Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
File: 3-ytVuquEjX6eI5OrTkiwpbig6U.mft (raw, json)
Hash identifier: 5wCR7pHYuOoMzMTxEqZs6TbclwzKd5RTAF6dnZ2BV74=
Subject key identifier: AE:A7:17:44:BC:85:8B:4B:A3:16:95:39:4D:5A:92:AF:EE:9A:5B:D3
Authority key identifier: DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
Certificate issuer: /CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Certificate serial: 0196BE5C39004E7E3F924DD716ED736E302F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
Manifest number: 6D
Signing time: Sun 11 May 2025 08:00:37 +0000
Manifest this update: Sun 11 May 2025 08:00:37 +0000
Manifest next update: Mon 12 May 2025 08:00:37 +0000
Files and hashes: 1: 3-ytVuquEjX6eI5OrTkiwpbig6U.crl (hash: zTmWLQbi8x2iDZGSmsY3i8LRPvH8sp9GHLBp6eiXpRU=)
2: ghemx7_KeR2Mo7Zd7b3Yw7Rm5m0.roa (hash: dfuZiKRSGnfBsJSrGQVK/jOI9vvcNJZDWJg5sUNCJuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:5c:39:00:4e:7e:3f:92:4d:d7:16:ed:73:6e:30:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfecad56eaae1235fa788e4ead3922c296e283a5
Validity
Not Before: May 11 08:00:37 2025 GMT
Not After : May 12 08:00:37 2025 GMT
Subject: CN=aea71744bc858b4ba31695394d5a92afee9a5bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:a2:ff:25:b1:57:44:b1:55:4b:61:bd:17:
e9:2a:a5:e7:65:8a:1b:51:ca:88:92:2a:2e:c2:34:
30:22:7f:c2:17:ac:22:73:d6:6a:48:68:55:d6:88:
e7:e2:0d:49:0a:c9:86:d0:e9:d2:9f:28:1b:7c:22:
b0:eb:11:36:ff:87:ca:84:fd:66:ae:bf:57:fe:51:
7c:ef:de:81:d1:f2:ab:e3:c6:17:48:97:e8:e1:c1:
fd:ea:37:54:7a:d1:7e:ee:52:87:77:6a:1c:a1:a7:
10:ed:a5:b3:0e:ad:c8:b3:13:4f:95:d4:72:3e:b2:
2b:2a:ee:9a:7c:e6:2d:8a:95:4d:70:73:d6:55:2b:
15:23:68:32:48:5a:14:15:de:83:bf:18:65:93:46:
a5:04:0f:65:0e:22:a9:2b:12:bb:1e:ea:89:19:0d:
1f:27:85:52:6c:e9:0f:08:81:de:5b:a9:35:f3:bd:
d4:fb:b5:fd:aa:0d:9a:84:11:23:d1:e5:33:b3:36:
e7:11:1f:75:12:3e:46:2d:ed:84:cd:d7:f8:5a:cd:
7e:32:6d:9b:63:e4:ac:c4:53:98:04:31:e4:70:81:
71:96:5a:37:6a:7a:55:5a:8a:b6:42:45:79:23:56:
51:f6:12:61:cd:70:62:a8:83:a1:3e:f1:73:32:d0:
ed:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A7:17:44:BC:85:8B:4B:A3:16:95:39:4D:5A:92:AF:EE:9A:5B:D3
X509v3 Authority Key Identifier:
keyid:DF:EC:AD:56:EA:AE:12:35:FA:78:8E:4E:AD:39:22:C2:96:E2:83:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-ytVuquEjX6eI5OrTkiwpbig6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/d67087-765b-46eb-808c-677bab613aff/1/3-ytVuquEjX6eI5OrTkiwpbig6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:b2:59:a9:cc:84:58:42:8d:29:73:42:3d:1d:00:de:b5:cd:
e1:69:af:e1:23:9b:ed:dc:58:00:96:32:e5:ba:29:90:9a:84:
ee:29:7b:07:13:68:a9:12:b9:41:b1:7e:6c:0d:34:0e:2c:b3:
79:aa:4a:92:9f:b9:92:3c:b1:93:6f:ab:c8:72:30:26:56:ed:
2b:da:ca:ce:1f:ae:56:29:cb:64:36:c7:33:ef:38:bd:78:42:
b9:a2:3f:c2:86:c1:9a:ba:89:5e:fe:67:fe:51:2f:cb:cc:e6:
de:99:5a:09:49:94:ee:19:d0:c0:7b:82:63:99:6d:ba:e2:79:
28:1e:c1:04:b5:90:29:46:9a:3f:be:d2:b5:b6:34:9b:e1:3e:
43:88:4f:a7:ca:03:bc:ca:2b:b2:20:c8:af:cf:8c:cf:77:13:
44:fd:70:70:8e:1d:ac:88:ee:48:9a:b5:f0:7d:1d:e6:fc:99:
9a:a2:c5:1d:9d:5b:69:f7:38:6e:46:88:4c:18:ca:6c:a6:f0:
20:9e:17:61:13:8e:1b:2c:ec:b0:71:8b:84:0a:71:51:16:d1:
6b:a9:3d:73:65:ca:fc:53:39:0d:cd:74:26:05:12:59:21:e9:
f3:bc:76:0f:53:ab:0a:57:1e:71:49:de:0b:0f:f4:80:72:f1:
79:96:46:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:56:58 2025 by rpki-client