Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
File: 3kVs200UA0XD3K6_x2NNTnzcuRM.mft (raw, json)
Hash identifier: vzEFepkZSzfv5dWFxLGjx15oYwOMii1t2SgboRS/Lrg=
Subject key identifier: 2C:18:4E:82:53:B8:C1:5A:0F:5F:DF:43:55:2C:29:A7:2F:9A:A2:80
Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Certificate serial: 0197B88ECA89F2B7140549C394C61CAF53A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
Manifest number: 15BF
Signing time: Sat 28 Jun 2025 22:00:54 +0000
Manifest this update: Sat 28 Jun 2025 22:00:54 +0000
Manifest next update: Sun 29 Jun 2025 22:00:54 +0000
Files and hashes: 1: 0wxplS04ynQiI1r3ArdsiKBCEOI.roa (hash: WDNF73KtUANe5OGg5Z8hCbK6QAlz8jWNq6iQlKA1l4A=)
2: 3kVs200UA0XD3K6_x2NNTnzcuRM.crl (hash: Izo/skL2kzTphLqpzZaGipjsuCw/yK50awjy3MVIoes=)
3: JIEsiChTD9veiUWmlJ3B4QQpFuc.roa (hash: G8sz8HlJFis3zSSNKaXy4CKewTagYcW3tdUbj5SB5rw=)
4: erY5eOsE13MYDYGdz-7KiRAOTog.roa (hash: NmXI2cVM6emkr8oTXJbXMbKgJl7gRO9hnwaW3QZ2P/k=)
5: g4ZCPviGonmRGPJlO9nSng_S-lo.roa (hash: NBfLnaWFnRjJb4HXfFDgN4fD3VeUZZnkBAnPok8zBDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:ca:89:f2:b7:14:05:49:c3:94:c6:1c:af:53:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913
Validity
Not Before: Jun 28 22:00:54 2025 GMT
Not After : Jun 29 22:00:54 2025 GMT
Subject: CN=2c184e8253b8c15a0f5fdf43552c29a72f9aa280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a8:68:c5:d7:a6:f6:d9:fd:09:98:fa:df:5b:
ba:71:1b:1c:00:9c:f6:c5:b6:26:a7:6f:68:87:27:
d8:99:fb:03:75:87:6f:46:35:bd:37:a4:8c:c4:c0:
7b:2c:86:ea:37:ca:ce:24:f9:a6:aa:31:4e:83:13:
7b:e0:94:cb:b7:6e:a7:8f:d0:f1:e1:27:bd:a2:a7:
f8:a0:a5:54:9c:2d:92:ed:4a:b0:8d:e3:71:61:31:
71:3d:fc:be:46:45:91:57:88:a5:c0:99:7d:a4:bf:
3a:91:8d:d0:f0:04:06:8b:d6:3c:a8:b2:40:88:4f:
5d:9f:8d:67:53:10:aa:75:02:3a:b2:5d:f9:fd:9b:
df:87:b1:72:0d:a9:4b:50:36:d0:4d:a5:22:b5:36:
92:9e:ce:3f:1a:ad:33:cb:94:0c:d8:97:4c:24:09:
8e:98:55:99:b7:75:60:e9:92:32:9d:7c:59:6c:c9:
af:48:4a:6e:8b:58:39:df:46:a8:f0:8f:90:cd:a1:
6c:3c:67:f7:32:5c:4b:36:e6:13:0e:98:52:6c:5f:
28:23:7e:aa:9a:1a:df:d1:54:28:ad:75:d3:85:c7:
d1:e3:cf:08:ae:3a:51:5d:c4:3a:1b:9c:33:9c:04:
7b:c7:60:7e:0d:5a:a4:c6:e5:5d:cd:37:55:4e:0b:
d3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:18:4E:82:53:B8:C1:5A:0F:5F:DF:43:55:2C:29:A7:2F:9A:A2:80
X509v3 Authority Key Identifier:
keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:80:18:96:09:e4:f8:81:ab:14:ae:1f:18:2d:6a:bd:09:dc:
f6:8a:25:10:d4:14:77:78:b3:08:45:59:83:7b:11:1b:78:99:
38:dd:d4:76:3b:f8:b4:f4:72:3e:a9:c9:5a:92:df:2e:a4:40:
ef:a7:bf:86:d4:96:59:d4:0d:87:63:ea:72:1b:15:18:4f:c6:
c5:2b:8f:24:94:10:22:fe:da:d4:87:ab:64:ac:8b:9d:f3:40:
ff:f0:12:fd:a1:3a:76:e1:4a:14:f8:f0:2a:2e:c6:e7:54:8e:
28:bf:b5:b8:1c:68:29:cf:39:a7:bc:f3:0b:52:cd:22:10:f0:
e3:f9:f3:ce:0e:44:1f:1d:be:36:0c:11:f3:9b:24:fb:92:c9:
64:89:b2:27:b1:d0:1a:2f:cc:82:f3:d4:b3:02:e7:6a:dc:95:
13:c1:f8:45:7f:e3:3c:1e:f4:06:53:21:25:b9:90:68:0d:55:
28:12:2f:fa:4a:17:bd:17:6b:c9:73:d8:19:55:82:8e:f6:9b:
b0:cb:49:fe:4a:98:16:f4:b7:47:a4:36:52:20:19:7e:25:2e:
96:e3:a5:cc:cc:87:9a:f2:0a:18:44:f4:5c:71:33:1c:2f:c7:
78:46:74:36:48:4a:d2:64:c6:36:1a:9a:56:0e:e6:40:c6:34:
11:ef:d3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:50 2025 by rpki-client