Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: QfqVx/kq32TUj/AS0kXLU3SmEaUHu1u/4HzFYHANXGc=
Subject key identifier: 37:7E:87:CF:CE:2F:44:E2:B2:78:EB:9A:C6:76:A9:B5:91:C8:15:73
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 0196AF8D920F5646F20799C63D641D9980B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 0E5C
Signing time: Thu 08 May 2025 11:00:12 +0000
Manifest this update: Thu 08 May 2025 11:00:12 +0000
Manifest next update: Fri 09 May 2025 11:00:12 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: FJjN0niOI2pnz3wIEOtKflyKIty6HzC0mSQ4SNBVZJI=)
2: ZK9gU4FBN8KUQTPHGhgGaXPIWjk.roa (hash: YFHfAWvmuV1pyKRAlUfEUWxi+ZLKrTZD/d9TC0Av1JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 11:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:8d:92:0f:56:46:f2:07:99:c6:3d:64:1d:99:80:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: May 8 11:00:12 2025 GMT
Not After : May 9 11:00:12 2025 GMT
Subject: CN=377e87cfce2f44e2b278eb9ac676a9b591c81573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:bc:46:64:ff:d7:b0:a9:4c:a8:5e:59:12:
4b:2e:d9:04:54:df:78:68:16:b7:44:55:16:31:cd:
9d:bc:71:75:f4:02:05:ea:b2:8f:cd:ab:56:48:86:
ab:32:e0:a9:e5:14:c3:c5:16:d6:75:f3:5d:bb:eb:
d6:a9:fc:6f:5a:34:4c:7b:6b:bf:b6:20:00:ce:d4:
38:43:b2:f5:49:be:3b:5d:88:90:25:8f:e5:b1:29:
e7:54:5e:60:a4:20:33:09:44:96:bd:bc:cb:87:d8:
21:17:fe:4e:1a:20:24:51:6f:97:ac:45:10:b7:6f:
4c:85:24:f6:ec:3b:0e:3a:99:2c:78:cb:1f:b0:90:
9f:d5:c8:13:ee:67:6a:8d:6d:50:51:81:f1:13:b8:
42:83:d0:4d:e1:66:31:e5:6a:d3:6b:16:f4:73:d9:
10:e8:aa:b5:c6:96:c0:9d:a4:f3:3e:33:53:27:a9:
9b:41:0f:08:bb:2d:43:72:eb:44:d0:80:52:c3:46:
b6:56:9f:74:58:a2:f5:38:fb:9c:03:28:be:f0:48:
0d:8b:42:4a:2c:cd:80:8a:4d:ec:05:29:8b:db:61:
99:70:99:aa:7d:e1:38:18:17:59:ee:55:71:95:30:
fe:7e:36:f5:e1:d2:81:51:fd:07:d1:8d:e5:54:aa:
d8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:7E:87:CF:CE:2F:44:E2:B2:78:EB:9A:C6:76:A9:B5:91:C8:15:73
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:a0:65:7f:c7:77:16:c0:59:53:da:9c:c4:ba:a8:39:24:88:
e1:18:9f:e7:41:84:9c:b1:60:e6:b5:c7:b1:92:ee:0b:df:b0:
9e:05:77:ce:66:5a:cf:3f:9a:67:f4:65:f0:d3:da:82:93:ec:
f6:1d:07:1a:09:3f:c7:3d:30:ad:7b:61:5c:b8:83:af:1c:75:
38:e6:2e:b2:57:dd:72:61:b6:d3:8a:4a:e3:7f:4b:0d:6b:c2:
0e:dc:2e:73:72:9b:7e:e0:35:71:7c:0d:ba:fe:4c:82:7e:b5:
44:db:81:57:c8:41:aa:65:44:ea:db:8e:41:49:b4:76:2c:47:
d4:bf:d1:17:95:59:6f:03:b5:4a:c5:5e:06:21:90:92:d8:db:
0c:8a:44:82:92:87:5a:1b:a8:c7:79:a3:a8:de:2a:a7:df:68:
bb:43:9e:23:92:aa:77:bd:15:06:8c:c3:c3:f1:fa:4a:79:ed:
9c:90:c8:fb:f0:4a:9a:e0:68:12:8d:0d:c6:28:d8:9b:1f:12:
8b:d7:6d:ab:08:a5:37:1f:8f:54:28:fc:a5:27:e6:72:28:08:
32:5d:61:c3:e7:e9:4d:03:17:98:15:a8:6d:00:27:d6:90:fb:
2a:80:5e:a4:a6:50:56:ca:62:5c:21:79:17:46:58:36:91:b8:
0b:56:86:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 21:39:20 2025 by rpki-client