Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: 5bUYDEcMi6WYw29dlIlnyl4sPmM/NSu+FDWqRLhvK8E=
Subject key identifier: EA:D6:E8:3D:7D:6D:87:56:67:BF:36:7F:34:1F:87:3B:3F:3E:D9:E6
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 0197B8212AD590BBBCC587C4776C07474B57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0D9B
Signing time: Sat 28 Jun 2025 20:01:10 +0000
Manifest this update: Sat 28 Jun 2025 20:01:10 +0000
Manifest next update: Sun 29 Jun 2025 20:01:10 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: Z+Mxi4yXw734+VxJ0hnXAnt49CcWDLrQnZTURQdHboA=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:2a:d5:90:bb:bc:c5:87:c4:77:6c:07:47:4b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Jun 28 20:01:10 2025 GMT
Not After : Jun 29 20:01:10 2025 GMT
Subject: CN=ead6e83d7d6d875667bf367f341f873b3f3ed9e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6b:d0:20:c3:49:9a:f9:3c:3b:40:33:a3:7f:
55:4f:f4:81:cf:f7:a0:25:46:73:36:bb:ec:71:42:
0a:e0:97:72:cc:20:91:d5:20:ec:64:8e:08:38:16:
5d:72:75:80:f0:fe:3c:58:9f:d4:39:de:7d:fb:f1:
5e:8a:71:d0:87:67:8f:a7:0a:2e:dd:42:3d:ad:c0:
0b:a1:66:07:a9:95:29:43:20:63:42:1b:3e:dc:f2:
e5:a6:16:e5:b6:d9:7e:25:3d:a3:a0:71:2f:de:00:
03:13:e2:c6:b2:56:d4:d4:23:88:e2:85:78:c9:e7:
1d:c1:08:16:c9:bd:25:02:ad:b5:ce:d7:36:f2:91:
8a:e6:d6:03:c1:9f:d0:27:02:56:15:85:a8:41:97:
fd:2f:0f:d3:e4:7c:4d:30:36:8c:76:fa:63:e3:a2:
f9:ab:8c:a3:6b:3a:3f:3d:c6:7d:2b:ca:71:03:62:
c4:cc:5c:d6:0a:7b:31:8b:85:c7:87:fa:a1:dc:15:
85:2c:4d:d8:d0:b4:3a:35:e4:8b:f8:7f:2a:e6:1e:
7f:eb:30:f9:5c:87:c5:09:0b:e3:d1:03:cd:d8:28:
17:40:e6:72:65:7d:2d:8c:d5:e6:c6:e5:fd:a1:af:
02:57:00:be:d1:97:fe:8d:68:14:e6:2e:83:85:52:
6d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D6:E8:3D:7D:6D:87:56:67:BF:36:7F:34:1F:87:3B:3F:3E:D9:E6
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:ad:4c:9f:16:7e:7e:23:8f:2e:78:27:68:19:47:72:c4:de:
8d:39:b5:a5:0e:eb:0c:81:80:6d:9e:6f:e8:40:96:c1:d4:a9:
ca:64:cd:a3:90:2d:e0:4d:9e:69:d3:3b:42:6c:4c:73:60:33:
d8:a9:fe:cf:eb:0f:4f:35:89:27:95:b3:7b:5a:14:64:9d:12:
a3:86:cc:8b:c8:3c:01:be:d5:a6:f6:7b:8a:87:93:76:50:ce:
73:7d:02:8f:f9:2a:32:0e:97:e9:0c:dd:b7:22:3d:64:5e:48:
3a:49:25:b3:f7:9a:9d:2d:06:f6:47:b6:5f:c8:2a:31:8c:bd:
9c:3b:fd:cf:16:51:a5:78:84:ec:c2:41:2f:01:b7:5f:61:87:
20:07:70:6f:de:f4:76:2d:2f:88:0a:c2:29:7b:be:14:f6:6b:
f4:76:7e:1f:a8:49:84:91:b7:c5:40:9c:9f:f0:da:ef:5c:16:
c4:0b:9e:68:c6:3b:50:f8:7a:19:95:97:94:91:a0:b4:5f:21:
8e:4e:1b:fe:ce:30:85:43:94:28:84:e7:21:42:5f:79:39:df:
7f:20:eb:24:c7:d1:91:97:c5:bc:df:7c:d7:85:3a:f6:cd:6e:
87:5a:bf:b1:0f:e1:79:23:e6:07:fa:69:b5:8b:24:e6:e3:d0:
a5:18:b4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:17:12 2025 by rpki-client