Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json)
Hash identifier: YUBmZNRdIg6+iekpcaOnAuC1vwvMCy19Kj/Fgr4APLE=
Subject key identifier: A5:A1:5F:85:56:2D:B8:CF:A4:B9:33:C8:1B:3A:40:B4:66:E0:72:39
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 0197B7B340016EB5FC47F7614572CE349D79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
Manifest number: 0A21
Signing time: Sat 28 Jun 2025 18:01:07 +0000
Manifest this update: Sat 28 Jun 2025 18:01:07 +0000
Manifest next update: Sun 29 Jun 2025 18:01:07 +0000
Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: p4keNrFLMwKmOa5PU6UmAz1BTb7uVI9cqSyht0l4UXs=)
2: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (hash: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:40:01:6e:b5:fc:47:f7:61:45:72:ce:34:9d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Jun 28 18:01:07 2025 GMT
Not After : Jun 29 18:01:07 2025 GMT
Subject: CN=a5a15f85562db8cfa4b933c81b3a40b466e07239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fd:37:d7:be:1d:65:b9:f3:34:47:82:b5:dd:
f2:c0:cc:c4:6b:16:92:83:ce:1c:18:2d:9f:97:82:
13:89:44:02:5c:b2:de:54:99:2b:9d:51:9d:c1:b7:
1f:37:79:9d:44:08:d1:77:93:3f:c3:1c:44:1d:c5:
ef:dd:ad:7e:82:e2:b8:43:49:6c:5e:01:f4:97:af:
3f:d0:33:43:d1:4a:18:6d:3d:35:49:08:2b:9c:3b:
fd:d0:58:a1:47:db:e8:a8:71:b8:aa:06:24:b1:de:
b3:3c:a3:fb:47:00:f2:a2:51:da:01:3b:8e:9c:e3:
97:62:4e:d0:05:93:9a:d1:cb:5d:f0:45:e3:8e:5f:
13:2b:96:07:cd:e9:ad:e8:c6:ed:cd:0a:b7:92:61:
72:fa:c8:7d:17:6a:a3:11:90:5c:39:56:df:2b:0c:
77:b5:2a:5a:d7:0b:73:cf:f7:8c:35:05:ee:03:18:
9f:8c:be:f8:84:e7:f9:c4:46:96:7f:81:81:2e:d7:
ce:38:7c:d0:17:80:f0:aa:23:d9:3f:24:91:ec:a3:
77:67:43:36:77:c9:3a:43:2c:b5:4c:b8:e5:67:a3:
52:55:89:e2:19:58:1b:0f:ed:4d:b0:cf:1e:61:1e:
ad:a1:b7:b7:c4:37:98:9b:33:d1:7d:a4:e0:20:fa:
57:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A1:5F:85:56:2D:B8:CF:A4:B9:33:C8:1B:3A:40:B4:66:E0:72:39
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:b5:a5:3e:c7:cf:13:47:66:c4:8e:e6:8a:3c:2f:94:f2:2d:
08:33:d6:a1:f7:eb:a7:d5:d4:6e:e0:6d:c0:54:47:02:6d:9b:
89:dd:e9:18:ba:77:ee:79:1b:87:64:5b:34:d6:dc:57:f9:6a:
e8:57:b9:2c:a6:85:d0:05:b0:87:99:a6:e4:87:3e:bd:91:0d:
82:f4:7b:fe:e8:c6:f8:e1:bd:25:e3:d5:43:b1:44:1f:2f:a3:
17:54:11:88:98:38:b9:10:26:2c:bf:c0:8f:6b:44:d2:8b:81:
9f:c5:c0:e0:a4:79:83:4d:22:13:d1:e6:92:81:aa:6e:de:2e:
71:83:01:a2:d0:2a:cc:f2:19:fb:ce:e5:6b:d3:60:b9:1b:0b:
81:03:d7:96:1e:cb:6d:39:90:61:61:1b:11:42:3d:0b:f2:fd:
f6:dc:c9:04:76:eb:aa:ac:6a:1f:b0:d8:01:f0:87:98:d6:d5:
54:2f:5e:f6:9e:3f:d4:da:3b:8a:c2:34:ee:a5:0d:ec:2f:d3:
e1:40:54:86:ad:e8:91:3f:ce:0a:23:76:6a:a8:5e:39:96:f1:
24:dd:a8:94:9f:fe:8f:b8:7f:bc:47:63:15:a5:71:27:8e:77:
59:0b:64:6d:10:79:03:2d:a9:44:61:f1:25:a6:1a:04:7a:35:
78:47:25:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:50 2025 by rpki-client