Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
File: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft (raw, json)
Hash identifier: yjGBNLON2mIXt4FGhA2Vu+UZ9/MzgiT1VjSui+6+3yU=
Subject key identifier: 12:1F:AE:0B:2B:1E:96:13:7A:B5:C7:53:07:E6:61:46:8C:53:39:B5
Authority key identifier: DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
Certificate issuer: /CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Certificate serial: 01969CE2EE6C492FEC24A50D1B741B75D7A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
Manifest number: 0841
Signing time: Sun 04 May 2025 20:00:39 +0000
Manifest this update: Sun 04 May 2025 20:00:39 +0000
Manifest next update: Mon 05 May 2025 20:00:39 +0000
Files and hashes: 1: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl (hash: Uetp2rLLHVT8gV1zp1EMWzs0aOlDMMNtZEtGCblUK/E=)
2: vrZbrmq-YLZHy_jTQFADJGPxi-I.roa (hash: SoRxaIEIcm9lF/KB/PtX621zexUgH5AtUpObYQIQZW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:e2:ee:6c:49:2f:ec:24:a5:0d:1b:74:1b:75:d7:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Validity
Not Before: May 4 20:00:39 2025 GMT
Not After : May 5 20:00:39 2025 GMT
Subject: CN=121fae0b2b1e96137ab5c75307e661468c5339b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c2:59:e6:dd:a8:84:b2:5a:28:8b:b9:a7:bc:
88:00:ee:2b:db:eb:95:15:ff:3b:cd:52:c4:b3:07:
5b:04:dc:21:27:db:f8:a2:f5:6b:d1:1b:00:eb:53:
71:28:0d:5f:b3:db:a6:b5:67:5f:6b:77:5c:cf:45:
d9:55:26:1b:ab:b5:6f:62:a6:6d:0d:35:30:a5:53:
74:01:58:f2:79:52:c1:eb:3d:01:48:04:02:1f:bf:
81:f1:e9:c1:c2:fa:71:5e:31:92:2a:b0:cd:8d:57:
46:3d:5c:a9:c2:12:fd:57:49:23:b1:22:63:31:3e:
e3:fa:af:9f:07:2f:b4:7f:8c:92:b3:2f:80:df:46:
37:dd:63:ba:ff:17:0c:03:a2:02:36:4d:35:b7:c6:
aa:79:83:b0:d9:23:05:89:e5:82:6b:54:44:f7:ed:
34:bd:e7:91:cf:10:a1:9d:31:b1:59:59:bb:a5:f9:
cd:84:ab:9a:5d:d4:71:78:31:85:a6:0a:67:42:06:
77:51:b1:0a:76:dc:90:3a:07:a4:f9:00:36:bf:1e:
be:66:e4:03:b9:6f:04:8c:3b:a4:15:84:f0:a2:a1:
b5:a7:56:46:01:49:e9:4c:08:6d:33:64:95:1a:6a:
f9:42:9f:94:54:39:13:85:f0:bd:f9:8e:96:a0:56:
04:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1F:AE:0B:2B:1E:96:13:7A:B5:C7:53:07:E6:61:46:8C:53:39:B5
X509v3 Authority Key Identifier:
keyid:DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:33:0e:14:36:56:5f:42:d1:bf:cb:cb:99:a8:f2:14:66:05:
77:82:29:5b:2e:23:2e:a8:20:dc:5a:2d:01:85:82:31:cf:2f:
66:0d:fe:17:47:5a:b5:e9:22:42:03:6b:b3:f2:91:3d:e1:ea:
39:d2:25:e0:ba:dc:6f:3d:e7:69:ca:cc:4b:ba:01:fe:5a:2f:
81:fa:72:2c:7c:1d:cc:83:f8:e6:c5:74:fd:cf:54:06:f6:ea:
02:02:ab:06:79:b2:15:98:b5:87:10:49:4c:93:1b:23:fa:b5:
ff:75:75:35:03:7b:25:c4:5e:42:d8:84:ac:10:d3:63:0e:bb:
c5:28:9c:92:41:ed:a4:fe:47:b4:49:ff:71:89:f3:35:72:69:
e6:9d:8e:26:19:e5:98:1c:c2:42:3c:7c:86:94:45:dd:84:b1:
6a:7f:79:c2:99:30:27:a1:b1:a0:29:17:01:c4:ee:89:c0:46:
6a:c5:e1:26:5b:2e:06:75:16:fa:31:34:ec:b7:40:c5:9d:b1:
5b:74:9d:4b:3e:aa:eb:3a:37:fc:c0:17:19:d9:90:02:4f:af:
17:2c:2b:86:9f:1d:15:63:b2:f6:23:e4:f8:8b:6a:dc:8d:42:
39:d7:a5:c0:09:d7:22:87:8b:1b:83:54:75:09:88:30:89:75:
d9:da:b5:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 04:01:41 2025 by rpki-client