Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
File: 3_XMSEiUO0_onSznH9weT_fX8-M.mft (raw, json)
Hash identifier: UKiW21eMMF10xMjPwHhbwwp7qt4nvvDR8zxpbnBzbME=
Subject key identifier: ED:DC:E0:46:8A:01:8E:79:77:31:FE:F6:F0:92:E8:4A:70:B0:A0:2D
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 0196C570B83ADE6AC6DB3574EC640E6122B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
Manifest number: 1514
Signing time: Mon 12 May 2025 17:00:20 +0000
Manifest this update: Mon 12 May 2025 17:00:20 +0000
Manifest next update: Tue 13 May 2025 17:00:20 +0000
Files and hashes: 1: 3_XMSEiUO0_onSznH9weT_fX8-M.crl (hash: HvMgDzv44btb5se78GwZdjmdL02W78eHXddqMhtox5s=)
2: EsL5vRvD6Hsz2Ac1BO5dG0iZtiE.roa (hash: 6YJicTgp9qVMpWAlIAbPHHma7brtZhgeBhN6tMg/gfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:70:b8:3a:de:6a:c6:db:35:74:ec:64:0e:61:22:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: May 12 17:00:20 2025 GMT
Not After : May 13 17:00:20 2025 GMT
Subject: CN=eddce0468a018e797731fef6f092e84a70b0a02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0b:70:dc:f4:79:0d:a2:4b:d9:c8:82:01:0a:
d1:c6:be:d5:8e:7a:df:43:d4:8b:0e:3b:e5:83:96:
d3:6e:a0:10:0f:37:3b:31:6a:de:47:88:4c:0f:2d:
ad:bf:1f:b7:34:f0:4d:a8:6c:25:54:30:d8:1e:3d:
7b:41:ef:13:bb:03:68:f4:f9:36:47:37:79:3b:4b:
f3:42:55:b6:01:bd:1e:41:0d:3e:92:47:44:93:cb:
64:71:64:48:60:f8:4a:b9:e3:5a:31:e5:6e:8e:9d:
bc:df:7f:e8:6c:2d:b6:d4:74:d1:71:fb:bf:da:90:
15:5f:68:76:43:03:46:6b:e0:82:2b:6e:d6:d8:3e:
92:05:a9:be:25:5e:d0:55:c9:00:8f:1e:02:cd:09:
bb:61:0d:ed:b7:92:27:6e:96:dc:89:88:5b:1e:11:
ab:ac:48:59:aa:b2:2d:44:7d:8c:52:14:d2:71:76:
91:e5:c7:03:b7:ee:38:6d:9b:c8:c5:47:41:cd:18:
7a:b7:a7:8a:f4:4a:0d:b6:34:35:21:7e:1a:58:e6:
64:a0:e9:54:b6:a2:86:bf:ea:0c:50:50:4f:aa:10:
75:23:be:43:c2:0b:85:a0:45:33:6b:4a:3f:b2:6b:
7b:47:00:a8:ed:35:99:ec:6d:d0:7a:31:a4:2b:38:
0c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:DC:E0:46:8A:01:8E:79:77:31:FE:F6:F0:92:E8:4A:70:B0:A0:2D
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:6e:ef:b6:d4:23:5f:06:1b:3a:70:58:75:35:17:b9:d2:f9:
91:0b:2f:b4:a8:17:e8:02:a8:a0:c2:eb:fe:09:a7:b7:ee:10:
97:11:2d:d8:f5:80:7f:ee:65:25:da:00:b3:28:5e:bb:6e:e1:
b1:2f:4e:da:64:d0:ed:c3:ea:5f:e4:a3:84:a0:07:84:6c:6e:
10:e2:7c:cf:c6:f9:ea:65:c3:72:44:11:a0:94:a9:c9:52:d7:
0a:6f:44:65:8b:b8:4e:18:a3:ae:70:ff:5a:c0:15:f4:0e:70:
7b:44:8a:cf:53:c1:6e:a9:52:48:76:bd:7e:28:24:4f:85:10:
8e:8c:77:24:c6:fa:37:d7:2a:cd:3a:5d:c0:cc:55:9f:46:21:
a5:a4:3c:00:9a:3b:fd:83:53:55:23:b9:ab:b6:1f:5e:4a:af:
11:60:17:fd:81:c0:01:96:4a:d1:46:e8:ba:a1:b2:68:c7:a5:
cc:6c:80:01:7f:36:89:fc:c2:31:4f:0a:f0:05:fb:b8:35:84:
d4:9e:46:8b:86:5d:ca:46:a9:fb:9b:ab:f0:91:a3:b1:7c:ad:
60:f2:3d:3c:c0:9a:61:8b:53:71:89:6e:63:23:70:a4:ef:d5:
b2:52:41:46:fc:35:1e:35:02:ed:60:3b:57:c0:8c:b4:8d:f8:
51:f9:59:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:29:46 2025 by rpki-client