Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
File: is3dXDDVgOsP7soqFs9cWoslaP0.mft (raw, json)
Hash identifier: +PHfd//B8hWhUAlAIk2THNJR1Fev171Q5gErVUf6tjQ=
Subject key identifier: 48:86:05:B9:0D:0C:D3:18:E9:EB:B4:E2:5E:53:3A:59:B4:7A:F3:F3
Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Certificate serial: 0197499F3347254C0C81E34CF72504970E20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 09:00:59 +0000
Manifest this update: Sat 07 Jun 2025 09:00:59 +0000
Manifest next update: Sun 08 Jun 2025 09:00:59 +0000
Files and hashes: 1: 1-BU0QGGPOY6StLl6EjdaPUoRp0U.roa (hash: YErgeEfB3mK/ybWEoY6pFZ+o+6uteNHWASk7smyhzI8=)
2: is3dXDDVgOsP7soqFs9cWoslaP0.crl (hash: 4Qz2ixoVgqugfWcoqEHoqDXdqDGdHWBeqISEB5znZt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:33:47:25:4c:0c:81:e3:4c:f7:25:04:97:0e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Validity
Not Before: Jun 7 09:00:59 2025 GMT
Not After : Jun 8 09:00:59 2025 GMT
Subject: CN=488605b90d0cd318e9ebb4e25e533a59b47af3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5b:53:a9:54:81:09:90:3a:4b:55:92:f2:f1:
aa:d8:76:c6:f0:88:e7:ec:c7:51:91:21:12:40:22:
09:d2:60:58:e5:af:a2:c6:ce:fd:f0:47:c9:33:78:
c7:bc:53:69:e7:63:12:62:0f:8a:57:b7:e4:8c:a1:
96:00:7c:2f:4d:c2:02:64:30:c6:76:f1:94:b1:18:
8d:a6:a2:47:34:9d:81:43:44:a2:39:df:9a:6a:f5:
d5:65:b5:ff:d4:13:e9:24:0b:fe:dd:37:b6:e0:b8:
90:eb:2c:54:f2:ab:b0:03:39:d1:e5:b8:18:1f:0e:
bd:4d:37:1b:96:81:a8:b8:f1:3d:a9:96:78:25:64:
32:da:a2:d8:18:3e:4e:18:6d:dd:2e:a1:43:61:f5:
cd:b7:b0:bb:3d:71:8d:81:32:87:53:d3:e3:b4:a7:
44:1f:e4:d6:44:d3:5c:88:c7:28:e2:22:1e:f3:34:
c6:c1:09:db:e1:28:7c:2d:38:2b:28:6e:e6:14:00:
3e:b6:15:58:55:e4:e0:19:a9:a5:9f:da:c8:51:05:
b9:ca:da:77:bd:6e:56:4d:dd:be:94:e2:7d:87:ab:
7b:dc:91:32:6a:cb:ba:2f:8a:bd:c9:41:ed:cf:7f:
ad:9a:81:a8:dc:9f:1f:41:5c:db:8f:45:00:37:c2:
db:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:86:05:B9:0D:0C:D3:18:E9:EB:B4:E2:5E:53:3A:59:B4:7A:F3:F3
X509v3 Authority Key Identifier:
keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:7c:41:cd:98:97:b8:19:94:d4:1c:cc:8c:e8:69:0f:c3:0b:
4f:63:70:6b:23:6e:f9:f6:c4:4d:a5:2f:b5:a9:31:91:bb:6d:
e7:b5:dd:64:98:13:b1:47:19:23:66:02:f9:e3:d9:4f:f5:d1:
b7:c2:b6:0e:fd:e5:b5:c4:e6:6b:a8:37:a0:04:f9:32:73:de:
87:6c:0c:31:3d:5d:e2:70:5b:c4:57:e2:77:4e:6e:d3:5f:d1:
77:a9:27:39:93:28:2c:0d:b9:bf:29:9b:d9:c0:49:85:80:6e:
08:9e:28:4d:16:ae:7e:e0:80:70:2d:b0:4b:6e:46:91:ec:9b:
90:81:e0:e4:ab:9c:9e:62:a6:2f:5d:f7:fb:ea:3e:16:e1:be:
a0:64:ec:30:73:19:2c:42:e0:5a:da:8f:01:f6:fb:c7:65:f3:
00:09:6d:b9:bc:76:94:28:6b:52:e3:f4:f7:bf:74:d4:22:14:
ad:71:70:43:88:91:ac:54:70:f5:02:e4:9f:c7:29:06:92:72:
c7:f9:90:e0:00:57:8b:c1:4d:d8:37:72:79:23:31:71:73:e1:
b3:18:51:71:f5:06:b6:88:3f:1f:60:21:05:48:de:bf:88:1b:
23:40:41:d3:cc:3c:5d:c6:8b:e6:ee:8b:82:39:eb:ab:44:e5:
f7:c3:8a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:40 2025 by rpki-client