Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
File: 3AOqmk_p1gxc-FOpJIIiafHMdFI.mft (raw, json)
Hash identifier: JwtwNcQBSeUVR/tzYXwz9Vlxk6Ig5FS768D+sOzlUII=
Subject key identifier: 85:97:E1:DD:07:17:81:B1:21:9A:CB:97:BF:EF:06:4D:C6:2E:D1:4B
Authority key identifier: DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
Certificate issuer: /CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Certificate serial: 01974B563654058E9BEC6F46C8AEAF4920E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
Manifest number: 0B29
Signing time: Sat 07 Jun 2025 17:00:30 +0000
Manifest this update: Sat 07 Jun 2025 17:00:30 +0000
Manifest next update: Sun 08 Jun 2025 17:00:30 +0000
Files and hashes: 1: 3AOqmk_p1gxc-FOpJIIiafHMdFI.crl (hash: YsU8jmaZtpG/CqrBJYHyq1bPxUZsPWS8B9pw9+9q70o=)
2: qHsLN52OLV40PkdsNg1LTDhrI1k.roa (hash: o2jlcmcZCFuQ0+N7Kss7ufNJs+2izJmB43Pkb+WDd2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:36:54:05:8e:9b:ec:6f:46:c8:ae:af:49:20:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc03aa9a4fe9d60c5cf853a924822269f1cc7452
Validity
Not Before: Jun 7 17:00:30 2025 GMT
Not After : Jun 8 17:00:30 2025 GMT
Subject: CN=8597e1dd071781b1219acb97bfef064dc62ed14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:96:5c:a4:56:12:ad:18:4b:89:0e:8a:98:68:
ad:d8:5c:79:5b:71:1f:e5:ba:bf:e2:85:26:34:b4:
3b:d4:4c:98:fa:46:ca:2e:57:5f:76:97:43:50:1b:
c0:db:e4:02:2e:e8:dc:27:a0:af:f8:93:04:20:c5:
f0:da:4f:ca:fa:34:ed:7a:06:0c:53:31:11:74:99:
43:0a:fd:45:b0:a1:bd:8e:e0:ae:d9:ff:8c:8d:71:
c4:4b:aa:3c:6f:75:5c:73:d5:39:9e:10:d0:31:98:
c7:b8:a5:33:7c:66:f8:39:fe:59:a8:dd:75:42:23:
ba:5f:7d:6b:4a:f1:c1:c7:d7:6f:21:b9:5e:1e:f3:
ab:d2:cd:39:78:9a:0f:3c:37:62:0c:bc:2b:fa:ea:
6e:28:94:df:d3:7a:e5:1c:60:82:64:62:81:5a:97:
a2:b9:e3:52:5f:32:5c:b3:1c:87:eb:e9:a5:83:de:
82:2b:fe:00:8a:8a:a7:2d:45:f2:9b:5f:6d:83:00:
13:26:55:0a:36:ba:c4:43:ba:4e:41:11:c1:88:79:
66:aa:28:85:34:be:0c:5e:1b:9c:55:4c:03:e2:4e:
e3:48:97:4e:2c:ac:5d:d3:b0:ad:f4:7f:23:b6:3e:
2d:57:06:dd:56:40:8c:05:6e:22:e4:eb:0d:fb:fe:
2e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:97:E1:DD:07:17:81:B1:21:9A:CB:97:BF:EF:06:4D:C6:2E:D1:4B
X509v3 Authority Key Identifier:
keyid:DC:03:AA:9A:4F:E9:D6:0C:5C:F8:53:A9:24:82:22:69:F1:CC:74:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AOqmk_p1gxc-FOpJIIiafHMdFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d84e1e-cc53-4cc2-aab9-1ca766fbeeba/1/3AOqmk_p1gxc-FOpJIIiafHMdFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:12:c2:b0:c1:38:5f:79:1c:90:a8:49:d8:97:01:3a:0d:3a:
d0:fb:4f:72:da:91:6e:6a:03:5c:c3:62:16:9d:10:ea:01:21:
6d:6d:15:f5:de:b7:55:1c:5c:ee:d9:a7:58:c7:ce:19:8e:e6:
c1:1a:8b:80:a4:56:c3:40:00:9e:c7:4b:3b:9d:3a:83:7d:88:
b6:ab:b0:06:cd:2d:ca:ac:b0:78:d5:72:90:76:d7:24:6c:06:
a1:df:2f:18:2c:5b:c8:09:2e:07:90:f7:c2:16:45:64:fc:41:
4c:02:39:f2:82:1e:2f:69:56:d3:a1:4c:29:a8:0d:05:5a:57:
d9:c1:79:93:bb:4e:f9:c8:3a:a1:89:da:fe:bb:f0:1b:72:86:
93:c1:0d:e4:cd:ee:44:70:dc:99:7f:25:4c:a7:3f:21:fa:9b:
8f:4a:9d:33:63:f0:da:c2:5b:dc:d1:12:83:09:42:a5:94:ce:
0d:5f:8c:a9:e9:12:5a:50:82:2b:ea:0a:87:e0:d9:ee:2d:ac:
e4:05:5a:6e:ee:a0:4e:59:cb:02:25:f7:c5:9f:e6:7b:dd:a3:
dc:de:c8:de:0f:2d:b4:6b:d7:2f:f1:9c:23:43:1a:0b:1c:48:
75:35:a1:bc:56:4e:90:ca:75:b9:e5:0b:ce:8f:4e:a5:98:f4:
10:99:8a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:55:49 2025 by rpki-client