Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
File: 3dya0lC4XNOZSUZbZoGy8d8U1qM.mft (raw, json)
Hash identifier: Ix4DkcpQwzd0kF9NQaFIoDB7Iw0fUbG/W+4vSDhlUEc=
Subject key identifier: F2:A1:7F:F0:EE:44:14:5F:AC:37:17:A3:B4:EC:C8:E3:FF:6D:43:DC
Authority key identifier: DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
Certificate issuer: /CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Certificate serial: 01974B1F8EFB019DC5BD0EE7510A3F028C69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
Manifest number: 0463
Signing time: Sat 07 Jun 2025 16:00:48 +0000
Manifest this update: Sat 07 Jun 2025 16:00:48 +0000
Manifest next update: Sun 08 Jun 2025 16:00:48 +0000
Files and hashes: 1: 3dya0lC4XNOZSUZbZoGy8d8U1qM.crl (hash: kmkUEMXwGsi/5a2Jb1/Y+mTQnDFSgtp88NMoB8h7Cq4=)
2: dA9DZPAABtlejc0G0adjQxYBv5c.roa (hash: 3UVeFl3N3ODI+QVLphkmL5y9dyL4Gw+YagDr/4SW4gs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:8e:fb:01:9d:c5:bd:0e:e7:51:0a:3f:02:8c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dddc9ad250b85cd39949465b6681b2f1df14d6a3
Validity
Not Before: Jun 7 16:00:48 2025 GMT
Not After : Jun 8 16:00:48 2025 GMT
Subject: CN=f2a17ff0ee44145fac3717a3b4ecc8e3ff6d43dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:0a:e8:4d:07:48:5d:af:cd:b4:46:7f:ca:
eb:fe:d8:d4:dc:a6:12:fb:2e:cb:a8:f1:3a:a0:2a:
ee:6c:7b:a0:f4:ad:b4:6c:03:e4:0d:5b:0a:dd:0e:
b6:70:7b:12:16:ce:4b:93:71:77:14:cf:07:27:54:
f7:5b:20:01:2c:b0:40:bb:78:5a:8d:06:56:1f:97:
21:77:f8:56:d9:f3:5a:8f:3b:38:bf:10:48:8f:a6:
44:82:df:ee:d1:b7:16:92:d0:ce:26:ec:6d:ca:7b:
60:e4:96:82:b7:5d:4e:0c:5e:55:bf:96:bf:0d:0b:
4b:bb:f8:2c:77:44:36:fc:fd:36:1e:ad:6a:dd:25:
89:18:ce:9f:7f:c4:da:c3:8a:69:fd:9a:a8:81:5d:
ba:51:14:07:9c:f5:7f:92:f2:61:ad:5a:2e:83:fc:
c5:0a:17:51:b2:9d:b0:8c:98:1c:28:af:d4:30:be:
69:9b:f9:7f:3a:a4:9a:15:f1:74:36:08:21:b6:7e:
d5:7a:38:91:a2:0d:71:a2:0e:f9:1f:d8:5c:87:d6:
e8:fe:b7:9d:49:d8:26:53:26:67:7a:ef:9c:de:75:
54:34:16:b1:b2:04:f5:48:6b:8c:2d:4b:10:1d:11:
4d:63:19:60:84:dd:0e:f6:a5:2e:33:df:91:3b:3d:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A1:7F:F0:EE:44:14:5F:AC:37:17:A3:B4:EC:C8:E3:FF:6D:43:DC
X509v3 Authority Key Identifier:
keyid:DD:DC:9A:D2:50:B8:5C:D3:99:49:46:5B:66:81:B2:F1:DF:14:D6:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dya0lC4XNOZSUZbZoGy8d8U1qM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/5bf948-977b-4b0e-b8e7-0d4318ca8c55/1/3dya0lC4XNOZSUZbZoGy8d8U1qM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:83:51:b3:e2:4e:91:14:7c:d3:e4:8c:16:c3:4b:62:fe:50:
24:38:ae:24:c0:a8:9f:1c:52:29:fd:1e:1d:db:9e:b4:8c:f4:
de:b5:98:48:cd:55:21:6c:cf:ed:e9:42:f4:9e:53:8c:ba:62:
a3:5e:9a:8b:2d:c6:43:a3:86:76:14:66:56:a5:d2:cf:d4:9b:
6f:a7:89:ad:69:11:27:50:79:6f:1d:c7:2b:04:39:b9:b2:8d:
a6:5f:f5:7f:8c:f4:90:61:d1:d1:58:c9:df:8b:fc:f0:55:c8:
1f:ee:9f:27:ba:c0:c2:53:1e:ce:0e:d7:38:58:90:2a:e8:51:
55:59:73:6c:69:ff:bb:0e:16:35:3f:f8:c8:89:1d:b1:29:3f:
9b:83:c5:9a:4b:fa:b1:6f:e8:39:57:f4:04:e9:cb:55:d9:f7:
8f:84:79:9d:58:04:ac:bf:26:5d:7a:fb:96:20:99:b6:e8:f0:
d3:d6:15:3d:04:90:d3:a8:fb:52:63:3d:e6:42:1b:b0:d6:72:
05:7a:94:7d:ab:1e:17:eb:d0:b9:42:73:e3:27:56:16:f9:ad:
11:cc:9f:23:9a:ef:ab:66:f4:73:9d:cf:4f:05:0b:f8:cc:ea:
28:e6:b4:c7:a9:2a:fc:ac:8c:8c:47:09:32:5e:a7:02:a8:0e:
8b:75:ca:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:14:33 2025 by rpki-client