Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: XMQuJw9Mu9PX2Si391p4ngPTnrAf1kZJeG0eGarbvMU=
Subject key identifier: 0D:A0:45:E4:D2:08:D1:5D:F4:64:8C:DE:B6:74:58:17:79:18:66:2B
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 01976817D6645F516010702B9BFDCFE61703
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 159A
Signing time: Fri 13 Jun 2025 07:01:22 +0000
Manifest this update: Fri 13 Jun 2025 07:01:22 +0000
Manifest next update: Sat 14 Jun 2025 07:01:22 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: X5YcFDlZS32C5AKXii4hvko22+LntB0iXiU+baQuNmQ=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:17:d6:64:5f:51:60:10:70:2b:9b:fd:cf:e6:17:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Jun 13 07:01:22 2025 GMT
Not After : Jun 14 07:01:22 2025 GMT
Subject: CN=0da045e4d208d15df4648cdeb67458177918662b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:18:e2:00:1e:8e:4f:8c:e6:3e:7d:dc:f6:c1:
af:b4:41:83:da:a4:86:68:51:6d:0f:4e:f2:93:24:
6c:48:40:fe:c2:89:db:7a:4e:a5:f5:ea:6f:68:86:
6c:ec:fa:37:54:9e:61:84:68:53:84:8a:55:49:92:
93:f0:6e:74:a8:d5:b2:bd:05:c6:33:0d:09:03:ba:
59:79:91:96:35:2d:41:56:28:77:32:a6:92:ef:0a:
d4:1c:77:e5:97:d5:45:4c:61:01:a2:ac:99:a8:28:
0c:8f:3e:ca:f0:d1:f0:f2:65:d9:ba:ad:c3:5d:d4:
e0:29:17:d0:4e:8d:7f:da:6a:8c:e8:bd:dc:cf:b2:
65:a2:90:a4:6c:fb:e6:32:95:e5:04:36:f8:29:7e:
01:a6:16:6d:18:58:01:2c:8c:fa:47:cb:dc:f4:53:
51:13:3c:0a:9c:49:7c:83:db:a7:17:14:45:c3:cb:
0d:bc:e4:c1:b6:0a:a7:9e:f3:3e:6c:ee:a1:d6:2e:
50:04:20:ca:b9:7f:5b:7b:54:81:b7:37:1a:4c:a7:
c3:7c:3c:a1:fc:52:be:d4:9a:59:9e:3f:3b:8a:95:
1c:ae:3e:73:a4:b0:2c:9c:4f:27:85:d5:d5:58:e3:
d4:7d:25:a1:18:cd:b4:eb:a2:62:93:3e:63:c2:ba:
f9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A0:45:E4:D2:08:D1:5D:F4:64:8C:DE:B6:74:58:17:79:18:66:2B
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:05:5b:16:7d:39:ef:91:89:c3:24:90:61:eb:65:7d:82:1d:
dc:27:e2:20:f6:97:32:38:3e:85:25:8b:69:8a:0f:c8:59:29:
7d:79:cf:97:c3:6b:4a:c9:06:b2:7f:ee:57:64:62:87:fc:7c:
3f:50:81:fe:5f:4a:94:02:ed:6c:0b:5f:fd:71:36:39:8a:1d:
40:78:e5:1c:ec:8f:08:19:66:22:e4:cf:fd:9d:2f:b1:1a:32:
70:6d:77:84:7c:c4:d4:f2:97:04:70:68:1e:77:f9:8a:35:2c:
2c:0b:0f:c7:e9:80:af:fe:fc:e8:55:79:34:9c:6c:70:c9:0a:
11:e6:d8:09:c3:f5:a0:29:8e:1c:23:1a:84:f8:7d:d0:5f:02:
7f:cc:39:84:c6:aa:d5:ad:9f:38:32:c5:c6:99:d6:ce:99:d6:
7b:15:07:3d:0e:e8:44:de:d6:81:86:5c:e9:b0:5a:35:dc:4b:
2a:92:4b:6f:11:ed:df:af:f9:f9:c5:f8:62:58:2a:28:2f:bf:
4f:a4:7b:27:44:7c:d9:80:7b:5d:f7:32:4e:7e:f3:b7:82:22:
b7:7f:c4:64:9c:b8:1d:45:68:19:98:ee:de:35:93:ab:93:cd:
0f:09:4a:5f:d0:d7:6e:4a:47:74:54:36:b4:e4:47:28:ea:a6:
40:76:2b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:46:25 2025 by rpki-client