
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File: 3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier: TkEuBPzrfxKfdxwkkWeVXk6CAHMhJcjzqHmwydBdjV4=
Subject key identifier: B4:2E:EC:95:96:75:1A:1E:F4:56:70:0F:53:4C:2B:A9:B5:63:3F:32
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer: /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial: 019760CB6B1815E9942D4CA75D1ECFB82BF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number: 081C
Signing time: Wed 11 Jun 2025 21:00:33 +0000
Manifest this update: Wed 11 Jun 2025 21:00:33 +0000
Manifest next update: Thu 12 Jun 2025 21:00:33 +0000
Files and hashes: 1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: gdGoPn00qOIgaG5CnyLq7tQrjK4rmBklDnybd23wf6Q=)
2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:cb:6b:18:15:e9:94:2d:4c:a7:5d:1e:cf:b8:2b:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
Validity
Not Before: Jun 11 21:00:33 2025 GMT
Not After : Jun 12 21:00:33 2025 GMT
Subject: CN=b42eec9596751a1ef456700f534c2ba9b5633f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bc:40:a4:78:ec:43:4f:cd:ed:e8:d1:66:61:
a2:89:e8:51:2c:11:f8:6f:d6:b6:ca:89:97:31:7d:
74:ff:4d:a6:cf:95:13:b7:04:e0:b6:ad:99:56:5c:
78:cb:6e:9f:93:91:33:ec:6f:dd:b1:09:89:2a:28:
1a:78:56:78:80:a6:a5:49:05:3f:c5:8a:5d:1a:08:
8b:b8:ae:73:5b:34:8b:e1:79:b3:91:8e:59:e5:67:
e8:7f:c0:f1:df:84:87:3c:1f:d3:2d:26:37:c3:95:
6f:6b:00:01:32:4f:4c:80:b4:5e:1c:41:15:de:fb:
3f:2d:30:aa:bf:53:a5:eb:c4:d1:10:f2:92:9d:4a:
4c:fb:b1:6b:6d:26:c2:c9:d1:7a:2f:12:09:a5:60:
83:5e:1e:ea:12:d9:a9:af:11:cf:05:d9:42:ea:ed:
b8:46:1c:bc:14:a3:26:34:96:a8:bd:ce:93:c3:84:
48:53:08:de:73:a5:31:5c:80:1b:ff:17:1b:3f:05:
fd:19:3b:66:64:5f:95:91:e4:48:8a:be:b9:13:03:
90:52:74:ca:a2:ff:71:a7:38:9b:9e:4d:5a:02:56:
ae:f5:ed:d3:cd:31:2d:d0:08:9f:cf:de:c0:b2:02:
f0:29:8a:be:10:0b:9b:1f:38:43:e9:0a:8f:ec:09:
e2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2E:EC:95:96:75:1A:1E:F4:56:70:0F:53:4C:2B:A9:B5:63:3F:32
X509v3 Authority Key Identifier:
keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:7d:35:e4:d7:be:28:7b:b3:ec:d3:00:c1:53:cd:91:39:48:
d4:c9:42:ed:b8:c3:1b:8d:a1:a0:44:a6:13:23:d9:b1:82:88:
c6:12:0a:6a:b4:0f:f4:14:ad:c6:88:7e:0b:44:f3:3b:02:2d:
b4:65:19:19:53:02:84:fb:43:b4:1a:d9:74:b7:f1:89:0a:ae:
c2:12:c8:7d:be:56:d5:71:b0:49:39:9d:72:42:6e:30:9e:7a:
c9:e9:11:f5:6f:45:2a:f7:64:bc:03:f8:45:a2:22:35:1c:71:
ce:b3:55:c0:e3:2f:fc:95:a4:35:1f:49:e7:f3:5a:c8:1a:c8:
1f:54:30:75:e3:d0:76:97:e0:35:42:fc:99:5c:62:bd:e2:c7:
eb:c6:6f:a5:c0:fb:e7:04:f9:71:44:34:13:b4:e3:bc:40:d3:
84:ec:62:97:0f:ae:2a:c5:70:f2:4e:f6:2f:00:6b:83:b9:06:
45:1a:0e:95:f2:bf:7b:80:5e:e3:6f:8b:fc:a6:49:0b:a2:e1:
fd:5c:bf:5b:20:73:19:bf:77:79:02:a8:47:1f:31:40:35:2f:
29:cb:c2:4c:e4:52:52:22:1f:64:21:a3:38:07:99:79:fc:e4:
d6:64:8c:12:b3:fb:e4:9b:eb:da:ec:fc:81:e0:3c:e4:b9:83:
f1:5a:66:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 04:07:18 2025 by rpki-client