Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json)
Hash identifier: Vr19jHSC3Ul6XQVrag06nVJxWfr66xtSy+6xnMblas8=
Subject key identifier: A3:8F:88:94:D7:1B:24:CE:3E:36:92:10:DB:82:7B:42:33:6B:D8:07
Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Certificate serial: 0197B77CC5D76D1F4C930B9ACC71D91C566F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
Manifest number: 15C6
Signing time: Sat 28 Jun 2025 17:01:37 +0000
Manifest this update: Sat 28 Jun 2025 17:01:37 +0000
Manifest next update: Sun 29 Jun 2025 17:01:37 +0000
Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: fd9ccScId2LWDzAlaZlJKYcvoKUaNX7gLhJvWUnSYXE=)
2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=)
3: 7NaNhfKzkHk-4U6P-rr5I2f5Dns.roa (hash: ho2GvZ21Aa+NkGp3FzrcTvxIRbuhiRhcV51nfQsaRvI=)
4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=)
5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c5:d7:6d:1f:4c:93:0b:9a:cc:71:d9:1c:56:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10
Validity
Not Before: Jun 28 17:01:37 2025 GMT
Not After : Jun 29 17:01:37 2025 GMT
Subject: CN=a38f8894d71b24ce3e369210db827b42336bd807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:57:5b:8c:cf:3f:2a:97:53:ef:dd:c1:3c:f7:
00:4c:11:6a:bb:4b:dc:53:9f:74:18:b8:8c:67:3d:
b5:eb:e9:50:d1:9a:15:76:c5:6a:e9:69:49:22:b8:
c6:2e:25:d9:90:bf:8a:b5:30:e5:99:3e:97:f1:a5:
6c:79:13:42:20:86:6e:3f:82:29:1e:39:50:f5:50:
cb:10:80:1c:d1:a7:2d:41:10:41:79:2a:be:ea:d2:
eb:7e:17:07:17:cd:cb:56:c8:53:9e:6e:93:22:09:
62:cb:bf:74:43:4c:8c:d9:cd:46:e4:99:78:6e:16:
f3:ee:19:64:89:26:24:76:fd:64:e4:02:52:e5:ee:
f6:f3:3e:2e:2f:b8:e3:7c:2f:22:f7:3f:15:d8:81:
ba:8d:2d:29:50:e4:26:ec:92:4c:23:22:de:de:fe:
ae:fb:42:cb:4d:33:39:b5:f6:05:3d:45:29:af:da:
dd:cf:06:74:4a:ac:9b:15:9a:b8:56:d1:8e:b8:32:
c0:ae:f6:93:8a:36:ec:cc:29:ce:39:88:cf:38:9b:
77:e8:76:b2:57:2e:19:f5:3e:47:1d:12:57:cd:8f:
a0:48:83:84:52:77:04:6a:38:dd:15:4b:f9:46:a8:
1b:41:a4:51:74:c0:f5:3b:df:c2:f2:08:90:60:bf:
50:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8F:88:94:D7:1B:24:CE:3E:36:92:10:DB:82:7B:42:33:6B:D8:07
X509v3 Authority Key Identifier:
keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:16:51:a6:42:42:ad:76:56:60:92:b7:fc:e5:25:83:96:2c:
82:8c:27:05:58:bc:22:6e:e3:ea:09:d8:8e:dd:ce:8b:9f:24:
ce:1e:8c:ac:c1:82:69:e4:30:83:34:84:45:95:c7:ff:3b:d4:
63:f0:2b:ff:6b:cf:da:a0:81:9a:98:62:02:fd:72:68:f4:63:
ea:50:39:87:8c:f1:fb:85:67:38:aa:2c:78:9e:e9:87:4c:e3:
54:70:a2:69:0c:69:7a:63:55:a9:e0:d6:0b:fe:26:a5:72:40:
6b:df:30:33:6c:e4:ef:79:ca:eb:8e:01:5b:57:46:03:10:87:
c6:d4:f1:e7:cd:7a:88:a4:b0:3b:6a:cf:da:0d:13:c9:3b:10:
a1:e8:40:4a:00:f5:b5:01:21:f4:1e:93:a4:85:6a:17:a5:e6:
57:c2:fd:f5:10:64:de:e3:7d:da:3a:66:98:d5:70:dd:05:eb:
66:a2:5a:28:d9:39:10:b5:92:8d:21:0a:d2:44:e9:b3:fa:f2:
e0:67:5d:f6:7c:a2:5f:3d:3d:b0:30:c7:9a:54:62:14:b3:c8:
c7:24:4b:03:b7:51:fd:18:9c:5c:7d:46:e6:7e:66:96:cf:e1:
4a:97:e3:45:96:b8:b7:8a:9f:9f:da:48:f7:75:c5:f1:5b:40:
d7:31:f7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:17 2025 by rpki-client