Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
File: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft (raw, json)
Hash identifier: VZhnas4n+7QwkBfZErZJlWxGPAPMl2qSMmkj0aJ9Qwk=
Subject key identifier: BC:F0:BB:A4:15:CC:CA:E3:CA:F2:D3:B0:E2:AA:36:D7:D3:62:7E:AC
Authority key identifier: DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
Certificate issuer: /CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Certificate serial: 0196440D57BF2D5CFB17EE670D6835336014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
Manifest number: 1038
Signing time: Thu 17 Apr 2025 14:00:47 +0000
Manifest this update: Thu 17 Apr 2025 14:00:47 +0000
Manifest next update: Fri 18 Apr 2025 14:00:47 +0000
Files and hashes: 1: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl (hash: uqNlRM3+GJn7bKvYuxVjWepKKiV4ljaMq1Myxoj+JcY=)
2: bJ6OkDBz35azmUeGZSSY8SRMI4Y.roa (hash: y21BnaoaGpgbQvC0jOtfGrk+wq3H1xWVUYMR7XJq8OU=)
3: zDL_THkFuQHLJwbg-SI_E4lpZ3A.roa (hash: krJTySa4xAIWcd+RLsqPBRipwsimqCaZxlGeTrQ72GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0d:57:bf:2d:5c:fb:17:ee:67:0d:68:35:33:60:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16
Validity
Not Before: Apr 17 14:00:47 2025 GMT
Not After : Apr 18 14:00:47 2025 GMT
Subject: CN=bcf0bba415cccae3caf2d3b0e2aa36d7d3627eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6a:79:43:6a:c1:5b:be:30:2c:67:09:3b:e2:
48:15:5a:27:6b:30:2b:0d:6f:d2:23:38:55:63:d9:
76:c3:63:a4:0f:71:0d:d4:58:53:e4:24:4e:58:1c:
2b:40:76:92:ed:10:69:99:06:92:02:62:cc:52:a9:
ae:d4:9d:3f:82:b6:3a:4f:80:0e:52:13:ec:a9:2b:
85:bd:7f:01:eb:dd:ee:d5:d3:03:eb:e2:29:77:db:
9a:2b:85:82:b8:5d:51:5c:c1:3b:27:7c:f7:0c:c0:
f0:6c:ab:a0:71:9f:b5:22:5a:82:3e:45:c2:90:82:
b2:bb:ca:10:17:99:bb:ea:e3:f8:ca:09:2c:37:07:
27:a4:c5:e1:26:5d:10:af:a4:dc:0b:ec:cf:d4:b8:
e6:ab:78:4b:e4:8f:ae:0c:84:52:37:72:b2:ba:33:
08:6b:7e:00:ec:0e:07:77:97:34:a2:04:dd:6c:90:
34:a5:e4:9c:67:c9:bb:4b:91:28:2a:eb:df:b1:11:
c5:73:32:eb:c5:85:1f:94:c2:c6:68:5a:2d:e2:62:
53:23:2c:14:45:6b:cd:97:08:60:c9:a1:f7:13:45:
36:32:25:fe:64:8b:83:ee:53:1a:09:eb:03:02:db:
90:0f:3c:7c:c9:9e:e4:b1:09:b5:2f:6f:19:cc:f0:
e1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F0:BB:A4:15:CC:CA:E3:CA:F2:D3:B0:E2:AA:36:D7:D3:62:7E:AC
X509v3 Authority Key Identifier:
keyid:DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:fe:26:31:ac:89:d2:12:a5:ac:82:09:17:ef:40:37:51:34:
3a:c9:50:e1:11:d8:2b:39:cd:e9:cd:60:4a:e1:53:8b:42:47:
7e:d8:23:20:38:44:51:15:03:ae:9f:08:18:a6:dd:0e:fc:a8:
f0:25:82:b5:ad:a2:34:0c:dc:73:b4:b9:9b:45:dd:b0:68:b3:
00:c5:f4:5d:3a:1b:4c:da:27:e0:ab:1c:68:6a:73:b4:38:7d:
2f:03:4a:43:bb:a5:ac:2b:9c:54:fd:0f:e1:50:dd:14:f5:9c:
41:10:65:2e:f9:c8:cf:0e:1c:b0:82:01:67:81:bb:c2:a6:1c:
5f:f8:c4:e9:24:99:c8:f1:30:b6:e1:ca:72:fe:7d:cf:44:0c:
2b:20:6b:53:66:d3:51:3e:97:46:98:c6:f5:93:02:3a:18:a5:
ff:1a:2f:9b:a5:b4:84:a0:25:c6:fe:16:5c:53:17:1a:72:9a:
d5:f6:06:ff:87:6d:7b:b5:9b:35:4d:dc:22:9c:6b:89:52:3e:
1a:50:54:37:f6:f2:35:6e:70:32:a2:13:2d:8f:f2:f7:16:0d:
f2:d4:f9:33:38:c3:3b:83:d3:ec:62:88:e4:eb:12:34:8c:18:
92:8c:32:5a:d6:28:ed:b8:0e:91:ea:9b:26:ee:21:e1:f9:f8:
ad:06:32:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:50:39 2025 by rpki-client