Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: AnhR3vuKZZATwa5PwieHJt14Nnj32RLPNydvXof/kSM=
Subject key identifier: 90:9F:27:1E:9D:07:84:8D:23:64:4E:E1:7C:03:65:CD:5F:15:B9:35
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 01974A4365B3C29E8E080184D20191442166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 0510
Signing time: Sat 07 Jun 2025 12:00:20 +0000
Manifest this update: Sat 07 Jun 2025 12:00:20 +0000
Manifest next update: Sun 08 Jun 2025 12:00:20 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: fPGfhkJKA2lOsoRaMrn4FiGqO4nJ9zFLkU30dO00omE=)
2: Vnw9H8iqt-gts3LY3CEVf7p6PaE.roa (hash: s2vDBc3kUppwqWxQSMIljxY/yV7+Xm77EH+5A9yGbgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:65:b3:c2:9e:8e:08:01:84:d2:01:91:44:21:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Jun 7 12:00:20 2025 GMT
Not After : Jun 8 12:00:20 2025 GMT
Subject: CN=909f271e9d07848d23644ee17c0365cd5f15b935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1a:49:5a:7f:11:8c:69:80:56:6f:1e:c5:a6:
b0:34:d6:3a:ab:80:85:8e:00:72:e8:f8:da:c1:39:
5b:65:ac:1b:fd:f8:f8:de:c2:1b:2a:f2:3f:18:0c:
01:c8:c1:f6:0b:75:36:12:38:20:8a:64:52:2f:22:
55:c1:6c:d4:e9:e3:c5:34:a9:0b:8b:e9:80:1f:16:
02:45:85:b5:cd:3c:3e:40:0e:2f:ed:55:91:41:c4:
c3:0c:d7:34:d8:c1:26:29:b7:01:ce:7a:77:1b:ac:
10:c2:9c:89:8a:49:72:20:43:c6:7f:8e:99:71:31:
21:7b:83:1c:01:fc:9c:b4:71:60:ec:33:3d:b6:5f:
e9:71:ce:a1:4c:3c:1b:4e:3a:4b:32:df:ef:88:59:
53:4c:9f:67:2b:25:1f:4e:06:be:bf:4f:f4:75:f2:
52:29:3a:ae:d6:3d:5c:ac:4a:fa:55:da:25:a1:33:
5f:c8:97:c1:ce:87:fc:cb:ee:6e:ae:6a:76:5a:e4:
7f:12:63:a9:04:d3:02:28:d3:53:98:8f:83:fa:6b:
40:30:12:b6:6e:41:de:a5:0a:63:6b:69:c9:fa:1f:
a9:3f:32:be:1a:02:db:a7:45:c3:3b:90:28:19:34:
45:21:b0:eb:8f:9c:fd:7e:bd:9b:9a:b0:ca:42:4d:
d2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9F:27:1E:9D:07:84:8D:23:64:4E:E1:7C:03:65:CD:5F:15:B9:35
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:67:3e:4a:72:1d:74:e6:f1:73:25:de:00:57:c9:7e:29:55:
fc:a7:8e:02:01:9a:91:aa:af:49:de:f9:ae:24:50:70:d3:ef:
df:67:11:b1:93:0f:aa:31:0e:37:7e:2a:e0:33:18:95:0f:f1:
2a:36:d2:09:91:95:c0:ed:17:17:e7:e3:07:b3:52:6f:58:47:
42:05:4b:2f:e7:b5:d8:25:6d:71:b6:80:a8:74:68:35:fa:8d:
69:40:c6:04:86:0e:d2:00:32:ef:40:19:55:58:13:17:2e:41:
5e:19:43:ee:d6:91:36:4e:7c:55:ae:5b:a2:2b:6c:fc:d7:6e:
33:26:cf:bd:7b:38:be:dc:07:a3:2d:96:aa:72:0e:de:15:c4:
54:8d:3c:1b:91:53:09:a6:cb:9f:b6:00:28:22:7e:49:3f:da:
a5:f9:0f:39:69:d6:be:3e:8c:c4:7a:d4:f7:21:a2:4d:22:21:
6d:07:63:22:f5:be:cc:3f:e2:70:e6:cf:ee:3e:6f:d8:53:83:
ea:c6:de:34:12:54:9c:45:96:4d:15:92:81:e1:0d:06:54:45:
99:f4:96:4d:fd:02:a3:b0:94:8c:4d:96:b7:1f:2f:c0:57:fd:
20:51:84:30:ae:b2:ca:c1:02:f9:ff:16:2e:d6:eb:ad:aa:5a:
e6:ab:1b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:14:30 2025 by rpki-client