
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: J+TXQjNcc4qH5qqVFOHPC1EK8t94hBelO3v2UhG3UOc=
Subject key identifier: 04:12:50:20:F3:78:E3:42:72:BC:BD:EA:89:39:D2:7C:2E:94:D4:3B
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 019765F1C9ACB8BBB70FB7F3C861FDD81087
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 151F
Signing time: Thu 12 Jun 2025 21:00:33 +0000
Manifest this update: Thu 12 Jun 2025 21:00:33 +0000
Manifest next update: Fri 13 Jun 2025 21:00:33 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: 93ghreC46L0SAgwXM/9qii8GdWFOnGtMCiVzCQRL5QY=)
2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:f1:c9:ac:b8:bb:b7:0f:b7:f3:c8:61:fd:d8:10:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Jun 12 21:00:33 2025 GMT
Not After : Jun 13 21:00:33 2025 GMT
Subject: CN=04125020f378e34272bcbdea8939d27c2e94d43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a7:d5:f1:c5:9e:e3:a8:a1:3a:09:84:0d:a3:
53:ef:56:22:e9:e4:85:16:63:a9:d5:cc:84:b7:72:
37:a3:59:0a:8d:c2:55:82:0b:c6:80:23:3e:98:6d:
c2:93:9c:95:40:09:91:e7:5d:89:09:38:a9:ae:9f:
bf:8c:16:68:90:73:ab:8a:f0:f1:8c:e9:bd:15:3b:
8f:58:cc:47:af:63:70:bd:91:a8:dd:75:1a:cb:01:
df:1e:46:97:fe:c6:07:64:28:bd:c2:44:45:f4:90:
51:e7:13:d1:d3:66:30:e4:13:71:e6:a4:1a:81:70:
9d:13:11:de:03:16:6a:62:a6:c5:80:c3:b6:ab:ee:
77:b9:de:c4:a2:09:66:7a:a2:1a:ae:5a:92:73:3e:
87:b4:6e:c3:fa:ba:dc:d3:b0:96:2f:bc:49:f2:98:
73:f1:f7:64:16:d7:59:8c:5a:4f:6b:9f:ad:a8:69:
71:cf:fe:81:c1:bd:ba:2a:08:5d:c1:4f:bd:b3:c4:
ee:7c:35:7d:a0:5a:e0:52:b0:6c:8b:bf:1d:0e:c1:
8f:8b:cc:ef:95:1e:59:3e:63:65:71:df:c7:e3:5b:
bf:59:cc:09:e2:84:16:d0:09:49:ec:c4:c3:91:b2:
b9:6c:13:17:1e:e7:7d:40:5f:10:9d:93:9f:2d:1c:
29:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:12:50:20:F3:78:E3:42:72:BC:BD:EA:89:39:D2:7C:2E:94:D4:3B
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7f:18:19:a2:42:15:50:9c:01:07:d7:df:dc:b0:46:b6:d0:
3b:1a:f1:0b:28:a4:f9:da:25:6a:76:1c:a7:6c:2e:57:17:fb:
ef:f0:70:c6:21:fc:46:3d:d9:9c:e6:6c:60:bb:c3:c4:ab:67:
4f:1d:61:2f:97:7e:20:62:32:d5:2f:a0:57:5b:15:4e:01:31:
cd:19:e4:2d:49:94:b9:35:36:cf:0c:75:89:a5:f4:98:89:24:
76:4f:c2:7c:d1:56:13:78:2e:7b:d8:24:8a:85:01:36:98:08:
78:87:25:61:df:c0:d2:50:b9:56:62:4a:3e:09:c5:8f:79:cc:
bf:cc:cd:9a:fa:8f:b4:f6:e5:e1:18:db:d1:2b:1c:31:76:59:
a4:9b:56:d0:f1:70:5c:d3:82:c6:1e:e9:fc:3d:94:7a:93:9d:
38:45:72:50:e0:90:a9:4a:3c:87:26:3a:0f:4b:25:61:fe:fe:
a6:55:cd:2c:5d:bf:49:14:6f:cb:4e:fc:40:fa:64:0b:9a:1c:
1e:f3:6e:e9:f8:f7:84:a7:17:55:ef:c2:39:39:e6:ab:5d:66:
64:ae:42:67:8b:dc:2a:cd:23:55:70:7a:ce:16:a1:18:18:d3:
c0:a8:36:71:08:d8:27:60:3f:67:ff:e1:62:3a:b3:ec:c3:02:
c3:d5:f7:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 06:56:49 2025 by rpki-client