Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
File: 3xRM6OjkQV5chqCygEmaOFwU7_I.mft (raw, json)
Hash identifier: QnVw45gOUfJZ0ELMH8Y3Ft5mJyS2G3JW8uAyTUrXDBU=
Subject key identifier: 9A:73:44:AB:37:AE:5D:AB:F9:76:88:73:0B:69:A6:75:74:CD:62:26
Authority key identifier: DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
Certificate issuer: /CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Certificate serial: 01974779F571FA4CCFF21408E9192C2F0803
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
Manifest number: 0BF2
Signing time: Fri 06 Jun 2025 23:01:04 +0000
Manifest this update: Fri 06 Jun 2025 23:01:04 +0000
Manifest next update: Sat 07 Jun 2025 23:01:04 +0000
Files and hashes: 1: 3xRM6OjkQV5chqCygEmaOFwU7_I.crl (hash: CGay+T0HkBsoat87AQ/p/gdZqpeIchzZqXiqT+G4gjc=)
2: 7d2ToMhT-5ZAU4qsYQXruw_MoIU.roa (hash: vm5X1sab9HJagyLFII3df7BekSqzu2gNn9apIe4J5uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:f5:71:fa:4c:cf:f2:14:08:e9:19:2c:2f:08:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Validity
Not Before: Jun 6 23:01:04 2025 GMT
Not After : Jun 7 23:01:04 2025 GMT
Subject: CN=9a7344ab37ae5dabf97688730b69a67574cd6226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7e:fe:41:a1:9f:31:13:06:a0:91:ba:fc:7c:
b3:e9:c0:dd:73:d5:a5:ed:78:4b:2a:b2:41:55:0d:
04:a2:ad:34:e1:dc:2c:e9:60:e5:aa:aa:7f:08:42:
39:86:7c:a3:13:b5:fe:4a:ba:ed:42:56:d2:6e:83:
1d:3b:15:29:4e:26:b2:d8:0b:7a:f1:31:23:70:dc:
36:4b:90:47:b5:eb:d4:4c:63:d0:5f:1e:04:58:7d:
4f:c9:81:d6:f5:fb:e9:0c:03:0e:bb:35:1b:f5:59:
e8:f3:5c:8d:75:ca:88:2e:74:0d:e8:56:44:fd:7b:
7e:a4:27:16:61:64:39:94:5b:52:45:59:1f:16:5b:
cc:4f:b1:14:b2:0d:5b:db:9e:b5:e6:77:22:4d:e8:
00:12:59:a9:ae:73:61:78:e1:4b:59:5f:23:61:a9:
c1:c3:7f:1f:8c:ae:29:fa:e5:a5:1f:c6:b8:d7:ba:
7b:2c:9b:64:20:aa:89:2a:1a:ae:95:77:cf:82:f1:
d0:78:a7:2c:ec:13:d3:87:e5:ab:75:2e:4a:56:f6:
8a:fa:7f:83:00:02:5d:1d:a1:40:ca:4e:ca:aa:ec:
a4:2d:0e:e2:d6:4e:d5:4f:3b:37:f0:1f:1e:ed:02:
09:37:5a:49:10:1f:ca:71:55:8f:32:72:8c:04:cd:
73:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:73:44:AB:37:AE:5D:AB:F9:76:88:73:0B:69:A6:75:74:CD:62:26
X509v3 Authority Key Identifier:
keyid:DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:5c:76:10:88:f3:e8:2d:62:31:7e:b6:02:66:da:95:c7:b0:
4a:e2:65:9e:01:05:ba:c7:13:18:4e:4e:7f:14:5b:1d:63:30:
b6:8f:1d:51:b8:59:a3:04:21:76:b0:5b:09:77:d9:51:48:89:
7c:53:97:1d:63:97:02:6c:ea:0f:be:47:05:ea:64:c5:2d:d2:
2e:f1:60:4a:f1:27:46:be:1a:a6:47:77:e1:21:09:c7:7a:07:
67:da:71:7a:75:9e:0b:61:e3:5a:ee:28:88:13:3d:ba:13:fc:
54:cc:2a:87:f6:0a:c4:f0:bd:e0:08:90:f4:c2:bc:6f:3f:0a:
bd:2f:bf:dd:49:07:83:ed:dd:37:01:0c:26:79:62:ad:f1:df:
23:fd:64:c1:fd:48:6f:43:bb:6c:44:b9:00:53:1e:82:37:6c:
f6:d4:c0:88:f4:1f:c0:47:fa:ce:11:7d:2e:63:90:29:be:c5:
d6:2d:03:bf:44:3d:bc:7e:e4:26:5c:78:52:5f:af:52:8d:10:
16:8b:60:f3:f1:b5:dc:bd:c6:14:0d:dd:ec:e1:af:8b:85:95:
98:5e:54:d1:63:61:f2:a9:e4:54:ae:74:62:ad:2f:d8:4d:8a:
dd:a9:e6:53:b2:e4:9f:89:6b:31:52:e3:0d:14:d6:ab:00:14:
0e:59:64:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:53:08 2025 by rpki-client