Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
File: 3KLzDk5paSsbT-zrrpH9VgS97JM.mft (raw, json)
Hash identifier: gJOqrFZ37V7g07ge7MHH8nYx7FUIh7F3b3aNvcdJhqA=
Subject key identifier: 58:8B:A5:C1:C4:E0:9C:A0:7F:84:C8:56:33:C3:BD:9C:B0:9C:68:82
Authority key identifier: DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
Certificate issuer: /CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Certificate serial: 0197504607AB2441F0264B507E1941273BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
Manifest number: 0539
Signing time: Sun 08 Jun 2025 16:00:56 +0000
Manifest this update: Sun 08 Jun 2025 16:00:56 +0000
Manifest next update: Mon 09 Jun 2025 16:00:56 +0000
Files and hashes: 1: 3KLzDk5paSsbT-zrrpH9VgS97JM.crl (hash: ji4lvQuwDUZJnbn3hNDluvVu/N8C3turr8HRFh9t9F4=)
2: AJoKV4qloK-gv346yQRe9jE_1Lc.roa (hash: cy9XY0oo3u/4Yi8UZQJSoFS5/DHP0ILoCjdTHcKoQDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:07:ab:24:41:f0:26:4b:50:7e:19:41:27:3b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca2f30e4e69692b1b4fecebae91fd5604bdec93
Validity
Not Before: Jun 8 16:00:56 2025 GMT
Not After : Jun 9 16:00:56 2025 GMT
Subject: CN=588ba5c1c4e09ca07f84c85633c3bd9cb09c6882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:50:2a:36:d5:4c:6a:6d:18:9f:a8:29:d8:a7:
30:88:3b:c0:3f:81:f0:2d:80:ff:1b:e8:24:3d:e2:
42:31:1e:9f:d7:b5:c9:1b:08:11:c0:e7:6f:33:b9:
83:7f:6f:b5:6c:f8:78:26:1b:ab:06:90:33:2c:ce:
30:ce:b6:a9:79:8a:46:36:ef:c8:08:1e:51:d1:75:
9f:82:d2:8d:be:7c:49:70:d2:b9:16:02:3c:aa:d5:
6d:f4:41:a9:50:39:e1:d4:1f:f3:ef:00:4a:09:2f:
c3:70:4f:24:c2:2a:a1:36:0f:dc:0e:2a:fc:33:50:
61:30:e2:15:d6:ae:62:f7:70:88:d4:c3:ce:8a:7f:
f5:71:49:e4:6a:82:53:6f:ab:a8:27:fa:01:fd:8e:
34:57:ea:a8:f9:8a:b6:2c:9a:9e:74:85:fe:55:16:
91:80:2c:c9:99:ce:92:9e:28:8a:95:01:08:07:dc:
db:f0:c3:e2:31:f7:0b:09:25:74:a7:65:f1:66:86:
2b:a7:54:51:88:bc:2b:f6:f9:5f:1f:7e:68:12:1c:
fe:ac:9f:bc:35:7b:46:00:72:c7:05:80:28:65:25:
da:c9:20:b3:90:56:c2:25:96:20:54:ad:84:1f:c5:
31:62:c0:40:5c:ce:e9:62:85:83:31:db:e5:33:f3:
01:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8B:A5:C1:C4:E0:9C:A0:7F:84:C8:56:33:C3:BD:9C:B0:9C:68:82
X509v3 Authority Key Identifier:
keyid:DC:A2:F3:0E:4E:69:69:2B:1B:4F:EC:EB:AE:91:FD:56:04:BD:EC:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KLzDk5paSsbT-zrrpH9VgS97JM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/036549-45d0-4565-828f-eb3e785d9097/1/3KLzDk5paSsbT-zrrpH9VgS97JM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:99:aa:f0:75:a0:ed:b0:da:09:74:d9:f7:1a:24:fd:ca:91:
89:74:d7:44:4c:5f:d1:38:a0:62:bb:ad:be:e4:93:42:29:36:
2d:09:98:dc:a4:4a:28:10:2c:1f:e3:6c:65:94:3f:5f:01:33:
8c:2c:09:0e:88:5e:32:34:5f:3b:bb:8a:c5:55:31:e0:f0:cb:
20:50:fd:8d:59:6f:a8:e4:9e:bd:02:b1:4c:a4:91:c3:48:d6:
53:ba:94:92:5d:f8:85:04:1f:b9:16:77:2f:4a:74:8b:51:b2:
90:7f:b1:b1:e1:ab:57:8a:a9:aa:1e:e0:d9:fb:83:b0:14:e3:
6e:de:ac:7e:e8:af:3b:94:89:e3:f3:4b:cf:88:16:47:0e:2b:
d9:10:fb:6a:c6:9f:b4:8a:88:02:f3:7f:f6:93:c8:73:b9:9b:
6b:2d:5e:09:46:65:3d:3d:c5:bd:47:03:ab:f5:29:e0:2f:94:
4e:d7:06:98:19:5f:98:73:a3:91:93:42:19:5f:dc:b9:ee:10:
63:7a:ee:0c:21:a9:cf:6f:da:91:cd:4a:dc:ce:71:24:4b:8f:
9d:9f:25:ee:35:99:28:44:47:01:fb:b4:9c:4e:bc:df:f6:fe:
c4:15:1c:06:d8:b2:3d:ca:cd:85:31:fc:bf:70:60:8a:47:93:
ff:cc:d8:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 19:57:11 2025 by rpki-client