Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
File: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft (raw, json)
Hash identifier: OK6DwiMzForQkTG2PRGSXWEydEi+2Jr7hkxsNr8yDPI=
Subject key identifier: F6:84:1E:A0:DC:FA:E0:29:0E:40:61:DD:02:98:DC:23:FE:FA:09:89
Authority key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Certificate issuer: /CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Certificate serial: 0196CFF485AD94A2D3E5E4FFCBAE24DF2BB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
Manifest number: 09A7
Signing time: Wed 14 May 2025 18:00:30 +0000
Manifest this update: Wed 14 May 2025 18:00:30 +0000
Manifest next update: Thu 15 May 2025 18:00:30 +0000
Files and hashes: 1: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl (hash: Kx8QW2Na74Ph/xpCmbx4Yi/dWeWTaSC9w4X+TDWMth4=)
2: dKbYijsCo6cz-c8VDyBQbX6KvIQ.roa (hash: s+UDqFCEg39f4gk9fs9ZUXaGmiKaVpMOQ/J8CYcOuY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:f4:85:ad:94:a2:d3:e5:e4:ff:cb:ae:24:df:2b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Validity
Not Before: May 14 18:00:30 2025 GMT
Not After : May 15 18:00:30 2025 GMT
Subject: CN=f6841ea0dcfae0290e4061dd0298dc23fefa0989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:16:19:bc:6e:40:87:a6:3a:df:6a:4f:c9:
18:05:2b:ff:1e:19:40:c3:92:97:90:69:a5:36:1f:
af:94:19:59:ac:64:cb:f2:14:bd:60:6c:ca:45:d6:
2e:52:44:dd:2c:93:be:36:57:f1:cb:d3:04:62:6b:
f6:00:b3:50:fc:ad:bd:b7:5b:60:14:4e:94:89:60:
81:cf:55:8c:48:77:d6:77:37:27:6f:bf:67:01:d7:
9b:64:3a:65:0c:06:38:b3:16:68:1d:73:9c:cb:d2:
7a:e9:75:6c:17:ef:77:65:a5:8e:1e:c2:a0:ea:7e:
d1:95:b2:9f:5b:91:c1:53:0a:62:8d:61:a4:83:2e:
8b:0e:4f:bc:5f:7b:a9:c2:89:51:c3:a5:6c:a2:f8:
90:3f:a2:88:7c:96:2e:7f:75:0f:04:99:ad:c7:a5:
45:08:0f:de:a4:15:c6:81:fd:0b:d2:2e:9c:9b:e5:
26:a9:0d:46:ce:1f:78:e7:d2:90:7f:a1:d4:33:4d:
9c:9e:9e:6c:20:0e:85:f4:15:68:47:5f:1e:ac:11:
f3:f7:62:e1:a9:38:09:53:34:37:f1:70:3f:69:21:
2f:ee:1f:5c:5c:32:dd:78:5b:01:3a:bd:9b:61:6d:
08:c5:50:9e:8f:ae:17:f9:7c:11:56:5a:b7:5d:f4:
3f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:84:1E:A0:DC:FA:E0:29:0E:40:61:DD:02:98:DC:23:FE:FA:09:89
X509v3 Authority Key Identifier:
keyid:DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:4c:dd:6e:eb:6e:5a:4d:fe:1e:25:d7:fd:da:aa:54:ea:98:
d6:a8:9d:bc:bf:a9:1d:70:e8:e0:5d:2d:81:b6:58:54:9b:9a:
3a:69:15:27:51:a9:6b:03:b8:3f:f4:b1:ff:48:bb:14:1c:84:
8c:e3:87:c5:34:8e:a0:98:dc:2e:ba:f8:d7:c2:f2:c8:81:dc:
e4:9c:03:8f:47:a5:71:5f:08:32:78:97:d1:89:36:ca:59:85:
ab:af:e5:fa:f1:af:b1:4d:54:34:10:78:1a:72:7b:5d:49:44:
1b:ea:5c:5d:a3:58:a9:02:e3:62:d8:1d:0b:1c:a3:30:3e:4d:
e5:61:df:7a:07:e2:f9:13:52:f3:ff:40:27:d7:63:f2:30:d4:
bf:99:2d:1e:d8:4c:80:33:1b:2e:56:94:52:cc:7b:a2:57:b0:
1b:19:d8:52:bc:58:a3:1f:f8:c9:95:04:c5:96:58:be:21:22:
ac:2f:c5:d0:3e:76:d7:87:fd:f1:c9:3a:ad:47:f0:36:7a:1e:
e0:9f:1f:df:f0:f0:2a:65:b4:bc:31:de:7b:2a:ba:87:30:7c:
39:d0:01:02:24:33:fb:52:e0:51:d6:b6:8e:5d:97:58:9f:8f:
13:b5:3b:13:60:ba:c1:08:4d:e7:09:c4:c7:c5:11:67:83:ad:
d1:c7:26:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 20:43:45 2025 by rpki-client