Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: j4Soc0hPfAK+TQhn3jkD6ePV/wkB5o21ilsyPSdu24E=
Subject key identifier: 3B:3F:96:8D:87:3D:09:A0:19:06:47:3D:5F:FB:10:28:3F:89:EC:C8
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 0196BC6E09AB48B396D46AC176FFE2CE26CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 1544
Signing time: Sat 10 May 2025 23:00:50 +0000
Manifest this update: Sat 10 May 2025 23:00:50 +0000
Manifest next update: Sun 11 May 2025 23:00:50 +0000
Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: IdL8o1kBr00GHHdoq9SyxQ0He/zHFl9cPC7JtzgS2Xg=)
2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=)
3: 7NaNhfKzkHk-4U6P-rr5I2f5Dns.roa (hash: ho2GvZ21Aa+NkGp3FzrcTvxIRbuhiRhcV51nfQsaRvI=)
4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=)
5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:09:ab:48:b3:96:d4:6a:c1:76:ff:e2:ce:26:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: May 10 23:00:50 2025 GMT
Not After : May 11 23:00:50 2025 GMT
Subject: CN=3b3f968d873d09a01906473d5ffb10283f89ecc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:cc:5a:2c:18:2e:c1:8e:b5:65:b7:c2:f2:
0a:af:ca:2d:dc:ce:9b:cf:a0:6b:07:80:c6:b4:e3:
d9:8e:b6:31:c1:6c:fa:5a:df:b6:0d:33:76:d9:c2:
62:f7:ed:08:28:eb:e6:35:a8:76:9c:85:81:50:35:
66:44:f7:dd:90:78:25:0b:7f:80:15:87:fa:b6:39:
ed:d5:9f:62:a0:62:e1:2b:dc:2f:2c:82:b5:14:bf:
85:4e:c8:80:cb:e4:35:fe:68:80:fe:dc:6a:e2:95:
87:5a:28:9a:1c:2a:79:92:7b:da:a1:ed:fb:b6:98:
d2:85:73:d6:24:43:4e:2e:ba:d6:d7:2f:d6:6e:30:
6e:b7:11:a9:06:16:b2:4e:68:4d:5f:eb:cd:ee:eb:
cc:dd:46:0d:5b:72:89:c4:ae:54:06:56:ae:5f:0a:
07:07:05:10:3b:84:09:e2:5b:31:3c:b5:49:0b:a2:
d3:bd:3d:aa:35:18:1d:fa:af:a9:4d:0d:5f:6a:6e:
16:ae:fc:d7:3a:97:76:3b:57:92:49:d1:a4:31:85:
ba:65:8d:c9:ff:ae:b7:0c:34:e8:d0:17:71:89:1a:
44:b0:37:b5:23:1f:70:31:1b:86:a6:2d:1d:f3:37:
be:c1:a6:0b:e3:e2:76:d4:34:5c:a7:fe:fd:86:66:
bc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3F:96:8D:87:3D:09:A0:19:06:47:3D:5F:FB:10:28:3F:89:EC:C8
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:14:21:ee:b6:84:10:8a:f5:2e:61:56:e8:64:0e:78:b4:69:
29:3c:37:0a:47:c1:31:6c:f5:b9:ad:13:e0:0e:c2:be:2e:8b:
3a:98:57:41:23:1c:f2:be:c0:89:b8:71:3e:bc:45:6b:bf:6e:
47:3b:5b:1e:5a:02:ed:16:4e:e3:17:d0:62:54:51:be:f3:7b:
3f:87:f1:d1:fe:70:bf:21:34:cc:bb:83:58:fb:72:29:32:53:
e8:93:d5:e6:12:e7:5c:62:40:33:f6:25:9b:0c:c6:1d:e1:d0:
b4:05:e5:55:f3:e8:14:47:29:45:27:f0:2a:8c:64:6f:d5:59:
bf:c6:22:13:0c:8a:05:e1:9b:37:8a:47:e1:ef:05:e0:c0:78:
6f:e1:51:ae:ac:81:09:80:47:c6:91:4b:56:73:a2:23:5a:dd:
e0:18:3b:21:31:2c:d2:35:c1:fd:f6:79:72:02:6b:88:b1:b0:
16:c5:78:a2:3c:5c:b2:34:d3:46:5d:86:3c:ee:d1:09:ab:99:
94:3a:45:81:db:58:24:e2:d2:f7:47:85:fc:99:25:57:1a:d8:
3b:d5:b6:00:44:10:d2:7b:bd:c6:28:92:1d:d9:69:f3:7d:0b:
d2:40:ef:ad:6d:09:7f:8f:59:b8:d7:3b:e2:e8:76:51:be:a0:
86:c3:11:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:08:59 2025 by rpki-client