Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
File: 3-ytVuquEjX6eI5OrTkiwpbig6U.mft (raw, json)
Hash identifier: 8dyspUC3F1f2V6YHfMvyLgWxiK+c5zqZ4BwSDYxb7XA=
Subject key identifier: 34:DF:D5:46:1A:B2:0E:6F:EE:B7:9E:BF:FA:16:88:F8:12:51:94:04
Authority key identifier: DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
Certificate issuer: /CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Certificate serial: 0197B77CDDA317BBB7B93F2D96E22FB705EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
Manifest number: EE
Signing time: Sat 28 Jun 2025 17:01:43 +0000
Manifest this update: Sat 28 Jun 2025 17:01:43 +0000
Manifest next update: Sun 29 Jun 2025 17:01:43 +0000
Files and hashes: 1: 3-ytVuquEjX6eI5OrTkiwpbig6U.crl (hash: nPJDcvvHVQb0TVISr80Azq9aCqCUFUibS1plVh7tQvQ=)
2: ghemx7_KeR2Mo7Zd7b3Yw7Rm5m0.roa (hash: dfuZiKRSGnfBsJSrGQVK/jOI9vvcNJZDWJg5sUNCJuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:dd:a3:17:bb:b7:b9:3f:2d:96:e2:2f:b7:05:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Validity
Not Before: Jun 28 17:01:43 2025 GMT
Not After : Jun 29 17:01:43 2025 GMT
Subject: CN=34dfd5461ab20e6feeb79ebffa1688f812519404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:47:db:27:da:5c:4e:d9:cd:d4:14:f6:ca:
37:8a:8e:52:23:cd:72:ec:8d:c0:ba:88:08:a1:c7:
04:c4:87:92:1b:32:af:d1:80:8b:e7:2b:da:52:ed:
e5:3d:db:2b:82:e1:8b:0d:10:4f:33:ee:e3:e5:7d:
1f:88:a4:8a:16:31:5c:d9:c8:03:57:d6:3f:bf:1a:
96:82:e9:d1:c5:7e:4e:9d:ad:8f:33:43:97:66:62:
ec:21:31:12:20:61:28:33:92:e5:0f:69:4a:e4:99:
39:8c:2c:36:e0:44:eb:f2:3e:28:f6:b8:7f:71:e8:
24:14:45:2c:98:d1:98:60:3a:1a:b9:91:b5:6c:f4:
01:77:bc:45:c3:7a:cb:cd:2d:cb:c4:57:17:e0:9f:
2c:ef:89:91:33:52:c4:5c:19:95:87:27:5e:1d:fe:
92:d7:7c:9e:8f:4a:5f:a0:9a:20:ce:e2:76:b4:c6:
6d:b2:05:b4:84:95:65:3c:0d:8d:5d:1e:b7:4e:6b:
4b:34:81:47:7e:80:05:6d:7b:82:36:3e:90:3e:b4:
d3:ed:d8:4d:d1:18:5a:72:e3:0d:1c:91:3b:02:dc:
25:7a:64:55:1f:c8:26:b5:33:7b:76:fa:35:1f:33:
1a:c7:08:34:b0:79:2a:b2:f6:d9:ca:bb:5b:97:95:
42:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DF:D5:46:1A:B2:0E:6F:EE:B7:9E:BF:FA:16:88:F8:12:51:94:04
X509v3 Authority Key Identifier:
keyid:DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:89:22:fc:d7:68:86:6a:da:d4:a5:db:c0:22:3b:35:76:90:
0f:f1:f2:ed:1e:62:8f:73:8f:37:e4:1c:d6:dc:1b:dc:07:6e:
16:31:05:b7:ad:d5:32:70:f6:5c:eb:b0:73:7d:c3:43:cb:93:
4b:7d:94:5b:5a:d6:50:23:9e:45:67:7e:1b:d4:3d:a5:92:02:
84:cc:a9:b4:78:57:d5:ab:99:01:d0:dd:b9:82:90:fc:48:b8:
cb:33:de:b4:73:0a:6b:7b:74:44:ba:22:2f:eb:04:c1:2d:c9:
74:41:8b:36:3a:ad:b4:73:6d:ac:dc:4e:47:ae:10:c4:6f:e1:
5f:c5:0f:17:a1:4b:e8:eb:38:8b:d0:da:53:43:87:bc:e8:d5:
46:f8:92:b7:20:fe:59:eb:86:f8:77:f9:80:ec:3c:58:e5:02:
4c:00:7d:b0:3a:d1:47:e9:8e:ef:5c:25:49:38:db:28:f4:99:
9c:9b:f0:db:48:3b:f9:43:c1:2c:16:33:db:0b:11:95:73:2c:
3b:16:c4:95:00:d8:7d:76:bf:6b:0c:48:4f:7f:75:fc:f0:b8:
da:0f:1c:e3:9f:b5:c7:be:9c:5a:dd:b7:8d:f8:72:57:eb:60:
b8:ab:fe:3a:6f:cd:1c:1d:3c:ed:48:9c:4e:56:d4:1c:bc:8c:
07:a8:88:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:21:16 2025 by rpki-client