Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
File: 3fCc-W5fyHTuk5CXxWUci9hC5q0.mft (raw, json)
Hash identifier: YwXlUGxV2JGvoPF9SkX+ypYzI0Hh7yxXqFXb3GHbI6M=
Subject key identifier: 50:9E:B7:19:1E:80:E4:E4:38:41:40:AE:76:73:9B:3E:58:0C:D1:0E
Authority key identifier: DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD
Certificate issuer: /CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad
Certificate serial: 01964DEC70550A97FF49BB5B6ED41AE0ED6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
Manifest number: 022D
Signing time: Sat 19 Apr 2025 12:01:02 +0000
Manifest this update: Sat 19 Apr 2025 12:01:02 +0000
Manifest next update: Sun 20 Apr 2025 12:01:02 +0000
Files and hashes: 1: 3fCc-W5fyHTuk5CXxWUci9hC5q0.crl (hash: jeWYh4iOurhHiL0U3OP9wsYkG3/lhkxlAu6MZjqtqnE=)
2: 4QrqTeH17AXNTy8pbTdrujVUbQI.roa (hash: FZeq9SJr8r+vs6lCOy39Gvb+wDR+3HmqIg9DlvmdZfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:70:55:0a:97:ff:49:bb:5b:6e:d4:1a:e0:ed:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad
Validity
Not Before: Apr 19 12:01:02 2025 GMT
Not After : Apr 20 12:01:02 2025 GMT
Subject: CN=509eb7191e80e4e4384140ae76739b3e580cd10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:b9:9a:d4:8a:6b:52:fc:2c:8b:49:80:65:
57:88:82:c2:44:25:75:55:8c:2d:dd:97:08:5e:96:
32:2f:8d:22:07:60:c0:11:65:5d:55:5e:e9:8c:6e:
68:84:e3:5d:fc:2f:9e:5b:0d:92:c5:f0:11:db:5d:
1f:54:d5:db:48:92:55:ab:04:18:a3:ba:83:b7:2f:
3e:8d:62:9b:1b:e9:06:94:1b:65:a9:04:db:79:66:
e9:8b:79:47:89:82:4f:f9:33:bb:de:62:f7:9e:8f:
70:b6:a0:47:65:e2:a3:da:2a:ac:f6:33:39:61:a0:
05:d6:a6:12:4a:64:38:4f:b1:f2:86:28:d7:b0:2f:
df:b0:c2:86:f7:c9:2d:2a:e5:47:3b:aa:43:5c:2d:
2d:ed:37:d9:12:e8:ed:6e:28:58:2f:f9:b6:64:fe:
66:e4:4c:a9:1b:68:75:73:34:06:f6:18:55:1c:0a:
c8:93:94:c5:35:bd:41:69:9b:81:20:26:b0:7c:09:
a3:41:bd:77:9b:7c:a2:9e:db:92:76:04:07:7f:c5:
4e:7d:8a:d4:dc:ca:91:21:92:19:b4:f7:ae:be:99:
0f:6c:a6:bc:3c:2c:8b:61:0c:c9:10:60:e4:23:8d:
e8:8d:d9:10:79:59:6c:68:db:e9:45:c5:b5:b9:35:
3c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:9E:B7:19:1E:80:E4:E4:38:41:40:AE:76:73:9B:3E:58:0C:D1:0E
X509v3 Authority Key Identifier:
keyid:DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:8f:d2:bc:29:5d:b9:b0:4b:72:c6:a9:f2:8a:a0:dd:0c:2e:
3c:61:79:e0:c2:4d:88:10:65:ab:e9:c8:5b:c3:15:48:ff:27:
9d:f9:44:75:0e:17:c7:e5:0e:a8:a7:2b:27:ff:18:5c:75:2e:
5a:bd:44:67:7a:8a:fe:31:48:9f:bb:31:74:19:cc:ec:6f:ef:
f8:67:46:cf:d1:3a:e8:09:88:af:12:9d:e3:48:75:b0:bc:6c:
d3:d0:d3:67:5c:84:0d:fe:f0:b0:12:f1:6a:74:66:19:68:7c:
bd:c9:35:f4:f2:d5:85:22:87:e0:1f:94:d7:61:84:b8:27:17:
c7:66:e3:d0:da:20:da:78:fe:17:de:84:38:9d:57:f7:ee:2a:
5f:50:66:63:d0:c0:fa:ed:2a:5f:f3:b5:64:0f:3f:31:10:9d:
2f:f9:b8:ea:25:01:5e:e6:e5:31:b7:a3:f8:59:bf:43:a4:89:
57:ba:7f:72:35:98:2e:62:69:e3:10:19:c7:06:f1:aa:8c:13:
cd:2e:be:b6:3d:79:50:c8:ea:72:80:69:f0:15:b6:ba:7a:86:
4b:00:45:fd:89:c7:da:be:8c:8d:3c:73:24:7d:89:d6:93:b3:
fe:ec:fd:82:de:23:7a:6c:5b:5b:76:a2:31:96:a4:8f:33:98:
09:08:fa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 13:57:22 2025 by rpki-client