
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: JooLy4pV3D6ZMM/yKDTRfJ8J7tmNeVpgMXf2r1KZIYE=
Subject key identifier: 1E:78:CF:F8:DB:A8:C6:0F:31:7B:76:E3:E8:62:0C:24:C4:B1:15:8F
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 01975D25A0DC8570E4B0ECC8350CA13C8AEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 1590
Signing time: Wed 11 Jun 2025 04:00:36 +0000
Manifest this update: Wed 11 Jun 2025 04:00:36 +0000
Manifest next update: Thu 12 Jun 2025 04:00:36 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 9EDTPaCo0XOJjqPWRC8u8OwNk1VEHJt76LfgeJTxfy8=)
2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:25:a0:dc:85:70:e4:b0:ec:c8:35:0c:a1:3c:8a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Jun 11 04:00:36 2025 GMT
Not After : Jun 12 04:00:36 2025 GMT
Subject: CN=1e78cff8dba8c60f317b76e3e8620c24c4b1158f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3b:58:23:ed:d4:87:d5:9b:76:09:ff:02:0a:
66:99:ee:b0:ab:90:f8:ad:8f:14:c6:ab:31:8b:19:
37:bf:aa:21:b8:c2:16:a9:0e:36:99:aa:a0:a0:45:
ae:f8:4e:0c:68:4b:e2:b4:a8:0f:2c:90:99:1b:0f:
8e:1f:ae:be:1a:a5:43:36:7c:63:bf:5a:4a:6d:6f:
2c:38:a0:ac:14:78:f0:16:7b:5c:3d:d3:60:0c:92:
60:85:3b:6c:99:b1:78:53:b5:92:af:36:ac:8d:c7:
9d:b1:61:0a:af:64:74:32:a2:74:19:4f:6a:20:fa:
b5:8b:92:73:84:ea:72:76:da:d3:6f:6f:32:b6:5a:
02:8b:f6:56:f8:53:ca:21:6e:b2:f0:a0:5f:01:86:
22:c3:20:62:1e:83:58:72:a3:20:f0:5c:8c:07:e2:
88:ca:4d:30:3c:dc:fa:e1:79:b5:eb:da:e3:cb:3a:
48:3a:c5:b1:06:43:c1:a4:9b:6a:96:0d:f7:27:17:
df:1d:c9:34:b9:77:f9:d9:b4:a1:c8:16:21:2d:25:
73:f5:f5:d7:a6:f7:f1:fe:df:b3:6a:ec:25:1f:ce:
0d:d5:34:55:1b:17:80:4c:09:2c:fc:8b:2a:7c:e5:
be:9e:87:1d:30:7b:4d:69:b8:c8:c4:65:16:9d:7b:
9c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:78:CF:F8:DB:A8:C6:0F:31:7B:76:E3:E8:62:0C:24:C4:B1:15:8F
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5e:ce:f3:d0:d3:06:c8:3c:59:44:e8:e0:77:d5:a0:47:18:
6e:9d:7c:1b:56:ae:be:42:59:21:14:b1:2a:81:fe:b7:5c:2a:
6c:0f:c0:7d:26:a2:9f:64:8a:b1:c9:50:ee:dd:20:a7:8e:d5:
35:cc:6f:b3:cb:8a:52:cf:c1:17:c0:19:1a:8e:77:67:ad:26:
45:c8:a5:bc:4b:5d:27:36:37:d9:bb:09:e5:af:43:35:1c:a7:
76:f5:12:13:30:2f:62:97:38:d9:92:fa:0c:9b:ac:06:5b:c4:
e0:51:8f:7d:37:90:9b:7c:f1:fc:a0:59:67:fd:9c:0d:81:cb:
82:31:83:5b:e5:7b:77:5c:db:1d:f8:a6:ef:db:99:9e:38:ba:
1c:87:34:43:73:d9:99:8f:90:ec:1f:a4:66:da:0f:0e:af:83:
d8:41:63:30:31:a3:b8:4f:6b:93:19:01:8b:5b:23:8d:7c:bb:
a4:3f:49:56:81:8a:10:48:54:36:ba:77:b8:5c:58:90:56:d9:
64:d7:55:cb:4a:76:5b:09:7f:16:b7:a5:8c:a7:94:09:b6:57:
7e:81:85:a0:4f:02:41:e1:cd:ba:3a:04:3b:43:8a:b0:e4:57:
da:2f:8e:1e:04:4c:81:d2:6e:8b:a5:2c:3e:14:fb:f7:06:2c:
46:f0:8b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:16:58 2025 by rpki-client