:cf:a9:4c:a7:99:73:ef:df:bb:a8:e8:fd:
62:ce:5d:04:f4:3d:ee:20:91:3a:18:df:99:50:be:aa:c5:61:
1d:4e:50:9d:52:31:99:27:34:c6:47:6c:64:c4:72:2a:49:58:
f5:41:d5:6c:49:f0:d8:2e:0d:8d:02:f2:5b:91:1b:42:53:cd:
aa:7b:92:8f:ce:c2:7c:83:7e:64:19:e9:e7:af:52:f6:0f:6b:
fb:60:85:71:53:df:ae:bf:93:86:40:28:ec:2c:97:ba:c7:27:
54:c3:bb:28:09:a4:4d:fd:81:74:95:44:1b:c2:55:92:d2:1e:
b2:07:0b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:04:36 2025 by rpki-client