Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
File: 3XGhKciwiZWUIZnqbRsigmU1DQs.mft (raw, json)
Hash identifier: MCClymyOmtEEYEH+lj2ftpQXX9pQb5qG4De7OmWuvbw=
Subject key identifier: 40:2F:20:CD:55:BF:9B:6A:C1:1C:F1:94:5D:1A:68:1C:B3:95:06:1C
Authority key identifier: DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
Certificate issuer: /CN=dd71a129c8b08995942199ea6d1b228265350d0b
Certificate serial: 0197493181EE02CCDE699B022CD5DC3681A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 07:01:10 +0000
Manifest this update: Sat 07 Jun 2025 07:01:10 +0000
Manifest next update: Sun 08 Jun 2025 07:01:10 +0000
Files and hashes: 1: 3XGhKciwiZWUIZnqbRsigmU1DQs.crl (hash: wQvkn7MdQ1BmHdz3dyFttT/JpUmSl60ZrtlvH/Exo70=)
2: OwG4_h94ip7CzANECDf39dfwNGk.roa (hash: XIXqYD1CZdADAiBPHja+pimegzmDxikS2efUTrBV4t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:81:ee:02:cc:de:69:9b:02:2c:d5:dc:36:81:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71a129c8b08995942199ea6d1b228265350d0b
Validity
Not Before: Jun 7 07:01:10 2025 GMT
Not After : Jun 8 07:01:10 2025 GMT
Subject: CN=402f20cd55bf9b6ac11cf1945d1a681cb395061c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1a:8d:a7:89:00:6c:07:d7:f6:cf:86:27:8f:
fa:10:b6:8c:03:26:f5:16:56:b3:4c:eb:bc:22:60:
57:5d:d8:ba:ef:4a:f1:1b:e0:0c:ca:38:67:32:4a:
9d:9f:a5:35:8a:bc:a0:49:02:91:b0:cc:c3:29:a2:
e3:45:ba:f1:c7:0a:e7:3f:d1:dc:9a:65:2b:38:1e:
6e:f3:6f:29:2d:a1:de:3d:f7:54:f2:ae:25:1c:ce:
95:44:95:c7:fd:a4:65:08:9a:99:ee:71:39:22:68:
d0:cc:77:64:e1:a2:6a:8b:79:ad:7f:83:35:24:aa:
81:fc:a4:10:72:da:d3:8c:3b:bc:3d:28:2e:2f:3d:
25:be:dd:1e:74:47:a2:6f:8a:d4:b3:48:0b:e3:14:
38:67:28:ab:ed:b8:0b:c8:0f:cc:51:cf:6f:93:7b:
f7:e3:0a:30:2e:0a:92:75:aa:e5:b4:a8:26:75:26:
53:43:39:d1:a0:41:bd:79:02:c1:06:2e:e5:51:d3:
f6:19:76:f2:b4:b3:21:dd:cd:62:34:23:9b:f4:71:
d4:a8:f6:12:34:3d:82:95:6e:5a:0c:4d:74:d3:03:
e6:18:65:56:b5:69:17:8e:5e:4c:cd:4b:5e:7a:06:
bd:f5:71:0d:ea:cd:5e:46:b2:30:3d:9d:e5:38:fc:
ac:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2F:20:CD:55:BF:9B:6A:C1:1C:F1:94:5D:1A:68:1C:B3:95:06:1C
X509v3 Authority Key Identifier:
keyid:DD:71:A1:29:C8:B0:89:95:94:21:99:EA:6D:1B:22:82:65:35:0D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XGhKciwiZWUIZnqbRsigmU1DQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/b499b6-01f4-442c-be76-c0d8c866893f/1/3XGhKciwiZWUIZnqbRsigmU1DQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:e7:e8:99:34:1e:21:81:ff:3c:f6:be:04:0d:ee:08:0b:0a:
9a:6d:06:23:3d:ac:d5:ac:92:25:70:e3:43:d2:80:c3:d6:91:
45:3b:17:93:58:a9:d8:38:1f:7d:96:4b:32:5c:7a:b6:cc:c6:
1b:91:97:fa:81:4d:43:dd:77:62:c2:83:c4:d3:eb:b8:0d:7f:
0a:79:b7:7c:58:5a:26:57:99:26:c3:fc:06:f2:ac:5a:e0:02:
6a:8c:f4:31:90:17:b2:ee:fc:fb:89:55:c2:eb:72:e9:68:bc:
73:0e:bd:f2:8a:fc:d1:23:4a:4c:e6:26:79:13:27:fb:b7:b5:
fc:20:dc:f5:60:28:ee:6e:1f:16:55:c6:e0:55:4f:f8:2b:16:
22:5b:1e:f4:e1:13:1b:86:22:de:00:74:32:6c:b6:e0:f8:2c:
5c:57:26:2f:b9:3b:b7:07:a3:6a:86:90:bc:e4:8b:75:f6:72:
83:f4:d6:c0:b4:d2:1c:82:cd:b8:1d:f7:8e:fe:fb:03:f6:3c:
de:40:fe:5f:df:99:bc:09:d0:86:a6:cf:37:cc:b8:a3:1d:69:
42:65:e2:90:02:21:46:f3:15:9f:e2:b5:1e:ed:aa:fc:78:f0:
cd:65:ee:07:85:ac:1e:3e:ef:68:2b:4d:95:c7:a8:83:d3:77:
d4:79:7a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:58:08 2025 by rpki-client