Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: Chr1BmPtd5DTlY2jeXZGTYByHclezCirELnGUuEEIhk=
Subject key identifier: 28:79:08:63:39:21:88:F3:C8:B9:01:3C:01:24:DD:54:11:4E:2A:A9
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 0196A49C856522D273FCE976EC53D452E5B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 0FC1
Signing time: Tue 06 May 2025 08:00:43 +0000
Manifest this update: Tue 06 May 2025 08:00:43 +0000
Manifest next update: Wed 07 May 2025 08:00:43 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: Y1qOZPYkdpISzLnt5pXyuV2Xb9ZPyCmPOQ8h/efCX64=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:9c:85:65:22:d2:73:fc:e9:76:ec:53:d4:52:e5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: May 6 08:00:43 2025 GMT
Not After : May 7 08:00:43 2025 GMT
Subject: CN=28790863392188f3c8b9013c0124dd54114e2aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:27:4b:9c:c4:c7:1a:4c:28:03:98:92:f5:
3d:28:02:f0:35:be:a8:2e:1c:4e:3b:10:be:ed:15:
eb:18:2a:95:c4:cf:c3:c1:ea:08:bd:37:da:86:b7:
ce:42:16:dd:49:59:9f:75:8e:86:80:7c:d4:5b:88:
f6:a2:7e:a8:57:10:48:ea:e4:17:85:3d:98:7e:e1:
b4:57:dd:19:a9:98:c3:3d:c8:c3:4a:b4:4d:61:bd:
a5:f5:af:9c:2e:d3:96:22:e8:db:24:cf:8e:e4:8a:
83:39:25:06:07:81:36:ff:24:30:34:e1:4b:7c:50:
c7:9e:8d:87:47:85:28:b5:46:8b:14:bb:8d:ff:af:
08:30:55:3d:68:7f:69:67:48:cb:0e:db:83:e1:27:
a4:f1:0d:d2:39:88:e7:7e:7e:15:ce:b7:de:40:50:
da:d0:cf:b1:cc:40:cc:b4:c9:4c:e1:49:27:35:50:
ae:02:38:bc:3b:a5:02:ad:40:e6:f5:60:7a:2a:1e:
63:ba:c1:be:9e:e1:81:ce:6f:24:08:2b:f1:3f:aa:
62:fe:dc:10:c6:e5:15:a7:b2:17:21:98:b8:c7:8f:
84:cf:81:52:f6:95:9a:37:c7:b2:ad:f1:df:88:39:
1e:f4:3f:6d:a6:f5:01:73:ec:b6:8c:21:06:3c:4e:
ae:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:79:08:63:39:21:88:F3:C8:B9:01:3C:01:24:DD:54:11:4E:2A:A9
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:85:15:96:25:04:ab:1d:7f:92:d6:1c:9e:a4:95:33:79:5e:
cf:29:f6:88:29:f8:c9:88:7a:aa:65:ea:1d:d6:17:3d:69:0a:
b7:b6:9c:34:eb:54:f1:2f:37:35:5c:c5:6f:e9:99:b1:b8:7e:
cd:c7:ed:b8:52:a9:2f:5c:55:50:ce:3a:2f:05:78:bc:b8:f9:
05:63:c6:ae:cd:e4:84:4d:d2:72:a3:0b:9f:4a:51:59:12:84:
64:c2:ca:89:c0:9c:74:ed:65:3d:55:60:77:83:20:c5:b3:e2:
24:c5:b7:22:97:09:c3:82:07:a1:ce:43:81:6b:41:e1:5c:6d:
37:28:05:52:53:1c:84:19:d8:3f:54:4d:50:62:5f:ec:2c:c0:
a1:5d:8a:ed:8f:61:5f:cd:95:e3:72:e2:c4:16:8c:ee:22:84:
0c:72:5d:56:c6:ee:d9:0d:eb:c4:0c:ed:9f:e9:50:1f:ae:04:
42:62:e9:ae:9b:78:7a:03:e8:14:63:7f:3d:5c:4e:45:3a:42:
49:9a:fe:29:10:0f:5f:af:5c:5c:69:8f:01:64:9d:24:c9:b4:
01:5f:87:05:c4:1a:99:18:01:7a:92:10:b1:b2:8c:bb:c2:8a:
b2:ea:e2:b8:67:0d:60:2e:26:df:83:e1:ac:f4:1c:93:1c:81:
a6:96:ca:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 14:09:11 2025 by rpki-client