Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: ++H95wv8Kj9qVMPj3f6pBGwceSrzcMGT3HRo9rsybSw=
Subject key identifier: 19:F7:0C:33:DA:29:5B:D2:69:52:3B:85:4A:88:D9:0A:2F:B1:48:BF
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 01964AB3E717335B27ED10FA46A65534B0AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 078C
Signing time: Fri 18 Apr 2025 21:00:26 +0000
Manifest this update: Fri 18 Apr 2025 21:00:26 +0000
Manifest next update: Sat 19 Apr 2025 21:00:26 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: lR7BVB77xQfB1851uaQbXTZmsAA36p+++44AsTA5MfI=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 21:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:b3:e7:17:33:5b:27:ed:10:fa:46:a6:55:34:b0:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Apr 18 21:00:26 2025 GMT
Not After : Apr 19 21:00:26 2025 GMT
Subject: CN=19f70c33da295bd269523b854a88d90a2fb148bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c1:a0:da:ba:20:94:4b:ee:86:dd:87:74:0a:
59:21:0e:a3:16:47:36:ee:fc:34:ec:db:9a:84:d7:
94:78:29:e6:e4:a3:5b:bd:0e:8a:12:c5:dc:88:e7:
a8:34:0e:63:50:35:6b:26:4c:ec:06:e9:93:72:05:
56:30:2b:ef:f9:13:ac:cc:c1:82:1c:7d:0f:8c:4d:
70:62:38:bd:2c:6f:30:7c:01:6a:26:5c:91:ec:f5:
00:92:f6:5c:2d:cc:66:8f:11:16:c6:02:16:dc:3f:
20:97:d5:99:49:60:5d:6f:7d:3e:6c:47:70:9c:25:
f3:47:78:ab:27:ce:db:4f:93:c5:ac:65:69:1a:f9:
f1:66:81:52:4d:77:5d:8b:fe:9f:2b:51:a1:83:fe:
9b:28:6e:28:a4:e3:23:ef:aa:4c:b5:8e:ec:a4:a2:
31:59:99:34:bb:e4:75:e3:09:a9:58:70:86:cb:df:
5d:a0:cf:37:66:c5:1d:f8:d4:a5:b9:72:37:98:d1:
a8:60:5a:98:47:69:3e:b6:7d:e5:16:41:40:e2:3a:
dd:da:50:f4:1c:5b:47:eb:ef:ef:67:f4:88:9a:1e:
61:fe:b8:88:4c:21:e1:a5:26:d1:82:b6:b7:5a:7a:
67:49:5f:73:f3:41:ec:ee:67:68:ca:80:8d:ac:34:
aa:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F7:0C:33:DA:29:5B:D2:69:52:3B:85:4A:88:D9:0A:2F:B1:48:BF
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:3c:06:31:a8:5a:bb:bf:b7:62:46:cc:e5:77:5b:b3:e1:4a:
f0:7b:a2:08:48:16:ed:e3:a7:92:93:4c:91:09:90:52:f3:14:
a1:b9:a1:ee:98:4e:8e:dd:54:ae:86:d5:ea:55:51:bc:e2:23:
ec:82:c9:ec:db:29:ce:b5:92:39:7b:ae:37:c1:52:5e:fc:fc:
9c:06:e9:7a:18:8a:da:dc:55:6d:1c:97:43:0a:36:7e:ab:3b:
85:86:3d:38:fd:6d:49:28:7b:e3:06:08:13:ea:0e:1c:20:2c:
8e:f4:96:89:f4:2c:8d:91:bd:ed:b1:c9:2c:f0:a4:a8:93:e1:
35:79:34:fc:8b:16:cb:cc:61:3a:5a:a3:c5:7d:be:d6:31:f0:
32:d2:a0:0b:01:ca:a9:ee:a9:e4:09:4e:0b:92:4c:1b:1a:8e:
e7:80:72:88:53:8c:91:97:11:9b:05:61:54:a5:f5:ed:5a:13:
b7:8d:d4:48:c8:2c:11:4f:bb:51:c3:89:60:6e:03:73:bc:2e:
15:ec:69:35:c2:50:15:26:17:b1:43:1a:2b:a2:4c:df:19:cd:
18:e0:e1:2d:77:cf:9a:04:41:c5:3b:5a:54:28:e3:9b:d8:01:
2b:0b:63:67:77:42:90:7d:4a:af:87:dd:98:67:d0:4e:e9:b0:
3e:d9:80:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:31:18 2025 by rpki-client