
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: rtPa+turvpwwGHylqHyEhodJmW51rjpUyedP+giZUn0=
Subject key identifier: D8:E5:36:C6:D8:09:E7:3E:55:9A:43:30:DE:23:69:87:ED:7B:7F:F1
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 019764DF23049B8980C51C1204B163A1F72D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 1594
Signing time: Thu 12 Jun 2025 16:00:34 +0000
Manifest this update: Thu 12 Jun 2025 16:00:34 +0000
Manifest next update: Fri 13 Jun 2025 16:00:34 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: uyriDFlUlFeTQEjc8hQnjrE7RYjMW1nB2nZjOqZJCP4=)
2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:df:23:04:9b:89:80:c5:1c:12:04:b1:63:a1:f7:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Jun 12 16:00:34 2025 GMT
Not After : Jun 13 16:00:34 2025 GMT
Subject: CN=d8e536c6d809e73e559a4330de236987ed7b7ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cf:88:50:89:c4:ab:ac:7c:3a:e8:2b:97:7f:
5f:fd:6b:22:75:8f:b3:37:f7:56:aa:9c:e5:ce:34:
85:34:f4:32:06:c5:fd:f1:ed:39:72:43:14:74:3e:
fa:c3:1b:01:f4:1f:45:9d:b2:ab:e1:10:23:82:fd:
e2:dd:3f:c5:c6:66:b7:51:dd:0a:22:84:0a:34:21:
a7:c8:6d:e2:49:63:07:a8:1e:61:ac:d0:23:77:c5:
d2:25:a4:19:3c:e4:6d:74:df:15:69:6c:27:66:b0:
30:d8:cc:5d:b2:db:82:4b:ca:3a:4f:07:8c:42:0f:
4c:97:d8:13:b1:2d:b7:7d:b6:2c:e5:56:aa:54:ab:
3d:20:40:c9:df:7e:5c:f6:f4:00:08:8c:04:50:9e:
07:02:cf:59:10:90:90:f9:36:ff:d2:73:d7:f0:bb:
7b:6e:03:9d:ca:fa:1e:1d:07:1f:a9:91:28:10:da:
36:12:de:8b:93:e2:da:0a:6a:70:81:67:6c:9c:d2:
45:b7:ed:c7:28:fd:5f:7a:74:ba:39:e9:6e:ef:c4:
90:3a:c2:57:59:af:23:54:4a:1f:ff:14:60:50:bf:
c8:13:0f:69:61:6c:86:bc:82:47:92:70:ce:93:b4:
f1:1a:42:51:47:5f:34:c7:3c:66:34:e0:ca:76:78:
c5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:E5:36:C6:D8:09:E7:3E:55:9A:43:30:DE:23:69:87:ED:7B:7F:F1
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:70:31:be:36:17:fc:98:e7:93:ad:96:d3:37:6b:79:72:7a:
0b:1b:c1:ed:51:47:de:7e:45:83:16:7e:94:3c:2b:0c:34:37:
0d:50:07:48:77:52:ad:2f:ce:70:e4:e6:91:a8:1a:7f:5f:ca:
5b:10:7b:d3:3a:b2:b5:58:12:30:f9:4f:e0:b6:b4:12:d4:e6:
e5:33:7a:06:f6:ad:62:5a:39:c7:29:b2:4c:0b:0d:10:bb:5b:
70:52:b4:4a:16:1e:57:79:91:f7:10:e7:f5:bc:c4:9a:54:ba:
32:e1:f1:b1:40:8c:ff:8e:48:7b:38:19:80:bc:b3:66:12:82:
14:73:dc:07:a0:72:af:92:19:ff:3e:4d:00:ee:fb:88:ec:40:
cc:16:10:cb:50:f0:66:d0:71:96:41:12:77:73:07:d1:dc:f9:
d5:f4:f3:f2:a4:db:52:9c:e1:49:43:0c:38:cc:25:d7:11:ff:
5e:57:4d:77:59:54:f3:11:f8:91:f9:f3:a8:63:3e:f5:d6:22:
ff:49:10:80:5d:74:67:7c:bc:99:db:35:ba:9a:ca:ad:7e:a1:
4c:24:73:6a:84:97:ec:02:3b:f2:9c:9e:f0:00:1d:dc:7d:bf:
9c:11:7d:13:12:47:bb:00:1e:84:0c:a2:c5:35:8a:d2:59:59:
4a:df:05:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:19:26 2025 by rpki-client