Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
File: 3dya0lC4XNOZSUZbZoGy8d8U1qM.mft (raw, json)
Hash identifier: 7mzGA/bjQE+Uq4lvfsPa0PnOhOODtn8HyOcvcF2oLHE=
Subject key identifier: 63:11:0A:4E:BA:7A:E2:37:7A:98:6A:2D:4C:B3:72:01:36:58:2F:EA
Authority key identifier: DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
Certificate issuer: /CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Certificate serial: 01969F3F7E23732E0BACE17CA5B7D80C7998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
Manifest number: 040A
Signing time: Mon 05 May 2025 07:01:00 +0000
Manifest this update: Mon 05 May 2025 07:01:00 +0000
Manifest next update: Tue 06 May 2025 07:01:00 +0000
Files and hashes: 1: 3dya0lC4XNOZSUZbZoGy8d8U1qM.crl (hash: T5d2LXMmARPtQjeFiltghxJlZ5hT3hbm2g4paG+QjCs=)
2: dA9DZPAABtlejc0G0adjQxYBv5c.roa (hash: 3UVeFl3N3ODI+QVLphkmL5y9dyL4Gw+YagDr/4SW4gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:3f:7e:23:73:2e:0b:ac:e1:7c:a5:b7:d8:0c:79:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Validity
Not Before: May 5 07:01:00 2025 GMT
Not After : May 6 07:01:00 2025 GMT
Subject: CN=63110a4eba7ae2377a986a2d4cb3720136582fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7a:03:b4:da:d3:f8:80:32:8d:4d:c4:73:3c:
4c:77:dc:6d:a1:6b:f3:70:53:70:1d:d1:5a:2a:b4:
7c:ed:e2:ef:f1:42:3a:1f:b8:d6:90:ef:7a:df:69:
aa:02:02:e3:1c:5a:ad:ab:50:17:d4:81:05:86:4d:
ab:47:c3:a8:9e:42:93:95:3c:ab:42:9a:5d:f6:ce:
05:68:10:d0:80:b8:be:14:8d:cd:ea:50:ca:8b:e9:
da:80:a4:2f:22:37:0b:de:ec:4b:f2:f3:be:45:1c:
32:5a:c7:69:57:d7:4f:31:a0:8c:39:77:fb:db:52:
c6:4e:5b:28:b3:a5:d3:52:cc:ec:e3:5a:f6:20:a1:
93:9a:25:8b:d7:bc:93:03:a8:85:6e:fb:7f:a3:37:
a4:f9:07:98:7e:75:0d:9e:39:f2:df:5b:61:b9:76:
d3:38:0d:7f:a0:06:5a:0b:30:a0:59:33:9c:d1:d1:
ae:8a:74:fa:be:db:aa:4b:03:d7:35:2c:d7:15:e8:
0d:46:60:7f:de:1c:b0:9f:df:f7:bc:30:82:fd:29:
9a:21:df:29:14:e0:5f:eb:f2:43:cc:6a:de:83:53:
1a:96:73:36:83:4b:48:2e:db:e4:41:a3:c7:c0:97:
4e:69:b0:f3:14:c7:6c:64:a8:d0:39:36:8d:34:bf:
90:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:11:0A:4E:BA:7A:E2:37:7A:98:6A:2D:4C:B3:72:01:36:58:2F:EA
X509v3 Authority Key Identifier:
keyid:DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:bb:a3:52:bc:11:00:0a:ae:28:5c:93:f4:69:54:8f:71:bc:
cb:37:f2:af:59:df:b3:e0:f8:f9:76:cf:9a:eb:e5:6e:53:8a:
36:9e:63:af:31:e0:66:5f:2a:9c:56:6e:fc:92:2f:53:ed:bc:
fe:37:e8:f8:69:15:0e:32:a8:3f:f4:1f:cf:4c:49:1e:e5:28:
49:e1:90:f3:a9:43:52:7c:4f:9f:37:7b:dd:e0:6d:6f:96:07:
9e:2b:90:ff:61:57:21:36:54:e1:17:e3:d1:d3:02:c2:53:0b:
9c:2f:9c:a8:1c:60:84:9c:8b:2b:47:c5:18:b2:ba:9e:f2:8e:
54:45:21:57:ca:66:1b:cd:08:b4:60:bc:a4:0d:5a:cd:63:4c:
87:55:a0:e8:a1:cd:16:06:20:7a:f2:83:2d:68:7e:6e:d3:0d:
85:0f:40:ea:5d:71:6b:7b:b9:97:58:ec:31:a4:83:01:c5:91:
31:b1:28:06:30:fd:40:05:ba:21:d4:2e:d5:3e:54:13:25:14:
7b:29:a4:b7:07:50:60:a1:d6:ab:dd:70:79:7c:29:a4:e4:46:
1d:68:3a:e8:cd:45:77:54:fd:4f:6f:a5:3a:4a:93:57:23:2b:
ab:ff:7e:a4:9c:78:fd:af:cf:bc:43:f7:86:70:05:f5:f8:d6:
ff:6c:45:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 09:18:27 2025 by rpki-client