Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: WRLwW2nS8+fPKu6/xUCEC5ot8YxkdXp6FHJ5rmdy6ec=
Subject key identifier: A7:F0:18:96:67:FD:3B:AE:EE:C6:AE:F1:86:58:AD:91:6F:0E:04:62
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 01976A73AC00717D51C1F3492AAA901F304F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0821
Signing time: Fri 13 Jun 2025 18:00:54 +0000
Manifest this update: Fri 13 Jun 2025 18:00:54 +0000
Manifest next update: Sat 14 Jun 2025 18:00:54 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: bcYW0xIHkRzM7Jf/YiJx4Mc6Agy2zExKcSQlKcjrF9w=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:73:ac:00:71:7d:51:c1:f3:49:2a:aa:90:1f:30:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Jun 13 18:00:54 2025 GMT
Not After : Jun 14 18:00:54 2025 GMT
Subject: CN=a7f0189667fd3baeeec6aef18658ad916f0e0462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:01:22:23:96:bb:67:71:39:d9:b7:ae:f4:
34:d7:41:2a:70:a2:d8:f5:94:97:7d:0a:0c:63:3f:
7d:05:01:59:e3:05:59:a6:80:86:a8:0d:ee:68:23:
8d:cb:37:2e:15:d6:9a:3d:64:83:8a:b1:cb:3a:c3:
bf:54:e1:82:3d:6e:c8:eb:99:94:c5:e3:38:0d:48:
be:14:20:e3:1f:a4:9f:8d:c3:a9:2d:ed:39:99:38:
5d:c1:49:5f:17:29:2b:ea:5f:b9:84:d5:6e:98:c6:
e6:b5:8c:d9:bf:09:b2:48:de:af:7b:3b:e9:54:9c:
12:66:12:35:39:e3:18:55:4f:ca:e3:d5:5f:9c:b3:
b8:4d:51:2f:68:db:95:ef:7b:2c:34:be:f3:0a:2b:
a3:0d:04:0c:bd:2d:fb:50:67:58:07:d9:b7:33:d1:
d9:81:28:14:9a:a5:d5:25:26:04:1e:0c:23:f2:26:
f0:05:0d:55:f4:a7:dc:67:a5:ee:73:ce:1e:79:76:
ad:0a:1d:0f:d5:b6:44:29:79:55:06:82:43:d3:62:
20:67:2a:c9:bf:2b:ef:1f:03:cd:6f:bc:25:56:6e:
93:b7:80:fd:b6:75:91:bb:5a:4e:42:04:2e:75:16:
17:30:f6:0b:e3:e9:bc:6f:6b:14:36:57:46:5c:ae:
83:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F0:18:96:67:FD:3B:AE:EE:C6:AE:F1:86:58:AD:91:6F:0E:04:62
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:af:f9:00:a1:44:d2:7d:75:c6:3a:2a:02:61:36:1d:eb:35:
78:dd:99:73:35:25:26:29:9a:4b:28:2e:95:14:ef:0d:d0:78:
60:3c:e1:a7:f4:39:b4:48:f8:31:07:dc:bd:cb:e1:88:d4:b7:
dc:31:74:4c:40:b6:b2:09:82:e4:a4:ce:a9:08:4c:f1:5b:31:
34:49:e2:10:97:34:fa:ce:30:3c:75:75:2c:12:53:13:cf:42:
9d:c5:0c:3b:49:91:21:d8:b1:8e:de:a5:16:4c:66:75:0e:61:
79:e6:a1:5c:b5:be:41:13:95:89:c8:2a:32:ad:31:27:f9:81:
10:ac:c7:8c:51:dd:d5:89:20:2d:1b:3c:03:dc:87:be:91:64:
ee:76:44:ef:33:81:bd:e4:be:ee:d0:35:c7:3c:7e:4a:57:b3:
89:4f:8d:bb:1e:e7:58:32:99:9b:aa:d5:21:54:4d:55:cd:ab:
e6:4d:b5:06:24:8b:34:46:43:1c:76:7c:09:cc:a0:01:8d:cf:
f7:41:f6:bc:f0:ce:45:c7:ae:1b:ae:21:31:31:52:74:02:05:
87:51:b4:f6:82:b4:07:66:8e:58:8d:4a:5a:a7:82:1b:9a:69:
4e:ad:9e:33:bc:c4:7d:af:23:38:ba:0e:62:54:19:98:da:db:
69:15:6d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 23:31:35 2025 by rpki-client