Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
File: 3_XMSEiUO0_onSznH9weT_fX8-M.mft (raw, json)
Hash identifier: hUodwVeUgIYDnTlm5CkINGXgysxT2djUST5db3y6pnM=
Subject key identifier: 1B:E7:03:06:86:1E:1A:76:A3:16:42:C7:3A:2E:99:BD:4C:C3:37:02
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 0197B6D735D8253F337EEE4D4DDEBC319958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
Manifest number: 1591
Signing time: Sat 28 Jun 2025 14:00:46 +0000
Manifest this update: Sat 28 Jun 2025 14:00:46 +0000
Manifest next update: Sun 29 Jun 2025 14:00:46 +0000
Files and hashes: 1: 3_XMSEiUO0_onSznH9weT_fX8-M.crl (hash: nxmRSSPWfBOBRS34QESeXCkstJhL0cPM2EaiRC/M57Q=)
2: EsL5vRvD6Hsz2Ac1BO5dG0iZtiE.roa (hash: 6YJicTgp9qVMpWAlIAbPHHma7brtZhgeBhN6tMg/gfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:35:d8:25:3f:33:7e:ee:4d:4d:de:bc:31:99:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Jun 28 14:00:46 2025 GMT
Not After : Jun 29 14:00:46 2025 GMT
Subject: CN=1be70306861e1a76a31642c73a2e99bd4cc33702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:b6:35:24:20:9e:db:9f:12:02:ca:90:d4:
98:27:19:12:ed:da:b7:f6:ee:80:94:a2:41:dc:ae:
41:c1:8c:6f:0b:17:fa:48:ca:69:9e:b4:b3:56:07:
50:40:5a:c9:08:a8:f4:f2:d4:4e:b0:04:85:6e:1f:
f2:af:e8:aa:21:b0:8e:73:20:1f:c5:25:82:9c:ff:
d3:4e:fd:ff:ef:70:a4:0d:b5:69:ce:89:ef:ac:12:
87:06:f2:ca:ec:86:f5:75:f3:0f:8d:9a:15:68:f4:
da:e1:a8:fb:77:3c:63:f9:f3:93:78:9d:2b:f4:c6:
95:97:9d:dd:5d:45:36:82:ee:3e:67:99:48:08:ba:
62:02:cf:4f:50:65:6e:33:cd:f9:5a:11:17:a8:a9:
83:47:26:78:26:41:26:5a:34:27:76:2d:d6:f0:f8:
42:ff:4c:4c:c0:ff:be:af:c4:99:d0:60:d5:f2:c8:
cf:57:3e:87:b7:05:0e:4e:6c:5d:4b:6a:ac:d5:25:
53:38:6d:7b:31:c4:e6:c0:dc:75:ca:e5:54:d4:5a:
2e:59:a1:e9:c6:b1:0a:65:12:1d:d4:9e:95:d6:12:
9e:42:43:f6:99:2c:af:b3:b3:68:d3:45:21:14:eb:
02:cf:be:b6:50:35:d3:b2:91:2c:b6:61:05:d1:cf:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E7:03:06:86:1E:1A:76:A3:16:42:C7:3A:2E:99:BD:4C:C3:37:02
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3b:66:bb:dc:27:ce:a5:0d:c0:56:8e:1c:b8:0e:c8:d1:c1:
58:a4:a0:bc:96:a8:5f:47:b5:2a:c8:04:97:7c:f1:61:a7:b5:
0a:5c:fa:19:c4:04:87:a1:a5:7e:cd:5c:e8:cd:39:fe:d1:d2:
48:fb:26:1e:d0:e8:3f:4d:6c:30:03:e7:c2:12:37:1a:8b:35:
8a:af:65:ca:84:16:7a:0a:57:fc:7b:88:bf:30:14:93:b6:98:
e2:6c:a9:06:79:75:61:12:86:e0:86:e4:67:b5:70:0b:b3:55:
a0:d5:5d:80:1c:b1:4d:91:3e:55:43:77:27:2e:2e:53:ca:1f:
c4:30:89:24:d3:ef:b9:b8:8c:ea:f8:ba:65:7f:48:74:62:59:
8e:70:d7:98:85:15:84:c9:12:ca:9c:b3:f4:f4:04:a9:bb:02:
10:9a:09:12:e0:20:65:83:09:e1:95:f7:ab:15:14:3c:3a:00:
b0:40:1a:28:a9:2e:10:ae:bb:55:04:11:6b:df:0b:df:46:4a:
57:9d:cd:28:5b:ed:c4:f3:fb:71:c4:fb:ce:93:b8:66:54:f2:
e5:52:c0:40:76:93:ba:fc:80:2a:14:4d:2a:80:39:60:14:72:
93:63:5d:1c:fa:1a:78:fa:14:c9:53:f4:f4:3d:53:d2:5f:4e:
d2:4d:55:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:38 2025 by rpki-client