Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: cGfg+XEP8OPoByKwPq05dsa3tSCtAbbn7idFLGZHZTY=
Subject key identifier: 03:0E:BC:11:9E:AF:AC:D4:F4:C7:D4:ED:6B:5F:10:7D:88:66:D0:B9
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 0197CC83C8FD5D3CC34C6149DC45F4609B8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 15CE
Signing time: Wed 02 Jul 2025 19:01:18 +0000
Manifest this update: Wed 02 Jul 2025 19:01:18 +0000
Manifest next update: Thu 03 Jul 2025 19:01:18 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: baHUjDlaaFN4OMx5RhVBGX3k6UXASv4jFcttFIsN0Lg=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 19:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:83:c8:fd:5d:3c:c3:4c:61:49:dc:45:f4:60:9b:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jul 2 19:01:18 2025 GMT
Not After : Jul 3 19:01:18 2025 GMT
Subject: CN=030ebc119eafacd4f4c7d4ed6b5f107d8866d0b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:49:29:ba:bc:ac:e8:ff:81:e8:f7:5a:ff:e0:
24:27:55:e9:ce:0c:e2:84:5c:b6:57:81:e5:61:51:
f3:7f:38:2d:03:37:6a:5c:86:5e:61:57:c4:da:e8:
bd:c4:ae:de:47:07:18:57:61:3b:3f:64:76:d3:66:
56:0f:83:d2:83:69:3b:b2:5f:47:32:aa:72:1c:7e:
60:0d:9a:ee:6f:99:11:02:15:a1:47:22:c0:34:69:
cc:eb:e9:3b:d9:dd:c3:1d:c1:dc:df:b8:b9:31:06:
33:5e:00:df:61:27:b0:63:5d:53:c2:95:8c:ba:9f:
b0:bd:2e:d0:d2:74:79:fe:8b:50:4f:97:1d:4f:f9:
7b:22:bf:ac:e4:8e:ef:a9:15:84:b6:b7:17:94:83:
ca:a2:ad:7f:af:29:ac:79:b8:f8:ce:a6:46:f1:af:
2b:33:7c:97:7e:72:a6:e1:6f:46:7e:ef:3b:68:d9:
9c:a1:fa:9a:c0:10:80:01:45:70:f6:66:3e:6a:6a:
7b:f1:31:2b:41:b5:d6:ce:21:46:7d:d1:52:4d:c8:
83:30:9b:37:94:cc:41:54:2f:4c:bd:c1:b3:d4:29:
df:fe:75:b6:bb:14:f4:bd:d9:db:d3:27:9d:4a:e7:
1a:d9:49:83:98:24:64:f5:68:5e:42:59:75:e4:06:
75:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0E:BC:11:9E:AF:AC:D4:F4:C7:D4:ED:6B:5F:10:7D:88:66:D0:B9
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:45:c0:00:2c:6c:db:d7:18:22:e7:ec:17:45:2e:0a:c1:99:
ce:e5:43:6f:6e:8b:e2:6b:97:1e:a7:62:0a:28:d2:10:c3:64:
be:98:a4:45:19:e1:25:f9:24:7b:c2:b6:db:ed:03:77:08:8e:
55:76:7a:01:2a:a3:f1:dc:48:a4:e8:a9:24:85:9b:2e:6d:ff:
b0:73:c7:9e:0a:b0:fd:b9:17:78:e7:67:13:68:0d:85:a4:f0:
66:d1:60:71:70:54:a7:f0:56:c0:1b:81:c0:49:09:8d:39:fc:
64:94:c6:08:b4:57:e7:d9:a1:3e:39:47:86:71:72:d0:8f:d0:
bf:0d:ed:77:e8:f7:8e:fa:82:ec:8c:50:ef:9e:17:87:f0:26:
93:b6:8a:75:25:a0:2f:c1:f9:12:10:54:93:8a:c6:b8:87:48:
e5:1b:c4:a2:bb:eb:42:a2:5a:32:c6:ca:12:3b:88:cc:7b:28:
ee:c2:ce:37:8f:af:51:07:18:58:92:38:7d:70:36:e9:75:81:
07:df:fa:ed:49:43:05:e0:7f:d6:a6:3a:c0:c6:63:b4:1e:dd:
18:40:22:24:46:58:d3:34:c6:97:ac:34:b5:b4:45:fe:03:ef:
af:35:3d:56:6b:b3:08:92:a4:24:a2:23:18:a3:c0:79:04:17:
fb:4a:7e:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 05:03:37 2025 by rpki-client