Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json)
Hash identifier: kOapXaJUVxORUv4OwLKGaj9j/V98swJpGlbjoynlhPo=
Subject key identifier: 64:0B:12:E3:F6:E3:9B:69:2A:A9:60:58:2D:BD:13:0C:D4:67:9B:CE
Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Certificate serial: 0196CC17DDFC1CF36F529A760129AE29A0D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
Manifest number: 153D
Signing time: Wed 14 May 2025 00:00:38 +0000
Manifest this update: Wed 14 May 2025 00:00:38 +0000
Manifest next update: Thu 15 May 2025 00:00:38 +0000
Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: TsUh9wgNcW0CGxKNYwmAPC07BpB9AIuA+IW8P4dp6f8=)
2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:17:dd:fc:1c:f3:6f:52:9a:76:01:29:ae:29:a0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e
Validity
Not Before: May 14 00:00:38 2025 GMT
Not After : May 15 00:00:38 2025 GMT
Subject: CN=640b12e3f6e39b692aa960582dbd130cd4679bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5a:88:93:2d:2c:f2:04:9d:7c:d5:a4:07:71:
f9:bd:99:eb:3f:67:c7:ec:3c:9c:6e:b8:7e:db:54:
c7:73:bc:29:cb:e2:cd:c5:f1:d9:54:7f:a9:b0:b2:
5a:49:92:2b:73:6f:68:a4:e2:25:e8:dd:4e:b8:9a:
4b:af:d9:78:5e:e4:d6:21:47:1e:98:f9:de:28:84:
9f:dc:81:1f:f6:6d:91:9e:c7:80:cd:67:e1:ec:f4:
57:04:be:cc:f3:d3:90:21:3c:c1:67:bb:b7:d9:63:
16:f5:8e:60:fb:25:75:d0:3e:90:d0:c1:21:54:89:
6d:2b:cf:fb:1e:4e:f0:cc:f4:27:47:d0:5f:34:51:
68:78:88:96:d4:24:cf:26:36:c1:6a:74:97:4a:3e:
6a:03:12:48:5a:8b:a3:02:98:78:41:91:5b:1e:45:
fe:17:bb:8b:9b:2d:f6:eb:f1:91:54:e7:37:0c:88:
8c:c1:68:94:d3:50:31:ff:40:a3:4c:83:a5:b6:09:
e4:ce:11:c4:eb:79:35:08:14:9c:43:e4:f0:e1:33:
39:fe:1f:96:19:b7:95:5a:08:dc:3d:d4:cb:9a:1e:
83:d9:ef:a1:05:9b:3d:9d:1c:52:14:b7:45:8a:42:
d5:64:95:66:c8:12:5f:bb:f8:87:17:b4:20:34:f7:
3c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0B:12:E3:F6:E3:9B:69:2A:A9:60:58:2D:BD:13:0C:D4:67:9B:CE
X509v3 Authority Key Identifier:
keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:a4:4d:66:ee:e9:f1:b5:12:35:04:3a:3c:0d:0c:7e:3e:65:
5b:ce:26:eb:ba:43:ac:53:99:73:2b:54:f9:01:c6:c5:4a:18:
4e:33:f2:d1:91:da:4c:8a:5f:24:e3:94:a9:7c:96:64:ca:c2:
6f:44:07:cc:a0:d3:ba:2e:bb:2a:19:3b:c1:29:7e:7c:d7:72:
b4:c4:65:e7:cb:f7:9e:f8:2f:0b:4c:54:11:98:74:71:45:51:
92:56:5b:78:0c:05:3b:c1:e4:cb:d4:72:8a:66:89:65:c1:57:
18:6f:2b:51:08:8f:47:50:57:65:bc:c7:8e:23:32:09:11:65:
3e:4c:3c:42:46:68:c7:17:1a:ee:a9:ed:2d:55:df:c9:11:8d:
f3:5b:ed:c5:58:ec:24:8f:c7:e8:d0:d5:76:c0:fe:a3:4b:d3:
da:16:a5:4e:fa:8d:cf:87:8b:5f:71:df:6d:9c:06:f2:32:25:
d9:6d:d8:8a:13:f9:9e:77:82:d6:5f:69:6e:6a:60:ae:f7:62:
88:a7:96:13:c5:31:65:54:b5:3b:49:d0:99:db:d5:3f:cf:b3:
69:d3:04:36:83:cf:d9:1e:12:ff:bc:73:8e:1a:83:c1:b9:d6:
63:14:c7:2a:3a:6f:db:8a:6c:5a:0c:38:30:6e:d4:c6:d6:01:
e7:11:94:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 09:13:17 2025 by rpki-client