Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier: Ti1KtM9R/n1mc7krvEiTfZn37Q+R2e8Qbb5gDsJfRAA=
Subject key identifier: 83:63:F6:AD:86:71:C2:46:D8:14:30:93:CC:3E:27:F2:50:8E:E7:33
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer: /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial: 019754597CC070E9501A10EE8E658F179398
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number: 0352
Signing time: Mon 09 Jun 2025 11:00:40 +0000
Manifest this update: Mon 09 Jun 2025 11:00:40 +0000
Manifest next update: Tue 10 Jun 2025 11:00:40 +0000
Files and hashes: 1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: Ya1cKb6VBzbwtaSU6FdG4DVSkm6ZDIHS2pIHqF0behU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:59:7c:c0:70:e9:50:1a:10:ee:8e:65:8f:17:93:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Validity
Not Before: Jun 9 11:00:40 2025 GMT
Not After : Jun 10 11:00:40 2025 GMT
Subject: CN=8363f6ad8671c246d8143093cc3e27f2508ee733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7b:f9:35:c0:e9:cc:e2:cc:dc:9e:0e:67:18:
94:7f:04:e4:5e:2d:0c:d1:5e:9b:2c:cb:cb:4e:91:
3e:16:30:1d:2c:7d:05:d9:13:9f:01:fb:3c:13:67:
80:e5:8c:7c:a8:8e:3c:16:a5:3f:7f:ba:f7:fd:2a:
62:fd:20:b6:cd:80:36:ef:64:25:1b:99:87:e8:9f:
73:55:60:91:87:83:f5:38:04:3d:ee:ee:f0:1d:b2:
76:66:d2:ee:6a:05:75:75:29:97:68:3f:fc:d0:41:
55:26:1e:95:f6:50:19:83:77:1a:ef:e8:e5:e4:a9:
e5:45:12:ce:49:e7:26:c9:8a:4b:0b:27:73:de:7c:
3a:95:41:2f:8e:d7:e9:f7:15:6d:ae:d6:fc:1a:c8:
06:87:c2:e7:11:6d:9c:b0:94:bc:ff:29:62:73:1b:
6b:7a:2d:9c:11:ba:4c:01:15:83:24:c2:24:2c:d1:
b9:33:7c:db:31:fb:15:0a:0e:f6:63:2c:5d:a2:63:
93:ab:1b:73:58:46:12:6b:5b:52:cd:41:25:70:f8:
d1:30:56:bf:0e:1a:87:d4:97:2a:b8:d5:e9:9d:31:
78:d7:da:3a:c2:ec:6a:c3:1f:fc:1f:8d:f0:d8:0d:
cc:56:19:ba:4c:6c:22:38:df:fd:03:1a:0a:a4:38:
0a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:63:F6:AD:86:71:C2:46:D8:14:30:93:CC:3E:27:F2:50:8E:E7:33
X509v3 Authority Key Identifier:
keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:76:e4:ce:ae:79:1d:6d:2d:85:a0:83:7b:81:13:de:11:2e:
3d:ad:c9:b3:eb:5b:c2:b1:8b:dd:d0:c9:8c:61:ea:7e:7e:42:
ea:a1:06:6e:64:00:f7:a0:19:06:75:cf:98:de:52:3a:ad:84:
6f:21:89:88:30:a8:16:b5:28:bd:75:5a:b5:a7:e1:9c:be:1d:
8a:ae:1e:0e:ae:70:1b:fd:8f:28:98:8a:4e:fb:8e:f8:3d:22:
72:2b:93:70:b3:74:f0:29:02:ea:b2:ac:b2:1c:b2:48:c8:6b:
cc:20:45:fb:b9:df:e9:b9:73:28:3e:f5:e1:c9:25:62:83:99:
f5:08:90:c5:8c:91:ab:07:af:a6:9b:b2:e0:94:19:4f:fb:80:
18:19:e4:68:5e:64:f4:b6:06:34:ab:3a:03:a7:15:94:ce:37:
d4:fd:27:25:c8:99:9f:30:d2:fb:c7:87:60:1f:5d:69:9d:86:
37:3f:d7:7f:ae:98:ad:40:24:63:a7:46:4e:cb:25:39:93:3f:
46:1b:51:89:cb:b8:45:49:bf:94:fa:13:8f:df:2c:35:f1:81:
97:b3:6f:c4:0d:6a:dc:2f:8a:3a:c8:ef:07:5b:77:aa:21:58:
5b:15:4a:b6:79:c1:8b:e1:a0:c5:50:17:e7:3b:48:3e:65:89:
0d:6e:d8:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:48:01 2025 by rpki-client