Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
File: 3YqroPRrqhRP2wk46RwU-UxhZQw.mft (raw, json)
Hash identifier: QLzGMAY70vOx1pyb6+zk4o9hv0bRsesC08t8yafk78I=
Subject key identifier: DE:2D:B5:F0:D7:11:BB:93:08:2A:94:37:77:48:9B:13:AD:C3:F5:3D
Authority key identifier: DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
Certificate issuer: /CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Certificate serial: 01964CD985E338999A7F31AB6E6B79DB496B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
Manifest number: 0C5A
Signing time: Sat 19 Apr 2025 07:00:46 +0000
Manifest this update: Sat 19 Apr 2025 07:00:46 +0000
Manifest next update: Sun 20 Apr 2025 07:00:46 +0000
Files and hashes: 1: 3YqroPRrqhRP2wk46RwU-UxhZQw.crl (hash: y2m2gY6sNHO5RNq1wIr9PVmffxpeb/0G1IUHPuB4FhE=)
2: jyRFM9_T_syhJNdrBbZtEXQjBxY.roa (hash: 3sN/6EgdGuf6mYlFqORSiJaf85S1hh85EE3f4pncjgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:85:e3:38:99:9a:7f:31:ab:6e:6b:79:db:49:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8aaba0f46baa144fdb0938e91c14f94c61650c
Validity
Not Before: Apr 19 07:00:46 2025 GMT
Not After : Apr 20 07:00:46 2025 GMT
Subject: CN=de2db5f0d711bb93082a943777489b13adc3f53d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:23:72:bd:9b:91:14:f5:2e:96:fd:d8:fe:39:
aa:22:fe:f9:86:80:fc:c1:a8:b5:db:72:9c:2a:61:
d0:d6:fd:15:eb:e0:d1:99:72:e2:5b:36:35:83:ad:
db:af:a3:1c:7f:f3:15:51:4e:cc:63:ce:e5:df:bb:
9d:9d:4f:0b:23:a7:04:0d:64:5a:72:64:90:a9:4c:
25:be:66:7c:81:42:6d:9a:70:c2:01:08:ed:4d:0a:
aa:f8:b6:57:84:c0:78:62:05:6d:30:55:03:58:50:
e9:ce:eb:48:5f:d0:b6:79:9a:82:90:40:61:bd:ea:
b9:f4:f4:c5:ab:eb:cf:e1:2f:4b:51:34:85:c3:55:
32:3f:44:69:f7:98:eb:19:ef:72:df:fe:55:c1:4a:
54:73:0e:12:d2:00:f0:88:43:5c:5b:46:73:25:a9:
6a:51:ea:57:91:f9:94:b4:aa:bb:fe:b2:05:0d:e5:
ad:2f:0f:d2:aa:71:c6:80:0a:91:cd:53:09:ec:01:
9c:a2:63:70:b5:d2:8c:0d:f1:d9:20:c3:9d:b2:e2:
c0:8a:c2:e5:f8:da:5a:54:ac:0e:bf:6d:25:21:60:
0e:c8:2a:36:05:6b:27:70:0f:12:43:9e:ee:eb:9c:
d1:d4:00:1d:4b:31:a3:d8:cc:84:fe:8b:e7:10:d4:
35:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2D:B5:F0:D7:11:BB:93:08:2A:94:37:77:48:9B:13:AD:C3:F5:3D
X509v3 Authority Key Identifier:
keyid:DD:8A:AB:A0:F4:6B:AA:14:4F:DB:09:38:E9:1C:14:F9:4C:61:65:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YqroPRrqhRP2wk46RwU-UxhZQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1fa27e-aaf0-4be2-a522-a80c94761d23/1/3YqroPRrqhRP2wk46RwU-UxhZQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:35:ee:71:65:5c:5a:b1:02:88:42:cd:dc:cd:c0:ef:5e:1b:
8e:8e:6a:ab:0d:ad:a0:b2:b1:c7:4b:4a:86:7c:b7:04:49:7c:
61:bb:83:47:f5:60:a9:31:14:97:3b:04:9a:50:bd:03:1e:74:
3a:30:ba:6a:93:66:58:b8:c7:94:8c:87:d8:3c:d4:ef:5a:f6:
bc:6e:33:18:c5:fe:f4:0d:97:27:f9:6c:4e:68:8f:37:66:71:
e7:3d:1d:c1:d4:b3:2b:57:c9:68:68:a6:32:4e:23:5c:16:13:
a0:3e:d2:30:07:e7:e2:58:47:23:82:2b:aa:25:80:b2:9b:f4:
5f:55:1c:76:89:ac:b6:aa:a0:f8:27:11:c9:a1:89:de:60:e6:
58:b2:39:e0:57:7e:8a:c3:ab:89:f1:7d:30:c8:21:32:f5:87:
41:9e:ec:01:17:f0:59:13:c4:f2:4a:f2:44:d0:e4:41:53:9f:
c2:10:c5:cb:a4:d6:a3:bb:1b:ab:fd:a5:e4:9d:ee:c3:ad:34:
33:82:8a:cf:f1:e6:3f:25:a8:80:4d:42:54:57:1e:d4:35:37:
3d:f2:e1:30:20:5c:90:6a:c6:92:9f:b9:66:e3:2e:2c:f7:8f:
35:62:08:44:40:10:fa:89:57:0e:5b:98:4c:0a:f9:47:a5:c2:
13:72:a4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:21:12 2025 by rpki-client