Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
File: 3dya0lC4XNOZSUZbZoGy8d8U1qM.mft (raw, json)
Hash identifier: O6uU3OY+sv9O1dfCA76YycM9gZW93tTPZFg9FX4Yt4E=
Subject key identifier: 00:90:11:F7:F6:9A:88:86:56:36:5A:8B:F3:F6:A2:60:67:33:97:3A
Authority key identifier: DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
Certificate issuer: /CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Certificate serial: 0197B7454FB600E590D809AD8EE55D8D1BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
Manifest number: 049B
Signing time: Sat 28 Jun 2025 16:01:02 +0000
Manifest this update: Sat 28 Jun 2025 16:01:02 +0000
Manifest next update: Sun 29 Jun 2025 16:01:02 +0000
Files and hashes: 1: 3dya0lC4XNOZSUZbZoGy8d8U1qM.crl (hash: 8FlsL0wqXnnthsj3i8y/xAi4DgN1+sDZWlwW+6ktKqc=)
2: dA9DZPAABtlejc0G0adjQxYBv5c.roa (hash: 3UVeFl3N3ODI+QVLphkmL5y9dyL4Gw+YagDr/4SW4gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:4f:b6:00:e5:90:d8:09:ad:8e:e5:5d:8d:1b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Validity
Not Before: Jun 28 16:01:02 2025 GMT
Not After : Jun 29 16:01:02 2025 GMT
Subject: CN=009011f7f69a888656365a8bf3f6a2606733973a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:73:a3:b4:62:29:47:31:f6:d0:f8:d1:d0:
1c:5a:14:7f:34:64:74:2a:7d:26:25:fe:a1:4c:8b:
be:cd:42:6e:c6:15:26:b5:7f:6c:c4:94:1f:04:b7:
01:ca:40:8c:ee:2a:fb:ff:67:47:9e:a7:b8:c7:cf:
95:89:1b:9e:10:32:82:83:a5:f1:ae:8c:a6:d1:8c:
82:54:c4:76:ec:d4:e4:ee:37:94:d4:ad:4d:5e:bb:
3a:d5:04:d0:5d:2b:1f:52:f7:80:33:e4:1f:72:d7:
10:a6:af:6a:75:0f:0b:f6:8f:c4:7a:1e:d5:8a:47:
1d:a1:2b:7c:89:2d:39:40:3e:eb:b5:7e:cc:6f:39:
85:19:8a:0b:9c:44:72:7e:99:26:9a:53:43:96:b6:
95:7a:22:73:ed:a3:ad:3b:e1:f3:d5:b3:bf:da:17:
94:a1:f9:26:88:1f:4b:e9:c7:5d:08:9d:0d:50:50:
78:44:6f:fb:23:68:33:00:16:81:c2:2c:26:c1:f3:
c9:7c:68:68:8a:aa:27:82:3b:7b:d7:eb:8f:6d:fd:
ba:61:eb:d3:0a:08:b0:5c:7c:df:24:87:ac:d6:08:
a2:b2:c6:18:85:70:fb:1c:48:71:f5:d7:14:b5:09:
27:1d:70:a5:50:5b:fd:36:3f:d2:6f:78:e6:db:02:
d2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:90:11:F7:F6:9A:88:86:56:36:5A:8B:F3:F6:A2:60:67:33:97:3A
X509v3 Authority Key Identifier:
keyid:DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:71:15:55:d0:95:9b:3a:bd:68:7c:cd:1d:fc:5a:92:25:6c:
a6:f3:8c:c8:90:35:1a:12:21:b5:d6:bc:0b:16:bf:50:14:91:
b6:3d:8b:dc:b9:e4:46:3d:60:9d:79:7e:5d:55:3c:52:e0:8a:
e1:e0:bc:6c:00:62:66:e9:d0:1b:8e:c1:0b:58:b0:31:41:ec:
1e:bb:1c:69:7f:13:f0:6a:05:49:84:9d:dd:6b:98:be:9f:6f:
6a:e2:56:b9:66:f4:87:7b:d1:1f:b2:3f:4e:61:24:d6:99:a6:
3e:32:32:07:04:49:7e:40:14:11:99:5a:6d:a6:da:ea:20:6a:
a0:ff:d6:3e:23:f6:09:50:eb:9b:9c:e6:98:86:e3:53:3c:17:
77:b0:20:66:74:60:e5:74:f6:fa:d9:12:a2:43:45:2f:5c:5b:
3b:d3:b0:ff:bb:90:27:3b:f8:d7:00:3e:de:a1:8e:8c:57:84:
cf:7d:a3:ac:49:2c:29:7c:b9:c6:d3:99:bc:72:10:65:5d:eb:
f7:9b:30:e2:21:06:b1:24:01:2f:f0:07:90:b7:3e:db:bc:92:
67:45:5c:e2:81:8e:41:6e:d8:e3:f5:cb:a6:c9:2a:1b:ef:89:
10:b2:b6:7b:2c:1a:29:17:59:a3:10:21:ed:d1:cb:0e:78:52:
0e:ab:00:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:49:57 2025 by rpki-client