Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
File: 3VShBsGZ81M-VritvPpLGsPmkJ8.mft (raw, json)
Hash identifier: pKpiCim+7GTa0TMQ0ZzxU5NCWsDJZUiJgXUfGfCf+h8=
Subject key identifier: 3D:8D:C6:B7:50:2E:BE:94:AD:67:A9:C8:B9:48:9C:4B:4E:09:1F:B4
Authority key identifier: DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
Certificate issuer: /CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Certificate serial: 019649A20962F5F960B222E6EC1B35DE04CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
Manifest number: 07C4
Signing time: Fri 18 Apr 2025 16:01:18 +0000
Manifest this update: Fri 18 Apr 2025 16:01:18 +0000
Manifest next update: Sat 19 Apr 2025 16:01:18 +0000
Files and hashes: 1: 3VShBsGZ81M-VritvPpLGsPmkJ8.crl (hash: hVdDezgczN1ki/oXelm1fdSvpfgYOiVWVN2Ih1QPiaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a2:09:62:f5:f9:60:b2:22:e6:ec:1b:35:de:04:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Validity
Not Before: Apr 18 16:01:18 2025 GMT
Not After : Apr 19 16:01:18 2025 GMT
Subject: CN=3d8dc6b7502ebe94ad67a9c8b9489c4b4e091fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e5:b4:c3:ec:96:17:1b:5b:37:ae:70:0d:66:
07:ee:55:41:3c:a3:04:50:9e:9f:9e:29:82:6b:c6:
b4:c3:6b:a2:e2:3a:56:d3:fd:59:ff:70:26:c4:aa:
31:21:72:52:ca:f1:c2:bc:bd:53:14:76:2b:07:12:
f9:7c:1f:31:26:3f:6b:e8:6b:80:68:60:21:13:16:
73:82:7f:dc:9f:f5:80:04:cb:dc:ab:5e:79:84:c4:
4e:a5:b8:94:2c:a3:97:8c:0b:ac:e7:43:ce:57:3d:
e6:64:a8:89:13:00:b2:8d:cb:ef:cb:a4:c4:c2:63:
a4:96:30:79:45:60:a6:80:cb:5a:c3:c5:6b:04:68:
c4:b2:00:9d:b2:05:b3:42:26:7e:92:72:f9:38:3f:
02:64:eb:e5:cd:76:84:4d:73:e0:08:a9:13:86:62:
2d:0c:1d:12:49:fc:ac:6f:aa:cd:c2:e2:d7:a4:c2:
9d:3c:2c:92:77:ed:ed:df:67:57:46:93:1c:02:1f:
1a:fb:09:7d:54:7c:80:b5:1f:dc:11:c9:09:68:69:
09:b7:19:37:c0:0b:b1:92:6d:82:7c:18:bc:ae:7e:
e6:43:04:a7:19:58:28:e2:03:c1:c0:2d:49:e8:4c:
25:93:c6:49:34:09:f0:f5:a8:1f:ac:28:5c:eb:06:
10:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:8D:C6:B7:50:2E:BE:94:AD:67:A9:C8:B9:48:9C:4B:4E:09:1F:B4
X509v3 Authority Key Identifier:
keyid:DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:4f:a3:ee:8c:97:9f:3b:9a:81:92:eb:f4:f9:8f:9e:9b:28:
cc:b4:61:f6:81:94:f8:19:6a:ef:64:8b:db:14:76:81:18:d9:
2e:ac:d5:9b:51:3a:91:8b:78:12:a2:a4:2c:01:fc:4a:80:e0:
cb:8d:b5:f3:fb:59:fc:e5:b2:1e:03:38:c9:01:c6:6f:d0:da:
c7:e2:f5:f0:55:82:60:2e:a9:0d:e0:93:85:1b:89:c9:b1:e5:
0b:36:9d:7f:df:dc:8c:98:2a:26:99:ba:22:d8:65:3f:d8:c9:
a1:6d:fe:aa:9b:20:d3:73:b6:43:52:1a:ef:d1:7f:79:13:2f:
a3:4c:2f:65:57:f0:00:92:54:79:fd:cc:96:ea:f7:00:5e:95:
95:7e:ef:bb:77:ac:54:e2:0f:d1:42:94:e2:a9:2d:ff:05:01:
d4:e3:bb:80:2f:60:41:52:1d:92:0e:18:94:c0:1c:d7:76:6b:
59:62:42:0e:91:68:b0:d7:23:92:ac:7d:62:b1:ba:ad:f7:02:
dc:f9:3c:65:c5:b2:2f:35:6e:2f:aa:a9:ef:4d:ed:36:77:1e:
67:80:f5:eb:69:c4:31:d9:2f:0d:de:08:20:fe:34:79:a1:d4:
2a:51:f6:a2:a4:80:c0:bd:94:8d:91:9d:91:46:bc:77:3f:fb:
47:91:59:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:44:48 2025 by rpki-client