Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
File: 3PhcNsaW1dssu0j9Q-ghc37jQic.mft (raw, json)
Hash identifier: JVy4wu9RUldV3Hp/wgiFhxkfmqKGHWSAOoyRMaUDy30=
Subject key identifier: 46:1E:41:BB:74:B5:B3:BD:39:68:F0:C3:0A:FD:F5:6B:24:84:E9:A5
Authority key identifier: DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27
Certificate issuer: /CN=dcf85c36c696d5db2cbb48fd43e821737ee34227
Certificate serial: 01964331E7C3FDE59A561C2ADB6480B7D087
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
Manifest number: 0F2F
Signing time: Thu 17 Apr 2025 10:01:06 +0000
Manifest this update: Thu 17 Apr 2025 10:01:06 +0000
Manifest next update: Fri 18 Apr 2025 10:01:06 +0000
Files and hashes: 1: 3PhcNsaW1dssu0j9Q-ghc37jQic.crl (hash: vjmaAMS3Cgd2OWfe31PWXaOl0NnS2WQJpbP1t1nWGAQ=)
2: AuGSVrNkGgUtthLzU1YbunCRJmA.roa (hash: N+p3SVnY5s1RjPh5Td733eJn6W460syQCiw/MVZ+pqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:31:e7:c3:fd:e5:9a:56:1c:2a:db:64:80:b7:d0:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcf85c36c696d5db2cbb48fd43e821737ee34227
Validity
Not Before: Apr 17 10:01:06 2025 GMT
Not After : Apr 18 10:01:06 2025 GMT
Subject: CN=461e41bb74b5b3bd3968f0c30afdf56b2484e9a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:29:3f:98:f6:0c:18:40:6d:62:9c:c3:3c:1b:
4d:03:46:37:bf:ff:b5:be:ae:ec:73:ff:ff:28:72:
0c:4b:a2:b0:2e:b5:03:c2:3d:1a:54:57:24:68:df:
ec:9a:46:4b:be:10:2b:59:55:2a:98:f9:88:ff:78:
5a:5d:85:13:67:64:5f:f8:06:41:fe:d9:be:65:52:
38:a9:50:bd:c4:4c:59:11:15:2b:c4:41:b5:0e:ad:
4c:c3:98:3c:9a:23:b9:51:84:a7:b2:21:ba:45:09:
ef:a5:d4:1e:07:53:cc:27:f6:3d:30:61:3b:f4:01:
35:1b:31:90:2f:72:ff:19:0e:90:28:80:27:50:6a:
7a:c4:72:3a:4c:49:46:36:87:f7:1a:87:dc:d0:3f:
10:04:72:a4:74:d4:f4:e3:aa:9c:93:fd:67:55:13:
64:0b:79:ff:3e:ea:85:a9:01:d9:8a:57:0d:e8:46:
ef:c4:01:7a:51:c1:c9:19:7b:91:dc:98:78:8f:60:
53:2f:eb:61:6c:81:76:1a:ee:7f:16:b7:b4:fa:9d:
6d:8d:f5:10:f2:34:85:08:6b:f8:9d:7b:1d:9d:63:
59:62:53:4f:1e:d6:6c:73:64:c9:7c:54:c9:9c:1a:
c3:24:e8:fd:b9:7f:7a:99:ac:0a:66:5b:0a:39:ca:
a2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:1E:41:BB:74:B5:B3:BD:39:68:F0:C3:0A:FD:F5:6B:24:84:E9:A5
X509v3 Authority Key Identifier:
keyid:DC:F8:5C:36:C6:96:D5:DB:2C:BB:48:FD:43:E8:21:73:7E:E3:42:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3PhcNsaW1dssu0j9Q-ghc37jQic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/cfbc62-5d54-4327-b072-0f52f867178d/1/3PhcNsaW1dssu0j9Q-ghc37jQic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:2d:9d:b1:f5:7d:dd:1b:1c:f9:10:1f:91:62:d6:6a:2c:8a:
c6:b2:fa:e9:e6:45:af:d5:27:db:7d:c0:d8:b3:6c:cf:b4:ce:
7e:43:b9:74:98:ea:2c:7f:e4:57:e8:d2:1d:e4:47:1a:a2:27:
fb:89:fb:a3:fa:75:4c:3a:7b:d3:02:1a:1f:7c:0f:e5:7e:6e:
7e:47:6f:bc:3b:bb:bf:1d:e6:31:18:30:c5:ef:97:23:88:3b:
86:85:ac:5a:42:9d:e6:51:5e:9b:9c:aa:1e:81:f7:29:78:80:
a7:2b:44:5f:9e:2d:84:95:7e:36:23:21:45:6f:6c:e9:56:7d:
ed:75:37:2d:a3:bd:ef:a3:c7:4e:49:c9:f6:60:3f:8c:5f:3d:
b3:24:31:ef:78:16:bb:7e:19:bf:4d:9e:0e:31:0a:84:47:43:
d9:32:a3:0e:26:6f:40:e5:29:79:53:b8:51:5f:c4:59:83:91:
cc:b7:4f:f0:d7:da:16:a7:b1:03:64:af:cb:c3:4e:90:8a:2a:
1a:08:b3:b3:70:2d:ad:f1:30:84:b0:fe:5e:15:d1:3d:ef:85:
ab:9f:b3:92:ea:bc:18:94:53:59:65:0f:59:53:82:f6:73:6d:
e0:e7:d9:4d:2b:80:2f:db:a2:46:97:75:ff:6e:ff:9c:ff:0d:
78:50:14:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 15:06:32 2025 by rpki-client