Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
File: 3YpOHe5bseZXmxFhypEsqcA7Ru0.mft (raw, json)
Hash identifier: 94U2EB4t2/7N0C9KUh8KgJvbOb9sxkPOS7wY9gg+p08=
Subject key identifier: 0E:FC:53:06:07:42:14:19:B0:DE:FD:8B:E8:79:1F:8C:91:F2:3D:ED
Authority key identifier: DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
Certificate issuer: /CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Certificate serial: 019849668D064BB08C241EC94AE0F9B65504
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
Manifest number: 0F54
Signing time: Sun 27 Jul 2025 01:01:53 +0000
Manifest this update: Sun 27 Jul 2025 01:01:53 +0000
Manifest next update: Mon 28 Jul 2025 01:01:53 +0000
Files and hashes: 1: 1-hdiWMY5l0xAZuqxRKYMnls1-tQ.roa (hash: T86Jb9a9Ub4X+hYRFQtCytnDevJ3Vo4p0E2BCYldVL4=)
2: 3YpOHe5bseZXmxFhypEsqcA7Ru0.crl (hash: KeQ5Y/soqDGm8aMjtss5laKxX6JBD9Y6EgutEqOoQsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:66:8d:06:4b:b0:8c:24:1e:c9:4a:e0:f9:b6:55:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Validity
Not Before: Jul 27 01:01:53 2025 GMT
Not After : Jul 28 01:01:53 2025 GMT
Subject: CN=0efc530607421419b0defd8be8791f8c91f23ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d2:af:7c:5e:d2:56:f3:c0:60:5c:a5:58:d7:
18:cc:60:f7:9a:d8:65:ee:3c:c2:36:8c:c8:f5:e0:
c8:04:9d:ab:f4:cf:e7:06:52:ea:96:b6:1e:ed:63:
80:a4:c7:2d:59:f3:f1:3a:11:14:7f:b1:18:72:bc:
d5:ac:30:fa:cd:eb:52:34:00:78:72:42:f8:cf:69:
c5:7b:89:5a:f8:36:07:e0:06:c6:db:f6:c5:7e:f0:
42:3b:b7:95:68:7c:e3:86:c5:63:85:f6:54:3e:b1:
7c:b2:4f:fc:2f:30:9e:c0:e6:85:a6:17:d6:34:a6:
dd:66:82:b4:7f:f8:43:e5:fe:a1:92:cf:04:1f:c0:
49:04:43:5c:fa:88:38:9a:4f:5c:0d:76:a0:48:c7:
f2:6d:25:1a:b8:53:50:c2:5b:ec:ed:45:3b:53:bb:
e4:a8:9e:42:64:2e:ac:e8:74:bc:53:b1:dd:4f:fb:
72:1b:0f:2e:68:c9:cb:9c:93:d7:16:88:83:f4:c6:
2f:75:95:9e:cb:c8:17:72:92:fc:b6:f1:45:7c:af:
45:c0:57:a2:ee:12:b9:95:4a:26:14:1b:98:31:45:
54:dd:d1:da:01:11:04:39:cf:21:bd:da:bb:48:55:
a7:8a:e5:11:33:23:bd:48:1e:c9:db:89:f7:66:58:
c6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FC:53:06:07:42:14:19:B0:DE:FD:8B:E8:79:1F:8C:91:F2:3D:ED
X509v3 Authority Key Identifier:
keyid:DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:2b:b2:92:af:0b:77:e8:fa:f6:f8:9e:92:c5:ed:53:e3:28:
23:cb:e7:11:60:52:67:b3:3d:ce:62:0b:63:4d:1f:22:4a:19:
9d:f6:ba:f1:a9:00:88:49:64:a3:25:2f:11:87:c0:d2:7a:d8:
f7:4e:aa:30:08:d8:63:9f:e8:e3:b0:04:ba:00:46:a1:6f:78:
af:7f:6b:98:0a:da:7b:01:84:be:cb:fe:80:ce:c7:36:a5:bd:
29:37:ac:76:8c:6d:de:6b:f3:86:e6:4f:b1:6b:79:a7:18:32:
7e:e5:0c:e1:23:37:5c:5c:00:7b:15:6c:d0:2f:3f:7b:16:67:
d7:bf:6d:1e:3f:bb:5e:ab:59:82:a2:99:8e:b2:81:3c:0c:6b:
64:7d:49:80:3a:13:db:3c:8e:f8:b3:60:30:2b:ef:58:98:90:
cb:d2:75:5e:08:0d:2a:3c:e3:18:e5:cf:f7:07:98:20:25:76:
85:40:42:a4:6c:64:20:e8:e8:67:a4:3b:59:bd:e0:3e:c2:46:
dd:0b:1c:82:72:c3:16:93:f1:00:1d:d9:1e:ab:a4:c9:2d:af:
ee:70:0f:9c:e6:df:4e:1a:27:78:13:56:2f:2b:57:4a:5f:c1:
76:89:45:7a:6a:32:e7:82:12:f2:fa:55:8c:0f:25:f1:52:0e:
e7:25:e8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 06:33:03 2025 by rpki-client