Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: fFnilo6ZA6EBNM9wX34GYi7glICpPcrVYOzQ0PPLRA0=
Subject key identifier: EA:ED:86:D6:22:17:73:90:CE:96:E4:0E:A9:72:A2:8A:4E:3B:1F:C0
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019749D619C4C4184829BE13E75C9AFA8ACA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 13A0
Signing time: Sat 07 Jun 2025 10:00:57 +0000
Manifest this update: Sat 07 Jun 2025 10:00:57 +0000
Manifest next update: Sun 08 Jun 2025 10:00:57 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: UMAz4Rgol+qDHOdkoFfzIffx/2Ah0jb3NE7gH/9eZnc=)
2: WwmcE7wGl7pyI1JEZUrcMqc8ydE.roa (hash: eYdzJRuLYCeHIGBMM52itYWmfWw58ujov0m3EgFoPMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:19:c4:c4:18:48:29:be:13:e7:5c:9a:fa:8a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Jun 7 10:00:57 2025 GMT
Not After : Jun 8 10:00:57 2025 GMT
Subject: CN=eaed86d622177390ce96e40ea972a28a4e3b1fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ea:c4:81:5b:32:af:2f:b9:c1:9d:ae:03:33:
1c:26:0a:52:08:7e:76:a9:f9:c7:7e:9e:dc:dd:b3:
c2:81:e0:11:3d:8d:35:ac:b4:39:12:79:4c:7a:96:
b8:f6:cc:c1:5e:96:fa:c9:25:cb:7d:75:f8:05:22:
d2:c0:bd:73:f0:55:06:9a:11:76:e5:35:6a:11:80:
b4:88:7a:6f:71:8f:64:0e:14:1b:91:c9:24:c3:f3:
3f:2a:38:01:65:a8:25:ac:6f:5b:77:ad:5e:86:99:
36:71:a2:cf:8c:df:5e:a2:73:18:52:ce:1a:39:69:
4c:7a:a0:4a:e5:9b:c9:16:42:a8:bf:01:94:4e:fe:
27:3f:dd:a8:46:1a:38:47:c5:01:24:ae:8e:39:94:
a9:b4:13:bf:86:03:78:55:65:d5:6b:00:7e:90:a4:
e8:3f:bd:2a:e4:27:91:e8:ee:1b:b2:89:f0:16:37:
fb:08:3d:2c:23:db:af:25:d7:25:99:f9:1d:7f:d6:
4f:cf:30:b5:c9:69:5b:d9:e1:7c:d1:a1:84:c8:b6:
ba:8b:e5:5b:de:cd:63:92:25:a8:16:9e:b6:53:e9:
12:c7:cf:56:52:31:9d:74:bc:8b:e9:ef:03:56:a5:
d8:69:8c:08:66:8e:85:ce:fa:1c:45:9b:54:fa:77:
37:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:ED:86:D6:22:17:73:90:CE:96:E4:0E:A9:72:A2:8A:4E:3B:1F:C0
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:b6:09:9c:32:de:ec:17:c1:38:48:b4:06:c5:49:6f:87:f5:
f3:70:1c:75:00:81:40:e0:47:34:b1:88:bc:92:ab:e6:6c:b8:
b1:16:21:b7:33:b4:ee:01:d5:8c:11:22:08:4c:24:b0:76:82:
7b:3c:62:ae:d6:ad:d8:59:67:66:d4:f8:59:b1:73:7c:65:2a:
ff:ae:4f:51:4f:2e:f3:e4:e0:d7:11:6c:95:99:5f:c0:1f:eb:
48:5b:20:a1:77:7a:ff:c7:de:e8:6c:18:fc:91:c7:ba:d8:bb:
87:a9:37:28:03:75:9b:2e:8a:ba:09:fa:9e:cc:fd:19:d6:e9:
8a:8f:6e:be:a0:0d:45:49:2a:b6:d6:b0:e3:a0:e7:81:2f:67:
b6:e2:68:71:05:90:e9:25:2f:59:c8:40:e5:ba:f0:5d:77:e0:
78:af:85:23:fa:64:4d:42:cf:00:fd:ec:bb:76:3e:de:0b:70:
29:4c:57:06:34:09:9b:9a:7d:74:b1:fe:07:af:05:5c:74:f0:
14:d6:72:c0:50:04:f2:e3:20:7e:ed:93:93:25:13:67:90:85:
93:a5:7d:2a:15:3a:85:57:12:58:8a:b2:77:13:2f:22:87:76:
3c:c6:a6:6f:ab:bf:ce:61:d0:ef:d2:6d:5d:28:b2:1a:6e:4d:
36:43:42:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:10:31 2025 by rpki-client