Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
File: 3RWKDaAyZt8UTImntuNadhxJmPc.mft (raw, json)
Hash identifier: lN8qwhk8W3jxMU+txRUsqZsGUM5AtlFxWTv8JhtzLmU=
Subject key identifier: A6:44:BA:18:29:E5:EF:41:EC:B4:E7:66:51:01:95:9D:AA:36:0A:A1
Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Certificate serial: 0197B8210207F4B18ECF84C89E45E712B5D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
Manifest number: 02AF
Signing time: Sat 28 Jun 2025 20:01:00 +0000
Manifest this update: Sat 28 Jun 2025 20:01:00 +0000
Manifest next update: Sun 29 Jun 2025 20:01:00 +0000
Files and hashes: 1: 3RWKDaAyZt8UTImntuNadhxJmPc.crl (hash: end4Yru4sJtAGk2i57ZgfqCNDAeJhMkAU/h870+Mwl0=)
2: hjp9r4jkfdcWh8tb4IbJ8JLqvhg.roa (hash: rpnDBu2YggoyGIw/C4Ub9AMkAXEhq0st1VH7UXhjugk=)
3: oyehTC9fC3RxVNTxQ-3Nace4xCo.roa (hash: 6amsBM8Jkzid3Hbf3NCrvWV5lgaxarQNmZ7omOl4H1Y=)
4: tWWoO6Q9xW9qzxs1LTkk9o7qkwc.roa (hash: dIS2lAatvIYTUHXvxYqBBEq9rurmrnQiuE0cglSeBdY=)
5: zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa (hash: JzeLYwYOJtUYF4eEhrs8y3e0iaiCpHB7RqKZXjFT6qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:02:07:f4:b1:8e:cf:84:c8:9e:45:e7:12:b5:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Validity
Not Before: Jun 28 20:01:00 2025 GMT
Not After : Jun 29 20:01:00 2025 GMT
Subject: CN=a644ba1829e5ef41ecb4e7665101959daa360aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:cc:62:9a:27:a2:d0:97:94:ce:85:a9:61:
ac:a4:e4:80:a3:12:bd:60:b4:30:50:c2:9d:83:f1:
c7:5d:d9:e2:96:03:ae:d7:2a:c1:28:f0:4b:bd:0d:
80:a9:a0:7b:27:9e:2a:aa:12:58:66:52:07:2d:e8:
53:30:e1:7d:a9:56:bf:78:ab:01:b4:a3:16:a8:ff:
6c:b2:8f:77:11:6f:61:e2:93:e3:c5:c7:bf:11:e6:
5e:92:86:73:70:e2:6c:42:a9:79:e3:0e:56:cc:07:
43:c9:e8:39:b0:c3:e7:cc:58:e2:b3:4e:4d:23:de:
46:2b:55:98:33:cf:94:d1:6c:82:e3:ac:13:d8:e5:
1b:91:68:68:54:15:69:a5:2c:03:1d:ff:38:2e:6c:
cc:06:38:53:1d:56:c2:a7:03:bf:99:46:33:1f:d0:
a2:61:02:5e:48:1d:e5:de:b4:6f:d8:34:62:7b:15:
5a:86:b3:3b:3d:8c:26:1f:c3:3f:8a:f4:88:3a:f8:
85:f1:38:d4:83:b3:fb:62:62:2f:d0:fc:d3:75:89:
83:c9:b4:12:58:c2:e7:6b:a7:3e:8a:74:78:ee:ca:
04:c9:f8:2c:15:8f:ad:31:5e:1d:a4:3d:af:d1:93:
c3:af:58:15:09:a7:74:19:2a:71:fc:08:07:dc:fb:
01:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:44:BA:18:29:E5:EF:41:EC:B4:E7:66:51:01:95:9D:AA:36:0A:A1
X509v3 Authority Key Identifier:
keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a4:a2:e0:c8:dd:f5:87:de:f2:e7:dc:90:ea:b4:60:6c:7f:
28:47:04:04:87:78:cc:ca:44:e0:ee:74:8b:56:f9:9d:3d:cf:
de:50:9f:ee:18:ff:94:77:cc:1e:d5:1b:cc:87:61:9c:5f:d1:
64:36:af:a6:c6:83:54:19:9f:85:61:2a:40:4d:32:03:16:a6:
53:5f:90:8c:43:62:b6:89:11:c9:54:a6:02:6b:a7:06:91:ab:
67:c9:cf:25:30:32:d8:06:85:00:52:66:41:35:f5:92:92:64:
c6:38:1a:45:32:0b:1b:33:04:46:8c:8f:4b:b9:51:11:9b:56:
6f:b7:99:94:2d:24:45:31:d6:3d:1a:95:fe:fa:cf:a2:50:6c:
62:74:4d:c2:4c:c1:c7:22:66:cb:86:14:e2:10:66:a2:77:ab:
e6:50:e9:40:63:d8:d6:c2:a7:49:39:d4:81:fe:9c:68:86:b8:
c9:d3:4c:0c:c9:3b:8a:5c:36:61:05:8f:ad:0b:7c:77:fb:43:
75:d9:45:10:4f:ec:f0:af:b1:bf:d0:d0:d4:1c:11:18:6a:0f:
87:6d:4c:1d:ee:74:4d:fa:ad:de:f2:61:0b:05:10:73:43:2b:
85:6d:56:32:7d:b7:40:2e:15:67:d6:2e:3e:63:d9:ef:ed:29:
2b:9e:69:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:47:12 2025 by rpki-client