Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
File: 3xRM6OjkQV5chqCygEmaOFwU7_I.mft (raw, json)
Hash identifier: LcjOsOidKmnqjC2jc6wJS3DOEkW8d0pBw+RfL9w+oPI=
Subject key identifier: 9D:A3:28:69:82:11:ED:F7:34:83:AD:2D:D4:2F:9D:5E:3E:60:10:15
Authority key identifier: DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
Certificate issuer: /CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Certificate serial: 01964A7D87A39E63AF3D87F4A2B6AF09EC3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
Manifest number: 0B6F
Signing time: Fri 18 Apr 2025 20:01:02 +0000
Manifest this update: Fri 18 Apr 2025 20:01:02 +0000
Manifest next update: Sat 19 Apr 2025 20:01:02 +0000
Files and hashes: 1: 3xRM6OjkQV5chqCygEmaOFwU7_I.crl (hash: nDJfw3iy467e4xp7nCVQYOAStKYE5yQpOWVAstmypqs=)
2: 7d2ToMhT-5ZAU4qsYQXruw_MoIU.roa (hash: vm5X1sab9HJagyLFII3df7BekSqzu2gNn9apIe4J5uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:7d:87:a3:9e:63:af:3d:87:f4:a2:b6:af:09:ec:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df144ce8e8e4415e5c86a0b280499a385c14eff2
Validity
Not Before: Apr 18 20:01:02 2025 GMT
Not After : Apr 19 20:01:02 2025 GMT
Subject: CN=9da328698211edf73483ad2dd42f9d5e3e601015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:54:c7:55:9a:2a:dd:3a:a8:ea:27:38:38:42:
a3:71:68:95:0f:70:96:13:5c:3c:6b:68:93:e0:98:
6d:cb:f7:2c:e0:d9:d5:b2:66:14:4a:84:7b:15:1b:
30:dc:ed:a4:06:db:b6:5e:49:64:d2:7f:fb:e7:32:
4e:ed:78:84:7c:16:3f:92:3f:c3:28:0b:a8:37:98:
b6:ea:7a:88:43:e1:40:f7:73:45:43:97:55:e3:86:
89:8e:6c:55:0e:d3:24:af:53:84:8f:4c:ed:ad:2d:
76:85:43:73:90:54:d0:c8:cd:8d:f7:67:5a:1e:4c:
ed:5a:ba:60:16:6d:a9:cf:84:f5:7e:97:d8:f7:c9:
5a:d9:50:af:27:72:73:c9:f4:c9:3a:3b:92:55:d2:
2d:f2:4f:a3:77:3b:2d:94:40:85:ac:57:07:69:0e:
4b:b7:c9:3e:ed:64:f5:89:4d:2a:9c:45:35:fb:3d:
e8:b4:24:ba:a3:b4:2f:81:13:38:c1:96:36:23:c1:
20:02:b1:a6:4a:46:42:b1:35:c5:18:8e:32:29:4c:
8c:c4:53:a3:4f:f5:32:dc:ae:f3:5a:5a:b8:81:48:
4c:67:ed:a8:93:bd:0d:14:dc:d9:8f:46:46:65:9c:
cd:a8:e4:8d:a6:f7:35:76:c0:ba:fc:2f:2c:38:1c:
ea:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A3:28:69:82:11:ED:F7:34:83:AD:2D:D4:2F:9D:5E:3E:60:10:15
X509v3 Authority Key Identifier:
keyid:DF:14:4C:E8:E8:E4:41:5E:5C:86:A0:B2:80:49:9A:38:5C:14:EF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xRM6OjkQV5chqCygEmaOFwU7_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0f4302-41a2-4da4-878e-5867be7036b3/1/3xRM6OjkQV5chqCygEmaOFwU7_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:bc:c4:fb:fa:1e:d6:0e:6f:f6:bf:fa:b4:94:49:11:90:ed:
a0:78:c3:15:e0:ce:5b:f0:55:4a:c4:1d:68:f3:ca:a5:33:40:
f6:70:10:cc:5e:12:89:da:6f:9d:d4:40:1b:9b:1f:c8:30:65:
42:4c:2a:e0:ba:53:fb:1f:72:04:c6:21:e5:29:90:96:b3:5c:
39:c3:83:51:8d:7c:2b:6a:1b:b9:7f:dd:51:0d:71:0d:2f:ad:
49:52:18:b2:92:a2:6f:43:cf:40:7d:f1:6a:a9:5e:9c:82:6c:
a8:de:98:c3:cf:e6:8a:9f:12:e3:f9:4c:a0:bd:26:72:1d:85:
8b:8a:0d:55:70:36:84:31:76:97:52:2c:42:a7:f0:82:8d:20:
af:da:5f:e8:16:63:90:e0:9b:d2:ff:8c:ce:90:e3:b1:a0:8c:
7e:34:ac:b5:86:e0:27:29:7a:be:f8:c7:eb:81:88:7b:9d:00:
12:3f:f3:e2:ce:e0:d0:a5:23:bc:8b:e9:da:5d:de:b8:08:09:
72:3d:cf:33:5b:87:e8:69:62:55:02:d0:1f:ff:e8:95:bc:47:
a5:58:86:6e:c8:24:31:ab:76:9f:46:af:9d:12:ee:11:7e:b5:
e9:b3:7f:52:fa:db:de:db:93:b4:f5:59:d7:44:3a:e3:0f:66:
a1:a5:4c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:38:27 2025 by rpki-client