Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: CvPjsOuMbz/qRtmmz5hojMQSNj8MpR9xkXPW79/DK6A=
Subject key identifier: 35:AD:52:64:FC:44:EA:B3:D6:88:CA:17:0F:E2:5D:3A:08:5B:7A:52
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 0197624C2DFC9482A083E46A387451939526
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 1597
Signing time: Thu 12 Jun 2025 04:00:49 +0000
Manifest this update: Thu 12 Jun 2025 04:00:49 +0000
Manifest next update: Fri 13 Jun 2025 04:00:49 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: f6hCG3LYGx1d+Tq8HiUcPyTYboiDruoOhukDrPIcYhI=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:4c:2d:fc:94:82:a0:83:e4:6a:38:74:51:93:95:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jun 12 04:00:49 2025 GMT
Not After : Jun 13 04:00:49 2025 GMT
Subject: CN=35ad5264fc44eab3d688ca170fe25d3a085b7a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a6:c5:87:c0:d5:26:51:b1:46:63:78:ca:c1:
14:4e:8e:6d:40:70:cc:44:31:56:af:40:d8:4e:88:
aa:f5:97:88:88:e1:62:a0:05:49:c6:b6:fe:6e:f6:
fa:6e:59:a6:ae:08:d0:49:f4:06:ee:fe:d0:fc:57:
3a:51:99:a7:07:c1:df:cf:3c:2a:52:b8:af:3b:15:
2c:fa:2e:a4:14:fb:a3:34:01:12:99:f4:7d:6a:27:
a4:67:2d:0b:bd:86:46:84:79:02:94:c3:6c:11:6d:
1e:fb:63:13:0f:95:4d:2c:99:48:ae:95:41:5c:e7:
9c:bc:2a:a1:8c:bd:a4:1f:be:9c:eb:fe:2b:85:7e:
7a:3a:3a:8c:13:b3:bb:fd:2e:37:db:cb:1b:36:3f:
ed:e9:24:da:aa:89:4b:78:1d:8d:5a:0a:b4:a8:fa:
64:46:cd:bc:d9:06:e9:b3:3b:2b:70:63:17:37:ea:
ee:0d:00:da:f6:a5:f5:65:c8:28:bf:d2:c4:ee:0a:
86:9f:18:d7:07:6f:57:4b:56:85:21:e5:a6:b8:aa:
9e:20:f1:ad:3b:e4:72:e4:a8:52:8a:ce:99:59:df:
33:a9:52:fa:78:ad:ef:14:37:5b:87:56:03:3b:f4:
e4:00:b2:88:9d:20:7f:d9:dc:ea:75:54:c8:db:66:
59:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AD:52:64:FC:44:EA:B3:D6:88:CA:17:0F:E2:5D:3A:08:5B:7A:52
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:7b:90:67:e7:2e:e6:fa:4d:4a:c3:92:cd:bc:cc:df:13:2c:
4d:b3:e5:3a:df:b0:40:a4:71:e8:d7:96:27:9c:07:87:fc:a6:
ba:63:54:8d:ec:22:1b:39:14:04:85:fb:4c:bb:c7:08:3b:62:
b2:00:7a:2a:fe:a2:43:cd:91:22:77:5a:a7:bd:ce:f6:5b:1b:
3f:f0:1b:aa:af:c4:49:0f:f4:be:11:86:db:60:4c:96:33:6b:
c1:a3:97:55:ac:84:24:b3:75:53:ea:6a:0a:e2:23:73:f0:90:
b9:f4:3d:94:bf:15:29:54:3c:f5:7f:6b:27:df:f3:c7:8e:7e:
e3:5c:4f:37:29:a6:8f:31:40:da:2e:45:28:a5:53:3d:ea:c3:
80:64:62:77:45:ce:e2:9e:f9:40:c3:d7:93:0e:69:8c:46:4e:
55:8f:f7:bf:2f:99:05:85:93:7e:5f:6a:e1:26:3f:54:96:19:
52:08:9d:f4:a8:dd:7e:47:b9:a7:48:3c:d0:87:ca:82:98:8a:
25:de:4b:e5:f5:62:ee:e3:1f:2f:24:b1:7e:ff:0f:66:86:96:
e3:c8:af:7a:fb:f5:b1:3d:ab:49:55:f1:e6:8d:3c:24:5a:68:
79:14:c9:8b:64:91:15:0d:c4:54:b2:0a:4c:81:ce:9c:82:a4:
be:fe:d5:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 08:41:35 2025 by rpki-client