Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
File: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft (raw, json)
Hash identifier: feT7KuVe2S2leWmnYVWDHVbz+7ZjumXErzQxDHhmj2U=
Subject key identifier: A5:4B:04:0F:EF:37:EC:05:56:11:A2:39:B4:B8:1B:71:05:D2:4F:18
Authority key identifier: DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
Certificate issuer: /CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Certificate serial: 019746D4FC0AC39C8F76061EE9986BF95074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
Manifest number: 10BE
Signing time: Fri 06 Jun 2025 20:00:52 +0000
Manifest this update: Fri 06 Jun 2025 20:00:52 +0000
Manifest next update: Sat 07 Jun 2025 20:00:52 +0000
Files and hashes: 1: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl (hash: tjvNxA1G2JNs3tz/E/8ovdm+DS8nU+BEZFW8ViOnAxg=)
2: bJ6OkDBz35azmUeGZSSY8SRMI4Y.roa (hash: y21BnaoaGpgbQvC0jOtfGrk+wq3H1xWVUYMR7XJq8OU=)
3: zDL_THkFuQHLJwbg-SI_E4lpZ3A.roa (hash: krJTySa4xAIWcd+RLsqPBRipwsimqCaZxlGeTrQ72GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:fc:0a:c3:9c:8f:76:06:1e:e9:98:6b:f9:50:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Validity
Not Before: Jun 6 20:00:52 2025 GMT
Not After : Jun 7 20:00:52 2025 GMT
Subject: CN=a54b040fef37ec055611a239b4b81b7105d24f18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:cf:30:1d:77:50:d1:83:d7:04:3f:1f:63:
38:8f:75:50:57:5a:11:e3:13:4a:82:f7:72:87:c5:
c1:21:71:89:40:21:d3:07:45:dd:54:66:a6:5c:cd:
c5:55:eb:4a:f1:2c:6b:68:fa:8b:62:17:a0:03:35:
61:c2:dc:30:5e:8c:95:b1:74:74:45:d7:bc:77:52:
4c:02:54:9b:a5:83:14:be:56:5f:82:b2:18:98:08:
00:27:39:ae:4b:34:78:43:45:2a:62:95:0e:40:43:
b1:1a:52:5d:97:18:73:33:78:16:ef:94:6d:46:e5:
b3:f9:91:cd:75:cd:e6:1f:9f:2c:2d:f9:28:3f:0c:
b8:4a:49:b8:bc:db:3f:11:12:e2:be:09:94:af:38:
d9:f0:f7:e6:a2:85:41:8f:ac:9d:41:c6:96:ac:6a:
e2:2e:27:20:b5:e1:ad:e4:6a:96:8a:37:1a:a9:eb:
ca:57:80:d9:27:ae:06:80:36:2e:b5:f8:97:f9:79:
31:bc:fb:7e:2d:01:e8:ad:45:97:ec:4b:85:59:b2:
61:f9:12:43:9c:9b:59:bc:13:53:26:56:dc:b4:08:
09:7b:08:54:69:d2:0e:96:7b:b7:61:10:ad:10:13:
4e:a2:3c:3f:f2:e4:ec:69:b0:17:c7:59:52:c7:17:
7e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4B:04:0F:EF:37:EC:05:56:11:A2:39:B4:B8:1B:71:05:D2:4F:18
X509v3 Authority Key Identifier:
keyid:DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:5a:3a:e7:44:28:45:f1:74:bd:6f:c6:7b:1e:e8:d2:d1:86:
39:51:c8:17:46:4e:0f:e4:6f:23:ba:4f:63:aa:3e:1b:20:37:
91:01:0e:8a:75:20:81:2d:8a:81:af:62:23:f5:03:a4:a5:2d:
b7:a7:23:7a:70:64:96:c0:b4:5d:61:fc:56:ab:9b:dc:77:74:
3c:c1:0f:f1:e6:ec:78:22:ec:56:0e:79:5c:74:72:c8:32:6b:
fe:62:0d:78:85:27:ad:48:b8:10:d9:f6:ea:9d:03:d6:c2:50:
69:ff:5e:9e:d9:51:55:63:50:f6:f3:65:69:d0:3c:98:74:63:
15:69:51:bf:f8:91:3e:92:b6:05:3c:53:e7:5d:55:79:08:2b:
fa:a6:a6:33:e1:9e:5b:99:8f:2a:aa:e9:b5:88:0f:1d:59:d8:
32:45:01:d3:a7:a7:c1:49:cd:71:25:55:81:85:fa:d5:41:2d:
a9:2e:07:23:80:7a:7a:ab:5d:8c:16:28:36:fe:54:49:36:7f:
75:e6:a6:d7:2b:c3:2e:69:7d:1f:c7:f8:7f:22:3d:8b:e2:0d:
51:6d:67:9b:02:ae:fc:65:25:bf:ad:7a:ba:40:3e:26:00:fa:
f9:6a:93:61:f1:22:bb:f9:d9:60:d1:84:73:15:c0:33:5d:5e:
3d:08:5e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:20:44 2025 by rpki-client