Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: Pge0mWf5hj/owvkua7TZglpCVBie63Uj88T3q4pjNRk=
Subject key identifier: E3:F0:27:23:36:B9:34:A1:FE:F6:DD:1C:C6:0B:9F:A8:43:04:A7:79
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 0197B7B3053B27C155473DDB7B75783E8DD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 18:00:52 +0000
Manifest this update: Sat 28 Jun 2025 18:00:52 +0000
Manifest next update: Sun 29 Jun 2025 18:00:52 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: NC+CufSUb1d49iGfcf+A3ypZ6dUDKw26qXhmVq9SQ0U=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:05:3b:27:c1:55:47:3d:db:7b:75:78:3e:8d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: Jun 28 18:00:52 2025 GMT
Not After : Jun 29 18:00:52 2025 GMT
Subject: CN=e3f0272336b934a1fef6dd1cc60b9fa84304a779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f2:43:f6:0c:a7:c8:a0:07:13:b1:9f:47:5e:
b4:8d:80:19:5d:12:ce:ec:49:a3:aa:8f:77:30:7e:
b5:95:ba:7d:9e:a1:a2:de:04:46:81:90:1c:62:74:
34:01:fb:18:4f:e8:eb:ae:9a:ea:fa:83:04:e1:cf:
27:b9:81:3f:dc:4e:15:3b:9e:2d:61:78:6f:c1:cc:
7a:58:3e:b0:4b:96:41:bb:ca:ae:f2:1b:a1:83:7d:
c0:32:6e:f8:5c:31:cd:3b:35:21:43:ff:77:06:4f:
94:ed:7c:f6:f0:f0:1f:2a:10:13:e0:41:5e:bc:36:
b4:42:9f:6b:23:a1:7c:5f:af:7f:36:43:6c:6b:1d:
dc:bb:38:0c:47:11:65:f0:92:93:f3:21:ab:94:dd:
e3:4d:da:7c:25:a4:a9:55:26:cf:ec:5e:e2:9b:27:
29:5e:e4:d3:96:44:22:b2:80:38:94:79:e9:0b:4f:
b1:b4:93:5c:98:85:2a:bb:ac:76:6a:81:f0:d6:a2:
0e:20:72:f1:6c:31:42:17:77:30:c5:45:1b:4a:65:
be:b5:94:3d:6c:2d:c6:7f:8d:30:a4:32:a5:99:f4:
84:dc:e5:5d:7a:ab:4f:66:c1:bc:fc:7e:40:f9:cf:
9b:0d:20:22:92:62:a2:a2:6a:2b:1d:91:41:1d:e6:
f3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F0:27:23:36:B9:34:A1:FE:F6:DD:1C:C6:0B:9F:A8:43:04:A7:79
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f1:65:17:ff:cb:3a:40:77:cd:97:41:4a:c5:7d:46:fc:e3:
d6:69:fb:74:4c:8e:07:63:be:1a:ce:43:42:ad:06:ac:4f:b7:
a3:dc:aa:a5:fc:1b:51:40:30:ea:85:69:f1:60:49:36:74:fb:
c6:c6:c5:cf:d7:ea:99:5d:86:df:14:da:e3:33:b2:cd:0b:85:
05:bd:5d:1e:c7:aa:2f:1e:80:b1:4a:a1:e2:4d:3c:e3:ef:71:
07:88:f2:7c:63:01:97:6c:45:56:79:d3:12:e4:d5:58:8a:0d:
82:62:c8:b7:a6:65:d8:5e:b2:e3:1d:04:b7:e2:6e:b9:a1:e1:
cc:9d:a8:c9:67:3e:fe:32:16:dd:c1:77:ee:82:09:0d:d2:03:
cd:0f:87:a5:74:10:17:3e:d8:93:0d:04:57:4a:b9:9d:1e:ce:
f5:db:f5:7c:76:51:ad:9c:cf:02:4f:68:cd:85:d3:3f:ac:36:
44:87:90:37:65:3e:42:36:fb:d5:f6:52:2a:f7:e1:20:a5:42:
65:77:9b:e1:c4:12:b1:d0:9f:77:74:69:3d:d4:c8:1a:b3:9f:
3b:5a:6c:5d:a4:00:c7:28:d2:7c:d8:6d:07:de:fe:6d:25:12:
de:4c:32:05:aa:29:62:a6:7a:8d:02:92:69:dd:c1:a1:ce:ce:
14:9d:f0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:12 2025 by rpki-client