Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json)
Hash identifier: +zV/I1TidBkXRlTLE2kGH1Tvbxqxrsi02lSl3RFatvs=
Subject key identifier: 45:E0:F2:6C:5D:96:D0:7E:5C:0E:57:91:DC:FB:B1:B7:6E:86:2D:1C
Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Certificate serial: 01974931540F7F9A293EDA68B5FFF98E6DE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
Manifest number: 0F3F
Signing time: Sat 07 Jun 2025 07:00:58 +0000
Manifest this update: Sat 07 Jun 2025 07:00:58 +0000
Manifest next update: Sun 08 Jun 2025 07:00:58 +0000
Files and hashes: 1: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: 9bM6tb4jPa4sHwFm2oGv9YQrbRJlXfGPjfXW5oacICs=)
2: JoXcYev6DySlst62DTDcDz1JN0Q.roa (hash: PRhyl4bdJivpbrgVw6w06UO6PZN+9+qwU0T6MPbrnFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:54:0f:7f:9a:29:3e:da:68:b5:ff:f9:8e:6d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Validity
Not Before: Jun 7 07:00:58 2025 GMT
Not After : Jun 8 07:00:58 2025 GMT
Subject: CN=45e0f26c5d96d07e5c0e5791dcfbb1b76e862d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:97:66:88:1e:e0:96:0e:7e:2b:ce:1b:20:79:
04:2a:46:5d:91:76:26:77:38:44:e4:b6:29:0c:05:
36:07:43:3a:47:54:43:9e:1b:4c:39:d8:3e:20:9e:
13:a8:7b:3f:eb:eb:6c:53:56:3d:2c:9f:5a:e1:e5:
ba:c3:7b:d6:dd:f7:2b:56:63:e2:d2:31:71:c8:8f:
8a:e6:be:b5:7a:45:b1:af:43:1d:24:cc:b2:29:75:
f4:72:89:95:e2:d8:b2:57:0c:71:03:3a:7e:a4:c7:
74:5d:62:73:7f:4b:a7:c9:b4:49:64:fa:98:3e:11:
da:95:08:bc:30:f0:ba:7d:0e:5a:e6:14:f7:18:ef:
5c:ea:6f:55:6e:f7:87:5e:5c:cb:f7:1c:2e:e2:2f:
b1:ef:57:f3:b4:d2:66:e2:00:d3:02:16:31:2f:0f:
46:b1:b5:de:79:c0:90:d4:60:75:3a:96:f7:f8:f2:
61:3f:90:fb:a1:10:64:6a:4a:5a:e5:74:41:24:3a:
88:61:3b:65:92:ac:c2:ec:de:48:59:d9:21:63:7a:
c7:ea:6d:7d:93:de:99:16:a1:b6:47:52:11:87:1b:
ef:bc:ed:a6:73:b0:54:1c:42:19:33:20:f6:37:35:
83:a5:d7:d3:b1:48:f2:bf:29:a2:13:3e:a6:ce:f5:
51:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E0:F2:6C:5D:96:D0:7E:5C:0E:57:91:DC:FB:B1:B7:6E:86:2D:1C
X509v3 Authority Key Identifier:
keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:50:9b:e4:34:d5:76:51:f1:16:59:ae:12:05:b0:ab:1e:43:
6a:4f:f4:a6:ea:41:2a:80:18:e8:ce:43:3b:07:b7:ba:2e:1c:
54:85:4d:b6:01:3f:93:f9:1c:4d:7f:54:d1:d1:2c:0a:5a:26:
af:80:59:f5:56:fd:1f:73:09:94:2c:98:ae:44:75:00:46:de:
43:cf:9b:a2:d6:22:29:e1:e3:1e:ac:73:e0:29:04:ed:cc:7e:
80:75:46:1a:5b:e8:22:5f:26:15:3c:45:37:80:ff:e4:7e:57:
a8:af:b3:e6:19:43:3a:76:8a:73:b4:1e:af:c9:63:8e:54:d7:
e1:e3:d6:23:3f:88:a2:b3:63:61:36:94:c3:06:14:29:95:53:
4b:e4:b1:4b:8b:32:c8:10:b2:b6:3e:02:40:96:27:4c:8f:7f:
34:d9:4c:6c:d9:f0:71:75:e0:b1:b3:8a:fd:91:b2:38:81:07:
c8:47:66:ea:aa:e6:12:fb:4e:c1:da:9f:49:f9:f0:92:2c:e4:
f1:90:97:d8:0b:c3:4e:f5:39:25:0c:84:69:86:b8:6c:14:be:
dd:36:01:55:ff:90:c6:a4:7d:51:e3:28:6e:86:56:eb:99:8d:
0c:9e:22:a3:30:1e:76:87:91:ab:6b:8c:da:d5:2e:3f:4a:50:
45:59:47:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:52:25 2025 by rpki-client