Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
File: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft (raw, json)
Hash identifier: /PkJFaBFwevZtiCEkR82hgilrQCCmHEuh7NwKpfZRGs=
Subject key identifier: 14:4F:DD:B2:B5:49:C1:35:2D:91:35:65:C4:8C:94:E1:C5:EA:31:43
Authority key identifier: DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
Certificate issuer: /CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Certificate serial: 0197B6D7B73B2ED190D27EDBA2D7E37E3015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
Manifest number: 08D3
Signing time: Sat 28 Jun 2025 14:01:19 +0000
Manifest this update: Sat 28 Jun 2025 14:01:19 +0000
Manifest next update: Sun 29 Jun 2025 14:01:19 +0000
Files and hashes: 1: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl (hash: lAQinSZE56hJXMe9tgjzSq45jl2pE3Ec4aDrBlYjNUY=)
2: vrZbrmq-YLZHy_jTQFADJGPxi-I.roa (hash: SoRxaIEIcm9lF/KB/PtX621zexUgH5AtUpObYQIQZW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b7:3b:2e:d1:90:d2:7e:db:a2:d7:e3:7e:30:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e
Validity
Not Before: Jun 28 14:01:19 2025 GMT
Not After : Jun 29 14:01:19 2025 GMT
Subject: CN=144fddb2b549c1352d913565c48c94e1c5ea3143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b2:e9:38:34:05:50:ad:43:27:55:e2:ea:44:
c0:76:c5:35:17:ff:36:95:d5:fb:df:50:5a:e2:25:
2e:89:64:41:94:b5:89:b5:62:7b:8d:57:72:f5:3d:
10:61:d7:b3:1f:8c:af:e0:08:b6:e7:58:8c:0e:37:
ff:1a:70:17:af:50:f9:03:7c:10:33:91:e8:4b:fa:
fa:b5:a4:60:a1:cc:5f:37:cc:36:fc:bb:d3:07:15:
cb:5d:8e:fe:9c:62:47:18:18:10:9e:8f:21:c0:a0:
b0:92:91:72:9f:43:96:b4:45:62:ce:30:8c:38:16:
9a:be:02:55:f4:7e:81:68:36:f3:97:be:6f:12:94:
91:63:73:63:0a:df:fb:4d:a5:a2:c5:27:fe:36:36:
86:57:24:d3:48:a8:e0:f0:21:2f:69:ab:ed:7e:21:
ba:bb:6f:6d:48:c3:50:5a:12:13:60:63:d1:9b:b7:
00:b6:51:c8:65:02:36:5d:27:0d:d7:7d:84:4e:92:
1b:2c:bf:dd:8a:79:18:12:2e:cd:e8:10:54:b6:c7:
35:07:0c:e5:8c:a9:0d:81:a6:b7:a9:bb:c3:1b:93:
ed:a6:92:81:af:c2:53:da:f4:bd:04:b1:28:78:bb:
e1:6a:a4:ba:91:6c:e1:f7:11:51:1d:88:f6:ef:40:
8b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:4F:DD:B2:B5:49:C1:35:2D:91:35:65:C4:8C:94:E1:C5:EA:31:43
X509v3 Authority Key Identifier:
keyid:DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:20:54:8e:31:b2:47:5c:3e:f1:b3:d2:00:c8:76:48:35:79:
c5:fc:63:6e:3d:c4:eb:a1:2d:cd:94:e6:91:9f:1f:42:a2:7f:
5b:c8:2e:a1:26:f5:3d:78:04:e7:62:33:45:74:b7:f9:e0:28:
88:56:9d:0b:4d:c6:ad:b0:d9:b7:b7:0e:10:ea:3b:fb:0d:6a:
4a:c1:9d:35:a8:8d:af:07:40:ea:38:bc:35:98:bb:38:f4:59:
11:0d:52:aa:91:2e:90:87:f6:cd:a7:26:e4:c3:a2:ba:02:55:
3a:bc:41:31:19:dd:c3:86:cd:30:d7:08:11:e1:2d:65:ab:67:
fb:cf:02:b5:65:9d:ef:61:bc:50:f4:18:c0:53:6d:42:56:82:
ad:2e:2f:ac:25:dd:b3:a0:1a:6e:e7:68:e4:f4:89:d5:c6:7f:
51:26:4b:09:fd:8e:13:d2:54:43:5f:37:c2:ea:19:63:3d:a2:
0a:e0:fc:01:1a:25:ef:a6:c2:02:87:47:90:42:9b:04:ef:27:
53:9a:65:50:ac:72:05:d7:f3:27:0c:8e:89:02:e2:4e:4f:87:
87:75:7d:83:65:f7:54:0a:cc:8e:d5:5e:d4:de:0a:67:54:ab:
54:be:9f:45:4f:15:cf:52:b6:56:dc:e3:df:e1:8c:27:ac:43:
bc:08:1e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:02 2025 by rpki-client