Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: vdc22QQSK1r7DqZTQ56z/UGyzG5oWzihGfzzmb0P3bc=
Subject key identifier: 13:D4:B4:57:13:C3:3D:C6:81:18:CC:68:A9:E3:F3:13:34:BE:9C:3F
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 01965C4C739F244C583B119153C10B34CACA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 150B
Signing time: Tue 22 Apr 2025 07:00:36 +0000
Manifest this update: Tue 22 Apr 2025 07:00:36 +0000
Manifest next update: Wed 23 Apr 2025 07:00:36 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: isHMNuBrkK2FFGy2FQVc60iC/hr/OsVWove222jjkhI=)
2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:73:9f:24:4c:58:3b:11:91:53:c1:0b:34:ca:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Apr 22 07:00:36 2025 GMT
Not After : Apr 23 07:00:36 2025 GMT
Subject: CN=13d4b45713c33dc68118cc68a9e3f31334be9c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:47:27:d6:fd:7d:a1:dd:2b:17:3a:47:e2:21:
55:3a:97:a7:24:a5:cd:9f:ab:01:14:78:25:4a:26:
48:0f:f2:cd:f9:2d:53:4a:e2:c4:e1:65:1b:ed:34:
ee:66:0f:ba:5b:e8:d2:1a:54:57:36:f3:f4:a9:21:
13:c5:11:62:b4:41:07:3b:20:77:a2:d4:df:5e:5c:
99:c8:60:55:24:4f:10:3c:e3:c9:73:f8:22:94:2b:
13:35:52:b0:7d:77:93:09:e1:e8:8a:b7:db:e5:da:
70:9f:f8:1b:5a:42:4f:10:c5:93:c4:b1:31:70:cf:
99:44:61:b1:6e:fe:6e:38:0d:b9:e4:b2:df:aa:8b:
53:00:4c:fc:a2:32:6f:06:c1:a4:1d:42:60:5e:a3:
e9:5c:a3:2f:77:13:68:69:a3:c3:ad:59:45:ec:5f:
86:45:37:aa:69:d2:1d:e9:27:84:89:35:4b:d2:6f:
f0:84:61:d7:43:5f:fc:80:53:9c:dc:77:98:a1:4f:
9a:1c:aa:80:d5:2c:fa:69:d4:98:4c:6e:ec:ae:d2:
3a:e2:c8:82:c1:c7:35:84:e0:f9:1e:15:06:b5:81:
e0:ce:20:bb:4d:3f:a7:80:91:e0:c3:36:79:b6:b2:
4d:e3:d5:46:4d:36:aa:52:59:6e:b4:35:69:61:6f:
85:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D4:B4:57:13:C3:3D:C6:81:18:CC:68:A9:E3:F3:13:34:BE:9C:3F
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:d2:63:a4:64:48:7d:4d:f4:46:a0:3e:17:52:9a:91:38:c5:
47:ee:8e:c2:b0:8a:00:8a:77:83:9d:1d:37:66:77:90:c0:80:
ed:66:00:f0:03:52:75:35:0a:63:5f:47:bf:88:4c:7b:d6:22:
07:b7:7f:51:80:88:35:3b:f1:c3:35:cd:7c:73:b2:33:f5:70:
a1:01:45:b4:12:5c:6a:48:8c:08:3f:39:c8:ff:75:c6:f5:08:
50:f9:49:a1:38:a9:e0:c8:a4:3c:c9:e5:ae:f6:c9:c1:eb:88:
92:23:7a:01:ea:86:d4:cc:ae:dd:4e:41:e2:e8:64:69:ff:7a:
1c:f7:42:62:3f:8c:50:7b:57:f8:10:5a:90:9b:e7:81:7a:3e:
76:bf:ef:d0:65:5f:99:ba:dc:bd:95:5f:0f:3f:8f:05:77:c6:
51:36:6d:80:5c:b7:e5:00:85:1a:0b:e9:19:52:e0:14:94:f8:
ad:78:d8:94:93:39:33:b2:4d:72:ea:32:9e:09:57:b5:1b:28:
a0:22:67:24:a9:a5:62:d2:21:60:e8:2e:d4:bc:83:61:c2:94:
38:37:1f:10:fc:2e:a2:34:67:67:2b:35:7c:22:5d:14:64:f5:
9b:84:e7:38:96:a9:1f:2b:99:38:eb:df:87:28:e0:00:ae:17:
56:7f:6c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:27:21 2025 by rpki-client