Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
File: 3YpOHe5bseZXmxFhypEsqcA7Ru0.mft (raw, json)
Hash identifier: r5rfj9HFbHlm1OwsFjE92BGsgxJzHAPuB5nHZKtMVKk=
Subject key identifier: 49:E5:3A:99:36:5E:BF:EF:E0:93:A7:F9:77:80:34:A0:F9:05:B9:E1
Authority key identifier: DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
Certificate issuer: /CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Certificate serial: 0197488C5EF9B875CCFBB89D37669681A41A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
Manifest number: 0ECF
Signing time: Sat 07 Jun 2025 04:00:48 +0000
Manifest this update: Sat 07 Jun 2025 04:00:48 +0000
Manifest next update: Sun 08 Jun 2025 04:00:48 +0000
Files and hashes: 1: 1-hdiWMY5l0xAZuqxRKYMnls1-tQ.roa (hash: T86Jb9a9Ub4X+hYRFQtCytnDevJ3Vo4p0E2BCYldVL4=)
2: 3YpOHe5bseZXmxFhypEsqcA7Ru0.crl (hash: Vt+GAL/8aeqhztzJ7YQZbbnlObm1rdx3ok6yyaICVxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:5e:f9:b8:75:cc:fb:b8:9d:37:66:96:81:a4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Validity
Not Before: Jun 7 04:00:48 2025 GMT
Not After : Jun 8 04:00:48 2025 GMT
Subject: CN=49e53a99365ebfefe093a7f9778034a0f905b9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:15:12:fc:fd:be:31:15:76:30:f7:8a:27:a1:
9e:62:73:b8:07:8a:ed:15:c4:72:0b:fb:d8:48:32:
7a:81:8f:db:bc:6c:c0:52:0b:4f:13:00:e9:b5:72:
70:b2:fe:9c:af:e4:84:38:d5:ba:53:1e:fd:70:db:
ec:d1:a8:ad:ab:ad:1d:e0:cb:a5:83:a2:80:d4:7b:
6a:e3:04:9f:69:40:04:7b:e9:bc:e5:8e:ee:df:18:
cb:ed:65:40:b7:f8:6d:ec:4c:68:06:9c:d1:fb:fa:
10:7e:4b:f5:3a:e2:be:0c:7f:35:ce:93:c6:aa:57:
5a:07:d7:0e:7c:3d:db:2a:9e:13:f2:3c:89:3e:92:
43:5a:6c:62:f6:ef:2c:cf:9a:24:ef:55:8a:31:f2:
d0:a3:bf:df:4e:88:8c:9f:87:82:02:44:f6:5e:c4:
dd:31:b2:9c:69:f3:00:46:51:30:2b:80:c7:46:b6:
fc:51:35:60:24:5f:d3:da:7a:1b:5b:bc:34:ab:62:
07:70:bc:ce:94:0c:6e:51:d6:90:6a:f8:71:50:25:
5d:3e:0b:5f:0b:29:88:de:6e:d7:0a:85:21:c4:ba:
3b:26:6c:06:b1:c6:a6:7d:5b:aa:2a:01:ff:b9:c7:
6d:e7:78:5c:58:ee:26:57:f9:b6:5b:25:da:97:87:
fb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E5:3A:99:36:5E:BF:EF:E0:93:A7:F9:77:80:34:A0:F9:05:B9:E1
X509v3 Authority Key Identifier:
keyid:DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:3b:c8:0a:e5:08:93:7b:b2:33:7b:37:f6:11:6f:df:3c:73:
c2:a6:8c:44:e1:31:e8:0c:68:be:42:e4:87:ad:86:0a:5e:87:
08:06:b8:a8:d7:cc:bd:bb:9a:37:79:34:e5:db:6a:22:a4:0e:
46:9b:65:3c:2c:2e:09:f9:b7:ed:6c:65:18:96:71:1f:99:59:
26:65:05:02:81:a2:81:b1:73:21:af:fa:61:a3:1d:08:1d:34:
d4:11:a8:4f:51:d4:3b:aa:5e:02:53:82:04:cf:77:cf:59:cc:
ce:45:5b:64:d7:63:e8:1c:88:01:a1:33:b3:a2:0d:9c:da:d4:
ff:1c:78:58:b7:b2:65:84:a4:ea:07:28:be:db:b6:de:aa:1b:
89:df:43:f9:19:2e:d6:f5:c3:ed:b1:2d:cc:9e:e3:22:6d:7c:
33:04:6c:b1:f9:70:24:e5:95:1f:bd:0b:77:e8:b9:aa:8a:89:
b3:d6:36:b2:dc:3d:d4:60:23:da:05:19:ef:22:d8:4c:76:d4:
63:49:34:11:9a:5f:3f:85:3c:ba:4a:c8:92:77:d0:2a:d0:d2:
c5:3f:09:64:dd:a2:87:7a:a0:8d:3e:29:96:06:09:e1:71:e1:
56:91:ea:69:90:09:63:0d:e7:51:19:1b:34:ea:93:ea:f0:b0:
14:19:16:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:26:39 2025 by rpki-client