
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: GpcS84tJlbvMRxQfHkDQmGNrskeY6hInCH5lXHL4hlU=
Subject key identifier: BD:E7:4B:B5:F7:70:0F:5E:4E:F8:BB:BA:52:8F:3A:C4:8C:50:CE:CD
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 019768854E43C30FE5DE1FB53C795D84FFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 0820
Signing time: Fri 13 Jun 2025 09:00:55 +0000
Manifest this update: Fri 13 Jun 2025 09:00:55 +0000
Manifest next update: Sat 14 Jun 2025 09:00:55 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: Cv2IpYByU6NQt4Cdmdyldb9y/IiiMurYeF1A9plJKU4=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:4e:43:c3:0f:e5:de:1f:b5:3c:79:5d:84:ff:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Jun 13 09:00:55 2025 GMT
Not After : Jun 14 09:00:55 2025 GMT
Subject: CN=bde74bb5f7700f5e4ef8bbba528f3ac48c50cecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a3:a6:83:d6:88:06:b2:4e:7a:44:ed:2e:d5:
c5:6e:bc:a4:7b:24:db:08:db:b8:dd:9c:db:61:33:
81:7e:39:6b:44:a0:4b:88:39:13:f6:72:e9:50:df:
18:eb:f2:b8:a5:aa:68:e9:b9:31:f3:38:1c:91:58:
4e:a9:9d:7f:e5:f9:82:30:b7:32:a5:6a:fc:83:c2:
de:54:f8:66:bd:aa:60:e9:a5:66:52:f7:7f:1c:d6:
2f:15:f0:3d:a8:1f:e4:ff:4d:84:62:bc:08:48:30:
83:41:66:23:20:3e:34:ed:fb:c4:a8:8e:b3:ca:d3:
f1:92:e6:7a:df:32:86:ac:97:99:4e:1e:4b:3f:2d:
33:68:91:d4:28:a5:72:30:ca:f0:17:99:33:ab:96:
0b:46:73:b6:83:59:f2:75:f7:5c:2c:f0:32:ac:e7:
cb:1e:bd:c6:f0:91:49:29:44:36:8c:13:43:89:11:
26:b6:80:3f:ea:83:aa:99:4f:1a:87:58:18:60:d1:
48:9a:86:69:69:80:8e:92:78:2d:31:79:96:a7:cf:
2e:d1:6a:4f:0e:b0:8b:c4:2e:20:d5:04:50:ba:a8:
db:89:89:1d:19:56:ce:3b:a4:f7:ff:9e:7d:31:f8:
b8:5e:b4:42:4a:f9:fe:f3:c4:47:e5:d4:c3:87:27:
68:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E7:4B:B5:F7:70:0F:5E:4E:F8:BB:BA:52:8F:3A:C4:8C:50:CE:CD
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:4c:7c:2a:da:7f:fe:29:1a:0c:e5:7b:87:91:70:95:f9:50:
61:dc:82:ff:69:40:ac:af:09:34:62:bc:de:41:59:67:b0:a7:
a2:b4:4f:ca:a8:e1:63:99:3c:07:e8:c8:4b:30:94:d5:98:25:
ed:3b:be:95:10:7a:71:de:a2:dc:b6:b3:9f:a7:05:6d:5a:48:
f0:7a:6c:83:63:3f:28:d2:c9:fe:6f:84:7c:7b:32:7a:11:59:
27:40:94:e3:66:a7:f2:fa:56:68:fe:30:8d:fa:e6:e8:e1:02:
d6:ca:ae:d6:e1:30:5e:23:cf:b0:68:89:2d:d7:d6:5a:77:b3:
61:63:54:d1:3d:b7:bc:b6:25:4b:1c:46:5b:a0:8e:0e:e1:d9:
c7:70:d3:67:68:92:c5:6a:9b:09:6d:d3:ad:e4:c7:b8:ac:e5:
24:f1:1d:34:f4:03:f8:59:8c:e9:9e:34:8a:7d:b8:0d:0e:3b:
76:5f:f3:5f:1d:82:ee:aa:90:8b:91:a4:b5:ab:2c:17:65:fc:
79:fb:d8:ed:9a:e6:1e:64:8f:11:27:22:0e:31:54:18:49:7a:
7b:02:76:c9:57:bb:7f:02:12:39:3f:19:99:17:50:45:b3:a0:
bb:58:76:64:9c:0f:2a:90:35:5b:06:e1:39:0d:99:aa:9b:f9:
cb:89:c3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 11:02:05 2025 by rpki-client