Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: 8I1ReKOzCKdfByTv2ZlYWNWxhF7/xjAuAPcVj0/100A=
Subject key identifier: A7:9D:C0:F3:68:EB:90:7C:1F:EA:03:61:8F:86:A6:4F:E9:84:17:66
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 01958B847279597E640F53463A73DA8DA197
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 13D5
Signing time: Wed 12 Mar 2025 18:01:07 +0000
Manifest this update: Wed 12 Mar 2025 18:01:07 +0000
Manifest next update: Thu 13 Mar 2025 18:01:07 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: 1ESbCjGWBp8IkB4rjVD6so0L6gVY05t3nl9CtwIoiDw=)
2: RmRTHkNLraqOOzazgFQdU_YCKkM.roa (hash: 5SoXabo2aLivwm4lm+kA69S7S7+v67Nc52d80muCgcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:72:79:59:7e:64:0f:53:46:3a:73:da:8d:a1:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Mar 12 18:01:07 2025 GMT
Not After : Mar 13 18:01:07 2025 GMT
Subject: CN=a79dc0f368eb907c1fea03618f86a64fe9841766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7d:1b:92:09:b5:59:40:22:6b:43:ac:ff:95:
ac:01:88:ac:b0:5c:ee:88:02:6a:19:bd:d8:2e:0f:
b4:46:67:64:b9:df:07:42:33:5c:a6:fe:ec:81:67:
7a:7b:24:05:22:e5:8f:c9:d1:a2:0b:2f:ef:79:33:
97:5b:3c:f4:20:ee:cf:2a:09:ea:eb:5a:cb:bb:9b:
8f:ac:75:8f:3c:9b:c1:7e:74:9e:d1:53:3d:06:9a:
b5:84:68:0f:c7:28:59:6f:a4:bf:4d:1c:fd:d8:19:
47:fc:2f:ea:e9:28:2d:cb:da:52:55:24:b5:ad:6f:
29:e7:4f:5c:f1:6f:ea:89:0e:2c:14:5d:83:55:b4:
c4:64:4c:ec:80:a6:fc:10:f0:d0:d4:f8:45:7c:e2:
6b:40:b2:1e:6f:cd:ad:e6:df:81:ca:cf:50:c7:5d:
85:6f:47:4d:43:1c:2e:47:95:6f:f7:dd:1f:ed:89:
20:1b:c4:5e:b0:43:57:ba:88:aa:bd:4c:29:d3:fd:
64:ae:f6:3a:77:d9:ae:fc:df:a6:4d:f2:c6:21:0c:
c9:7c:46:d6:23:c8:dc:b7:95:5c:5b:1b:6b:ca:da:
60:74:bf:a2:ed:62:84:4c:62:6a:c3:a0:95:a5:1a:
11:9f:5e:5b:21:84:bf:93:a2:68:47:fa:7c:5f:2f:
49:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9D:C0:F3:68:EB:90:7C:1F:EA:03:61:8F:86:A6:4F:E9:84:17:66
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:48:df:38:a2:25:df:5e:bf:ce:ee:ad:58:7a:0f:51:cc:80:
50:6e:bc:e5:8a:d8:e2:44:9c:32:71:b2:a4:62:e4:83:9a:6d:
d9:77:1d:ea:da:36:d7:9f:d0:c0:5f:79:8b:4d:d7:d6:ac:cf:
d1:32:1d:23:82:bd:4a:f5:58:26:9a:a3:f7:93:95:58:60:08:
ee:e3:6a:44:a3:29:2f:88:f7:57:46:3c:87:00:5d:8b:e7:3b:
3e:7a:e6:73:de:dc:f7:dc:91:4e:73:ec:29:42:9e:3c:4e:db:
c5:5e:24:76:43:33:4f:d0:c7:5d:21:c3:6a:69:67:aa:b7:21:
7f:cd:11:00:d5:d9:47:fa:26:34:35:99:51:27:6e:10:da:dd:
16:8a:0e:30:28:7d:65:2c:c0:9e:fc:ea:12:aa:d4:ff:b9:53:
6e:24:84:c8:80:ff:5f:ac:b6:61:1f:7b:92:05:30:05:9a:cd:
d3:21:2e:3f:98:af:ee:5f:9c:b1:60:6f:f6:5a:08:0e:16:bd:
c1:c7:b5:b7:9e:2c:33:22:13:c3:40:e3:62:41:3d:87:97:93:
e1:14:94:bf:3d:64:42:a6:2e:b8:2b:8e:c2:9f:75:ca:17:f1:
33:ce:16:15:b5:10:79:0c:cf:2f:31:09:e3:b6:ed:9c:7d:a6:
08:ad:cd:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:51 2025 by rpki-client