Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: iksXzCRjTBM9bbKg0cEC5AY8iQQ/Po5sONmpP6sNONM=
Subject key identifier: F1:4B:6D:E9:23:F1:7F:75:CE:63:E5:86:CE:4C:5B:C3:04:3F:9C:88
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 01969F3F4414290DFE578925E98EB25227CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 1523
Signing time: Mon 05 May 2025 07:00:45 +0000
Manifest this update: Mon 05 May 2025 07:00:45 +0000
Manifest next update: Tue 06 May 2025 07:00:45 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: HJXcqBClpSMqdKqBjJD4jk9EhRL3TI70ecmWFfh0+Fk=)
2: OwG4_h94ip7CzANECDf39dfwNGk.roa (hash: XIXqYD1CZdADAiBPHja+pimegzmDxikS2efUTrBV4t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:3f:44:14:29:0d:fe:57:89:25:e9:8e:b2:52:27:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: May 5 07:00:45 2025 GMT
Not After : May 6 07:00:45 2025 GMT
Subject: CN=f14b6de923f17f75ce63e586ce4c5bc3043f9c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:85:b4:bc:23:9c:f8:c3:8a:18:f2:ff:00:40:
fa:1f:b9:0b:10:23:a9:50:1e:3c:a2:9b:32:fa:7f:
17:b0:bc:d3:c0:c0:0c:3d:61:9a:ce:fc:ea:91:64:
f5:6c:cf:70:8d:ba:96:9f:63:f0:fe:96:39:94:26:
1b:2b:ac:b3:aa:31:e1:d2:df:9e:56:cf:23:a1:96:
31:44:3c:cc:ec:80:f2:4d:fc:d5:a6:57:3f:6b:31:
e4:d0:3a:e9:32:ff:2b:88:48:38:c0:05:37:70:0e:
6b:5b:89:97:e9:a0:6c:9d:08:80:68:8e:e0:c2:3f:
72:1f:2a:56:cb:09:1c:de:4a:dc:05:a5:41:64:08:
95:ca:8f:ac:12:86:84:68:d6:19:97:e8:c5:d0:6e:
f6:52:85:58:01:c3:35:30:bb:57:50:37:87:10:58:
07:bb:9e:2d:bf:ba:b8:3a:3d:50:80:02:0d:7e:52:
13:ca:a7:9d:7f:32:51:6c:f4:79:4c:6c:ea:6d:92:
fd:52:89:10:25:ab:56:25:ff:8c:22:32:48:a9:26:
5c:52:be:33:11:55:3a:13:06:09:bc:38:e0:ed:d8:
64:6f:0f:ad:21:2d:af:df:18:7c:24:af:81:71:9e:
3a:ec:43:23:25:f0:5d:00:1d:38:3c:11:8d:e0:48:
13:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4B:6D:E9:23:F1:7F:75:CE:63:E5:86:CE:4C:5B:C3:04:3F:9C:88
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:1c:5b:69:2d:cf:3c:4d:1f:1b:ce:00:d7:2b:ae:9f:5e:8c:
29:ba:94:56:31:58:5c:ef:b9:78:87:57:ab:6c:17:91:e0:90:
fc:5c:11:88:77:c5:ab:0f:dd:4d:cb:d5:ea:03:ce:c1:f5:a2:
73:60:fe:ab:74:d5:54:42:e8:d9:d9:87:79:81:a7:58:2a:ab:
17:13:4d:d6:b7:06:65:32:39:6f:58:8d:84:91:77:b0:f9:56:
16:a0:5d:44:03:4e:53:9e:d8:0e:9c:5d:1f:0d:f3:78:60:10:
aa:cc:dd:57:7f:e8:68:f9:f6:5c:e8:e9:8f:c6:70:9e:aa:92:
9f:e3:63:be:52:91:c3:5a:86:1c:da:b5:a9:31:d6:65:16:53:
ee:64:71:a8:9f:72:0f:78:97:4f:21:78:69:f7:9c:2b:a9:68:
65:a7:b8:c8:8b:3a:fd:94:d5:93:e4:07:8c:57:52:be:48:34:
4c:77:6c:40:f0:75:b3:b1:4d:0f:ed:95:fa:0c:1f:64:6f:18:
3f:e8:8e:f1:b5:be:6f:e0:6a:8a:0a:52:ab:ea:21:8b:39:dc:
86:99:a4:14:aa:74:1b:0e:e0:6f:77:83:5c:66:d7:fd:98:41:
30:9e:87:9e:f4:f7:c0:a8:65:6c:06:e9:70:97:ad:71:0f:ce:
93:8a:44:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:48:28 2025 by rpki-client