Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
File: 3RWKDaAyZt8UTImntuNadhxJmPc.mft (raw, json)
Hash identifier: Dbd8RBhmQfubm0U6Rwt3DQd4aJcA+pGrL9ZD/7aSkrE=
Subject key identifier: 33:D2:35:9E:19:13:08:27:5D:CF:7D:F6:A1:27:E0:DF:7A:16:47:2C
Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Certificate serial: 0196C2DD72482FB1E33FD7C3734DF396AE4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
Manifest number: 0230
Signing time: Mon 12 May 2025 05:00:14 +0000
Manifest this update: Mon 12 May 2025 05:00:14 +0000
Manifest next update: Tue 13 May 2025 05:00:14 +0000
Files and hashes: 1: 3RWKDaAyZt8UTImntuNadhxJmPc.crl (hash: TmnKfL31dpA5rdNTYfvu/cE0cSGoRaL+sPbT5Kc1E00=)
2: hjp9r4jkfdcWh8tb4IbJ8JLqvhg.roa (hash: rpnDBu2YggoyGIw/C4Ub9AMkAXEhq0st1VH7UXhjugk=)
3: oyehTC9fC3RxVNTxQ-3Nace4xCo.roa (hash: 6amsBM8Jkzid3Hbf3NCrvWV5lgaxarQNmZ7omOl4H1Y=)
4: tWWoO6Q9xW9qzxs1LTkk9o7qkwc.roa (hash: dIS2lAatvIYTUHXvxYqBBEq9rurmrnQiuE0cglSeBdY=)
5: zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa (hash: JzeLYwYOJtUYF4eEhrs8y3e0iaiCpHB7RqKZXjFT6qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:dd:72:48:2f:b1:e3:3f:d7:c3:73:4d:f3:96:ae:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Validity
Not Before: May 12 05:00:14 2025 GMT
Not After : May 13 05:00:14 2025 GMT
Subject: CN=33d2359e191308275dcf7df6a127e0df7a16472c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:26:9e:91:62:26:fd:51:7f:65:5f:cc:4d:13:
3e:55:0e:ee:f1:2f:9b:80:1f:a1:3b:bb:7f:25:17:
51:e1:49:2c:5d:ac:ab:7d:51:aa:72:28:cc:fb:51:
29:30:e5:a0:f1:1d:8e:89:f4:2b:23:89:4c:7b:54:
88:5b:6e:b0:1d:95:ac:78:bd:27:3c:e2:a4:8f:ef:
d0:88:f7:b5:30:78:36:e2:6c:2f:d4:25:8a:a2:71:
5f:d9:45:35:52:87:68:45:aa:9c:72:4b:55:5c:7e:
64:95:8c:55:ed:be:91:fa:95:b5:71:a6:e2:47:45:
c5:86:3b:e0:b6:1e:d4:75:b5:18:b7:ba:25:a7:56:
3c:74:8e:c1:6b:9e:a6:0f:01:fd:76:4a:da:b0:94:
6c:0a:43:36:69:14:65:37:c2:5f:fb:c2:92:5c:fd:
25:cc:82:ea:30:11:43:5a:03:80:d2:1a:2e:53:e3:
97:2e:ce:26:a6:7f:a3:76:a8:9a:e0:bb:a7:03:a6:
c9:04:8a:48:cc:cd:a8:7f:50:6f:51:da:22:be:fa:
97:af:6f:96:c1:d5:44:46:7a:f7:45:1b:dd:5b:ad:
b5:5c:fc:6d:a7:ce:a9:b0:fa:da:0a:c3:e5:48:58:
fd:1c:e9:77:27:55:ec:89:b7:f4:64:74:9f:24:d2:
71:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D2:35:9E:19:13:08:27:5D:CF:7D:F6:A1:27:E0:DF:7A:16:47:2C
X509v3 Authority Key Identifier:
keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:77:ea:54:65:1e:be:96:d7:99:ba:12:e2:e4:e6:6e:60:0d:
64:c0:1a:cd:b3:44:a6:5e:e6:2b:bd:03:03:54:30:68:5c:0c:
59:87:70:e2:fd:47:f7:94:e3:8b:71:6b:ed:62:fe:5a:35:ba:
72:82:ca:61:ed:8e:8d:c4:d5:98:25:6e:9c:d3:cf:e9:7c:16:
2f:68:25:78:e5:2c:f3:ef:50:c4:2b:ce:8c:03:79:3e:03:a5:
b4:09:30:84:69:04:7d:f7:b5:9b:17:92:7a:d9:04:cc:28:4c:
91:33:2d:c8:00:60:c0:42:2b:8a:00:90:d5:78:62:7a:df:44:
65:76:33:5b:25:6a:28:96:4c:e7:2e:38:2f:d1:b8:62:dc:de:
59:31:71:25:ef:94:af:ae:f7:aa:76:37:cb:65:99:58:cf:af:
0e:a0:4f:a2:56:a9:ef:7e:85:fd:81:76:d6:97:29:66:55:e6:
89:02:26:52:3f:55:41:dc:c5:aa:09:91:86:31:30:97:5d:e7:
3a:09:2a:42:41:5f:0f:8f:37:8e:1e:17:36:b9:bd:8b:22:0e:
7e:5c:ae:a1:d8:25:f5:31:93:c5:ff:4f:15:0a:88:16:f3:06:
8a:18:64:46:a4:0e:f2:a0:4f:41:8c:6f:74:01:28:3d:75:e9:
19:9c:96:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:51:01 2025 by rpki-client