Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: 3As23xuC1GEjIVfiPC3IUehILYZZNySl/lEnxt7MSg8=
Subject key identifier: EC:C0:3E:F7:3F:5B:E9:CC:C3:34:A5:0A:87:05:08:A3:F3:97:25:FB
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 019746D4F1452A3E73FD3D5F2F011ACA31B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 1015
Signing time: Fri 06 Jun 2025 20:00:49 +0000
Manifest this update: Fri 06 Jun 2025 20:00:49 +0000
Manifest next update: Sat 07 Jun 2025 20:00:49 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: MOsWXRS4k9prKdRM6gdQT/8PBmZ13ojQbwS+gs5vr6g=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:f1:45:2a:3e:73:fd:3d:5f:2f:01:1a:ca:31:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jun 6 20:00:49 2025 GMT
Not After : Jun 7 20:00:49 2025 GMT
Subject: CN=ecc03ef73f5be9ccc334a50a870508a3f39725fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:8f:c6:9b:c5:7e:ad:9b:d9:1b:87:b1:2a:
c8:8e:e8:67:83:a5:1f:54:d0:dc:bc:d5:58:1e:1b:
b6:11:35:3c:af:77:6f:f7:1a:35:0d:27:69:25:af:
99:db:78:f4:1b:7c:d5:b6:1d:36:99:91:6b:59:28:
b2:2b:3d:22:50:37:3e:e1:4d:82:5e:ef:47:9e:fa:
f4:46:de:23:df:16:79:48:af:87:64:ac:d6:d0:28:
2b:5f:38:27:d5:dc:34:1d:08:c9:3e:e5:81:c8:f2:
37:f9:96:f4:ac:df:24:3d:e3:c1:bb:65:27:3f:7c:
75:fe:a0:05:ec:27:24:51:ca:9c:7f:ea:42:e3:98:
5c:a8:da:b6:5b:89:0e:45:5d:fd:49:5e:62:01:08:
04:0e:bb:ef:b9:95:51:a2:a0:97:9c:4d:44:fe:96:
ef:95:ba:03:66:6c:a0:e3:0c:93:f5:b8:cb:0f:8f:
d3:9a:b2:93:fb:78:b2:f2:c2:19:ec:00:d9:c2:82:
e7:21:3b:e3:f3:13:d5:81:34:30:3e:10:c3:f5:62:
fe:5c:bc:44:b5:20:3c:5e:8e:8f:f2:1f:ca:9c:d0:
44:7f:ae:42:b0:82:47:3c:74:ef:5e:c3:11:9b:be:
d4:20:97:9e:85:6c:81:f1:05:f8:5c:86:1a:ad:4d:
21:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C0:3E:F7:3F:5B:E9:CC:C3:34:A5:0A:87:05:08:A3:F3:97:25:FB
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:52:a4:b7:c8:a0:3d:eb:1f:16:59:19:4c:0f:e4:62:0f:27:
07:7f:19:a9:1e:f3:41:7c:0b:48:02:da:09:b4:6d:4e:aa:e7:
a4:6c:e7:3b:6b:f2:b8:fb:e3:2b:26:75:2f:38:dc:27:af:55:
01:5d:93:be:7a:4d:45:73:57:14:40:11:a9:36:83:51:dc:17:
25:ac:a8:99:76:78:d6:a4:68:f0:a7:87:05:77:d7:ce:73:3b:
1e:cc:60:4c:8d:15:a2:3d:03:6e:be:0a:6f:25:83:3a:8b:3b:
98:ca:18:f0:a5:64:14:e1:20:6d:9a:35:85:0d:91:45:ae:40:
fc:aa:60:66:e2:84:c0:aa:cc:ff:ca:98:4d:60:44:40:08:ab:
b1:ff:ca:98:28:26:ba:72:0b:72:12:8a:5a:d4:71:09:ef:80:
f0:59:05:78:f2:9f:7c:c1:23:c9:33:85:61:63:34:4b:f6:a5:
93:09:22:40:34:93:44:5f:8b:2d:eb:c4:5e:3a:72:7f:5c:0c:
7e:6b:d1:2a:3d:bd:88:62:6d:8a:42:eb:cb:8e:38:6b:02:50:
a3:b7:12:77:5a:46:bd:32:9e:b6:7e:59:09:99:bd:56:9e:31:
d6:e1:a7:a4:d3:61:87:61:63:79:5d:19:c1:07:02:be:05:8e:
12:41:9e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:55:49 2025 by rpki-client