
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: X16meJv3fzGQSZlDaE0KUlWUMf9FUxafg3WywBnaNas=
Subject key identifier: E7:CB:27:FB:CB:38:56:3B:48:3E:4D:28:11:04:F1:2B:FC:3F:78:DB
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 019764A871F3B76406ADC2822F7F81B3B921
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 081E
Signing time: Thu 12 Jun 2025 15:00:50 +0000
Manifest this update: Thu 12 Jun 2025 15:00:50 +0000
Manifest next update: Fri 13 Jun 2025 15:00:50 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: tyyd+irV5HPEqooXYxuD0uG/QvI09pU9VnSmY/8+fOM=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:a8:71:f3:b7:64:06:ad:c2:82:2f:7f:81:b3:b9:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Jun 12 15:00:50 2025 GMT
Not After : Jun 13 15:00:50 2025 GMT
Subject: CN=e7cb27fbcb38563b483e4d281104f12bfc3f78db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:34:4e:dc:59:11:34:38:08:d0:0a:d2:3f:dc:
55:b7:b7:d1:a7:59:6c:9d:0d:ec:d0:bb:ee:bc:fd:
e3:0e:ad:38:25:ef:db:ce:1b:d9:28:71:f5:49:b8:
b0:4f:be:40:12:8e:e5:bf:0f:3c:b0:aa:44:f3:49:
19:a9:30:dd:3e:76:ae:41:f9:d3:14:d7:6d:e3:40:
39:f5:89:6a:17:0f:dd:26:5f:f8:18:f2:df:49:06:
6d:45:4f:ad:a0:b7:2d:06:1a:a4:3f:d1:f6:22:6f:
45:02:57:2f:bb:6c:16:08:9b:e1:c4:a4:5a:ad:12:
0d:0d:a9:99:75:57:c3:62:b4:39:c4:f0:6f:fb:5c:
2a:26:be:00:41:f8:c4:a1:32:35:de:6d:ce:0a:37:
6a:89:61:52:23:4c:b0:79:ba:6b:4b:d3:f9:48:2e:
19:7c:5a:0c:99:9d:8d:00:ac:04:ba:c1:ca:aa:5b:
f2:59:46:20:b9:e8:c2:42:0d:3a:2d:d5:76:66:bf:
c9:e9:80:7e:4c:fd:13:81:fc:26:a9:0a:e5:8e:b8:
0e:08:9c:6a:92:8a:e1:2b:0b:c1:9b:b9:5e:e6:4e:
34:74:7d:70:e0:53:2b:9a:db:17:3f:d0:3e:57:25:
0d:57:c9:c3:ed:d4:bc:ed:e7:d5:57:86:e2:5a:f0:
84:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CB:27:FB:CB:38:56:3B:48:3E:4D:28:11:04:F1:2B:FC:3F:78:DB
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:df:ba:36:d5:44:3e:3f:16:ea:39:59:bd:dc:ad:71:d2:c1:
8e:9d:ee:ce:bf:20:f6:0d:de:0c:db:55:16:aa:cc:9d:6d:95:
1a:f4:b9:42:a4:e4:11:62:43:69:e4:9e:b1:45:03:5a:67:31:
20:77:10:54:e5:69:ab:d9:ac:1c:9a:b9:16:a9:21:4b:f0:00:
c9:87:8a:f2:57:8f:19:09:71:92:01:12:f5:eb:a5:3a:fc:e8:
3f:cc:3d:d4:dd:1e:14:e0:89:20:50:f1:f1:49:12:28:4a:68:
6d:7a:f2:50:ea:04:64:f3:0e:52:95:a9:fe:bd:da:b8:2d:6a:
ec:2d:65:92:96:e0:cf:ef:41:9c:78:9f:b7:df:74:17:4e:33:
4c:db:22:0e:38:ed:9c:ab:bb:37:c6:c5:c6:04:1c:f3:1b:67:
49:15:a8:bb:43:9c:4b:2e:45:79:65:fc:c1:7d:98:16:f7:7c:
07:30:64:7b:d1:9a:8c:27:36:fc:53:f6:4f:3d:dd:cc:6f:aa:
f0:86:e8:57:25:af:72:1e:79:bd:35:10:fa:a4:4e:9e:e2:b4:
8e:f5:36:15:41:0c:b0:8a:89:a3:aa:01:f9:32:fe:c2:f3:d5:
45:e8:b9:a7:27:54:a3:20:dd:d8:4c:d1:9c:44:e5:67:60:cc:
52:0c:c0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 19:19:32 2025 by rpki-client