Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
File: 3OVg8OyFDainwPjW84JRAtTeSs4.mft (raw, json)
Hash identifier: l5up1aHVC+AWwQFd8ThQ3QUakkcmSy1/29nzJl6UigE=
Subject key identifier: 3B:7C:B7:73:1A:AA:CE:65:06:83:50:B2:9B:DB:36:56:E5:2D:29:1B
Authority key identifier: DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
Certificate issuer: /CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Certificate serial: 019655388EC9CE21AE49D47A27B3E0B9C765
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 22:01:31 +0000
Manifest this update: Sun 20 Apr 2025 22:01:31 +0000
Manifest next update: Mon 21 Apr 2025 22:01:31 +0000
Files and hashes: 1: 3OVg8OyFDainwPjW84JRAtTeSs4.crl (hash: wWkSo60z++wI3YmfsZpym35tg+DE/uuX/PrL3T2XRME=)
2: cvAMZ-azozJjAwqBJfc2rmmZkME.roa (hash: Gewk40CVQw5q21r2SfPnFc/pGMGpE0T4SZt3vyzVUaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:8e:c9:ce:21:ae:49:d4:7a:27:b3:e0:b9:c7:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dce560f0ec850da8a7c0f8d6f3825102d4de4ace
Validity
Not Before: Apr 20 22:01:31 2025 GMT
Not After : Apr 21 22:01:31 2025 GMT
Subject: CN=3b7cb7731aaace65068350b29bdb3656e52d291b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:19:7a:ea:fe:39:35:4c:6b:ff:5f:41:98:22:
1d:de:f1:11:5e:e4:d6:3e:53:77:2c:b7:20:00:2b:
f7:1e:1a:0b:03:64:de:b2:ce:ba:90:f7:ee:10:31:
cd:20:b6:04:f8:4c:bb:3b:d2:80:32:37:34:94:2a:
70:b3:f5:14:b3:4e:10:30:ea:32:55:4f:cd:a1:9d:
a0:6e:08:40:ad:ce:9d:74:7d:40:f9:52:20:4a:cd:
a2:5a:18:8b:7d:1e:8e:7e:02:05:98:33:87:8f:53:
95:5d:16:57:68:e3:de:ea:8a:a2:c7:09:33:56:3f:
a6:70:3d:85:de:42:fe:8a:8f:49:54:fc:d5:18:0c:
14:bf:1e:76:52:d5:da:8b:ea:88:0a:21:93:18:0f:
e2:76:a4:59:2e:fa:34:8a:11:5a:0d:29:d6:3f:56:
0e:ce:f4:05:5a:55:2e:46:87:7a:04:4e:64:cf:fd:
7f:a5:80:ab:bf:0d:b8:55:80:a5:93:8c:94:0e:91:
40:2b:dd:fd:ed:4a:68:e8:e1:78:07:95:0d:4c:18:
e5:87:e5:2e:10:ec:94:3d:ea:30:6a:c7:a0:ac:8f:
71:53:e3:34:f7:ee:ae:88:37:1c:f4:a8:c1:85:db:
50:87:9d:a6:6f:f6:81:6a:f6:fd:f7:47:42:12:90:
6d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7C:B7:73:1A:AA:CE:65:06:83:50:B2:9B:DB:36:56:E5:2D:29:1B
X509v3 Authority Key Identifier:
keyid:DC:E5:60:F0:EC:85:0D:A8:A7:C0:F8:D6:F3:82:51:02:D4:DE:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3OVg8OyFDainwPjW84JRAtTeSs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/053d39-374c-4387-9945-431f75ba8675/1/3OVg8OyFDainwPjW84JRAtTeSs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:89:72:41:66:e6:09:ec:cd:a5:a8:ea:74:25:83:1c:20:54:
61:ee:01:ba:4c:15:7d:a0:43:4a:e2:7e:ee:da:b2:eb:49:49:
5b:04:b0:f4:ea:d8:f7:78:4c:3d:b2:96:1e:df:c7:fa:5c:46:
05:f1:21:93:f4:94:98:47:14:05:73:b3:31:e7:17:10:fc:c8:
20:63:3d:04:b6:c8:39:75:27:e9:b8:13:94:9d:7b:6c:25:29:
dc:c8:bc:b5:19:d9:bb:9f:a3:e8:8c:78:bd:a5:6f:8a:11:ec:
df:cb:a3:c5:40:c6:6d:c8:d6:c5:ae:d9:1e:8e:b4:c5:cb:cf:
a6:d9:78:b4:f5:c6:75:55:74:a5:ef:aa:3c:a4:0e:c6:b0:96:
c0:3b:87:97:d6:df:12:e0:42:6a:38:f0:6a:c9:2c:6c:d9:d2:
34:24:81:8c:9b:6e:5d:37:48:28:1c:ce:56:39:32:e9:28:b2:
ec:f2:3d:00:22:bf:96:e4:0c:77:b7:f8:56:ba:f5:45:6b:dd:
c7:df:8d:e2:82:c4:ea:55:df:71:cd:65:42:66:be:65:f3:b5:
3e:95:b3:d5:41:9b:88:a1:2c:5e:20:ad:a6:1f:eb:fb:a4:43:
cc:6e:b8:dc:c8:58:c7:57:46:65:98:ad:b1:bf:2f:88:2e:9d:
5f:35:68:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:09:43 2025 by rpki-client