Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json)
Hash identifier: LbFsNQvwsllC7j4uKGY/QuVKVWhQipsG23xZCv6PH30=
Subject key identifier: 46:0B:1A:E0:0A:36:0C:2E:C3:FB:7D:A2:86:50:60:E5:B1:BE:83:7E
Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Certificate serial: 01974CD6A22AF64CC00F5C5E9DF581CC83C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
Manifest number: 09EF
Signing time: Sun 08 Jun 2025 00:00:23 +0000
Manifest this update: Sun 08 Jun 2025 00:00:23 +0000
Manifest next update: Mon 09 Jun 2025 00:00:23 +0000
Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: z5G7kWwt/5sfBQu2Dr0oZn+2Wka42FR5NpPy8rhxnXg=)
2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:a2:2a:f6:4c:c0:0f:5c:5e:9d:f5:81:cc:83:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938
Validity
Not Before: Jun 8 00:00:23 2025 GMT
Not After : Jun 9 00:00:23 2025 GMT
Subject: CN=460b1ae00a360c2ec3fb7da2865060e5b1be837e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:73:6e:1d:e2:9f:42:5e:56:97:53:39:65:96:
66:54:fa:2f:d3:42:dd:76:94:09:25:1c:d5:bf:39:
ec:60:67:bb:7d:80:7b:ad:12:d3:87:b6:76:ee:4a:
86:a3:27:96:69:aa:a6:ff:8a:16:90:13:1b:e9:0f:
08:91:11:a4:1a:85:11:23:b6:81:15:05:e9:ff:cf:
c6:21:2f:63:ba:e7:27:98:41:30:e4:18:f9:41:6f:
ae:5f:44:66:b1:96:d2:c6:e8:2f:8c:2d:28:e5:01:
5b:cc:cb:ac:b5:24:ab:65:e3:21:d4:c0:86:15:31:
e3:f9:21:c7:75:37:15:21:fb:5d:66:50:04:69:58:
2d:2b:f2:0d:93:5f:f7:76:65:fb:3c:2a:af:fe:35:
d9:0a:cb:b6:66:48:b6:b4:7e:d4:ba:b3:6e:13:9b:
37:76:51:73:48:27:60:ad:87:42:e5:b0:8f:0f:e0:
1a:db:4d:76:b2:03:2f:d5:b1:c2:0d:b3:5a:44:b0:
55:cd:6b:83:29:9e:86:ce:8e:d0:d8:64:fb:1c:ff:
f1:c6:95:43:44:c6:ed:f4:34:23:45:3b:0c:cf:9a:
0a:68:0d:7c:02:76:d2:ab:ac:2d:6a:28:70:80:6e:
b4:64:12:13:d6:0d:fd:c4:a7:98:70:55:cc:9b:35:
5e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0B:1A:E0:0A:36:0C:2E:C3:FB:7D:A2:86:50:60:E5:B1:BE:83:7E
X509v3 Authority Key Identifier:
keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:3f:5f:55:09:77:db:49:49:92:f2:e3:42:da:1a:9d:37:26:
74:2b:05:66:91:9b:c9:b7:30:f4:19:42:ee:90:73:1d:3f:9b:
33:8f:7e:97:84:95:7c:2d:15:e9:0c:13:a0:a5:65:e8:e3:b5:
a0:c6:97:3d:04:be:65:49:b7:6c:d7:76:6f:22:a9:95:bd:88:
fc:84:46:0e:01:50:df:59:4a:33:ce:3f:2d:20:da:05:62:90:
0e:5c:d3:dc:2c:0e:50:fe:dc:1c:61:13:4f:8b:8e:63:1a:b7:
a8:ad:ef:f2:cd:b6:a5:7e:0c:8f:bb:eb:ef:f8:ee:7e:50:f1:
86:b4:b8:c0:2b:7b:50:44:09:39:46:91:b0:0a:7a:d4:15:5c:
db:d0:ae:69:ae:28:0b:cf:fc:7f:19:03:1b:ec:90:cd:8c:0b:
2b:97:c4:2c:a8:d7:dd:00:0e:cf:c5:71:85:63:e7:b7:c2:a3:
a9:53:30:d8:0e:d9:d6:a8:fc:21:9c:e6:e7:6d:50:80:29:1a:
3d:a6:c2:a9:34:ac:d5:b4:3b:28:c5:4b:21:b8:78:af:6f:c0:
30:bd:07:e6:b2:30:d4:6a:a1:2c:cb:92:25:4a:82:df:b5:0a:
2a:33:5e:b8:0c:09:36:80:03:72:9c:b8:f6:44:ef:f5:7e:c8:
64:d3:a6:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:42:22 2025 by rpki-client