Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
File: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft (raw, json)
Hash identifier: q+Yq2wwsDMCOZJngKzwolOiU0j0efGbC0cq6hTDoc+E=
Subject key identifier: 5E:CA:BA:17:A4:A1:D2:A1:F9:C4:C3:24:91:F0:0A:45:1A:79:CF:09
Authority key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Certificate issuer: /CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Certificate serial: 0197D4AAC2A4CB8AC1C083FE2C1D6769E74C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
Manifest number: 0A2E
Signing time: Fri 04 Jul 2025 09:00:50 +0000
Manifest this update: Fri 04 Jul 2025 09:00:50 +0000
Manifest next update: Sat 05 Jul 2025 09:00:50 +0000
Files and hashes: 1: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl (hash: TiJ9bVm/bjGJEBUMXZXfyHbnL6qLvb5W7KCVccgDtI4=)
2: dKbYijsCo6cz-c8VDyBQbX6KvIQ.roa (hash: s+UDqFCEg39f4gk9fs9ZUXaGmiKaVpMOQ/J8CYcOuY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d4:aa:c2:a4:cb:8a:c1:c0:83:fe:2c:1d:67:69:e7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Validity
Not Before: Jul 4 09:00:50 2025 GMT
Not After : Jul 5 09:00:50 2025 GMT
Subject: CN=5ecaba17a4a1d2a1f9c4c32491f00a451a79cf09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fa:bb:94:2d:29:5a:c1:44:30:66:f8:4a:db:
ec:cd:d7:d0:70:dd:a1:64:67:04:fb:8e:88:06:bf:
a3:82:fa:55:26:05:df:8b:51:5f:95:16:19:20:d4:
15:d2:c9:8c:d9:57:0a:ee:91:c3:c6:aa:6f:a9:c8:
0f:c0:35:a7:f9:19:3b:14:87:cc:c3:d5:19:92:86:
c7:15:71:ba:6e:9a:56:14:7d:34:74:a8:4c:99:e4:
13:0f:6b:12:cc:10:36:6e:bc:7d:10:16:cb:14:a3:
4c:15:8f:77:c7:d3:5a:43:96:7d:c9:68:d7:17:3d:
6c:99:b5:ee:86:b0:d0:bf:df:2e:96:d4:de:9f:67:
af:65:d7:25:6f:c4:fd:03:05:d3:0e:a8:48:cb:f1:
51:74:95:a3:d3:44:81:38:9c:2a:14:01:e0:08:42:
80:09:ec:94:22:a4:b4:36:fc:a3:e9:c8:ca:8e:ee:
6c:33:04:29:83:26:be:30:09:9e:20:a4:99:3c:df:
80:e4:fc:88:24:29:54:88:f7:53:fa:2e:4d:86:9e:
a6:8d:d3:07:3b:3d:b7:6e:11:63:52:fc:67:af:21:
0b:0a:c6:8e:29:ed:4c:d0:17:ba:5e:28:31:c4:b9:
c5:a5:e5:d0:e6:bb:e4:09:29:94:69:b7:12:b6:e7:
83:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CA:BA:17:A4:A1:D2:A1:F9:C4:C3:24:91:F0:0A:45:1A:79:CF:09
X509v3 Authority Key Identifier:
keyid:DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:9f:5e:76:bf:7e:a5:3c:db:3c:d8:01:dd:07:7d:6b:29:ac:
a9:7d:0e:6c:0f:e3:0c:f3:02:e3:4a:a3:ca:91:08:fe:87:87:
62:d2:e2:75:a1:88:85:51:ba:bf:a3:51:88:5a:39:0f:22:ea:
e0:67:47:35:f7:c7:be:72:5e:bf:de:54:2d:59:02:bb:a2:6e:
47:44:97:eb:e1:57:f1:f6:0d:dc:b3:4b:a7:43:7a:48:40:d1:
8f:d1:31:d9:b8:21:8e:cc:86:ca:99:06:62:fd:b7:ab:98:b7:
c2:e2:55:e2:c9:cd:9f:d5:16:a8:fd:5d:f6:6d:29:a5:ff:d1:
b7:48:91:1b:d6:cb:d0:7b:3d:e6:e5:1a:03:3a:f8:f9:f5:87:
d2:b2:d8:f9:12:2d:43:c8:a9:bb:98:ae:f5:51:a3:96:97:6b:
ef:1e:6d:d0:9c:15:b0:3c:65:9f:58:d9:ab:7c:cb:83:fa:48:
3f:0a:2e:4d:c8:4d:70:38:a4:f0:9d:14:4a:32:2d:fc:6e:ac:
92:f0:f7:30:d8:b3:45:69:f4:f2:49:e8:ad:50:69:9f:56:54:
11:c6:75:f5:29:05:0f:48:30:6e:b5:60:0c:6e:d1:7c:3f:02:
fb:d8:24:67:99:4a:66:1a:fa:0f:83:8a:36:d9:0a:29:c6:46:
80:bb:cd:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 14:39:55 2025 by rpki-client