Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: +gL322lbUP6YfzFe2TiWj7s5Dxeu3DmOBrKt4YUh4ek=
Subject key identifier: 43:3E:0F:01:DA:7C:B4:70:2F:08:4D:8D:77:23:93:B5:0C:52:41:FF
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 0197B6D7A3C9585A10C9BF6E1AA55826ED94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 104F
Signing time: Sat 28 Jun 2025 14:01:14 +0000
Manifest this update: Sat 28 Jun 2025 14:01:14 +0000
Manifest next update: Sun 29 Jun 2025 14:01:14 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: pGh9E4uORw1FWQrsf+NVm5gMT8jMwL3/+T8cu/pu6MY=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a3:c9:58:5a:10:c9:bf:6e:1a:a5:58:26:ed:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jun 28 14:01:14 2025 GMT
Not After : Jun 29 14:01:14 2025 GMT
Subject: CN=433e0f01da7cb4702f084d8d772393b50c5241ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:15:fb:32:e5:41:13:f6:70:df:05:0e:5f:
ba:d9:73:6b:9b:5e:e6:d4:2e:6a:b7:7d:53:74:9d:
f2:ef:10:b5:06:24:9d:45:a6:1e:9a:08:e3:66:7b:
aa:b0:4c:7f:df:6d:6d:33:3f:ed:d8:db:7f:d7:e7:
4a:1f:ac:cb:b4:0a:4f:72:22:a2:64:30:d8:18:a0:
62:7c:a5:7c:50:15:84:a9:76:1b:b8:31:35:8a:b1:
72:19:ca:36:06:1d:11:fb:f2:de:56:f2:fe:4d:89:
10:f8:c2:f4:af:58:02:dd:75:c1:41:13:23:25:ce:
02:ae:7c:da:9f:97:20:25:78:e5:69:dc:14:33:ac:
bf:0d:4a:0e:f2:39:5f:2a:4d:9b:bf:8b:f6:ed:3b:
88:26:a0:d9:53:e5:1f:a5:f7:df:ae:92:c0:da:e7:
fc:86:41:5f:ef:1b:89:15:96:e4:cb:18:70:49:f1:
fd:5a:84:34:01:1e:41:7a:40:51:51:e4:75:d0:e0:
98:4a:4b:08:06:d8:5d:04:1c:02:12:39:f1:26:3b:
52:47:68:47:45:1d:72:f5:c9:5b:b8:01:9e:6e:c7:
be:5b:e9:f3:fd:49:fd:e2:5f:a1:4b:4a:e4:1b:b1:
11:50:ea:dd:b2:44:8b:17:82:ae:b2:d5:af:d4:93:
26:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3E:0F:01:DA:7C:B4:70:2F:08:4D:8D:77:23:93:B5:0C:52:41:FF
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:f2:69:3b:50:f3:d6:9f:f5:5e:30:c9:d2:fd:1d:f6:f7:d8:
d7:f7:77:57:98:61:25:50:07:a8:cc:98:a0:de:7d:78:d4:cd:
ff:d6:0a:27:d5:77:4f:5f:91:62:de:17:b3:ff:87:39:1b:8e:
1f:46:75:a4:4a:a7:7c:f9:67:34:a9:7e:93:6f:7c:9c:23:d3:
b8:14:0e:f0:53:39:14:da:14:34:35:cc:a4:e6:27:15:f8:0c:
b5:b0:50:f1:0c:34:a5:ce:73:c3:1d:ac:02:12:cf:d0:46:62:
da:97:0e:ec:10:da:a7:43:a0:05:63:a1:8e:04:34:99:b6:6e:
42:97:d7:66:a3:88:7c:b3:7e:dc:6b:2b:54:e8:58:b5:e9:44:
8e:16:d8:83:29:e8:94:13:70:90:7e:fc:fc:61:d1:eb:94:87:
af:b2:72:3c:7d:06:b9:ab:17:17:12:d1:7d:6b:4b:ee:5b:52:
9a:78:ae:37:56:24:0c:e9:96:69:d7:b5:e7:ba:e2:2e:77:48:
71:4d:87:c2:5c:2f:07:3f:a8:2d:fb:42:b6:80:fa:77:6f:5d:
51:49:c9:7f:51:d5:4d:ce:49:1a:dc:d4:88:0c:0b:d5:67:37:
46:1e:c6:ea:9b:78:d5:26:b1:52:1f:9a:c9:fc:31:2a:d4:15:
e8:db:b7:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:55:53 2025 by rpki-client