Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
File: 3z_cS_M72A_hKNdWhD9gs51b7uM.mft (raw, json)
Hash identifier: 2WEYaldxfKVqODdDjtGnLO6pptAMKgm+qWKG8Ak8es8=
Subject key identifier: 9C:04:C6:AF:79:66:FC:37:FE:84:76:FC:3A:64:87:F8:F9:7B:89:EE
Authority key identifier: DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
Certificate issuer: /CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Certificate serial: 0197488C302F6C675C24580DF24574058D3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
Manifest number: 04F1
Signing time: Sat 07 Jun 2025 04:00:36 +0000
Manifest this update: Sat 07 Jun 2025 04:00:36 +0000
Manifest next update: Sun 08 Jun 2025 04:00:36 +0000
Files and hashes: 1: 3z_cS_M72A_hKNdWhD9gs51b7uM.crl (hash: rg51hORLxo///Mu8uCEC7gn9UJLEEXxw/uYvf4/fTPo=)
2: 44ZqBQfHQ2zRmdEU_-3buvFEgjQ.roa (hash: +FQ7Yxsx54S5E/fsFkrVJI7F04W5149y4n08z4CM2Kc=)
3: A_DdgpizT--rlZ-ab-YZdIwkNLE.roa (hash: hfZgPH/DllsEyaUJjbheadfPG1jNf80tTNcLY41EaYQ=)
4: J29KR6WIqb2jKkibcGzZyVD-APE.roa (hash: cX4I13kG6IWcU4y27MvdylWTn5/srzMdc6rdtCLCSL4=)
5: RVm4PleqV8m6zGkcPiKBRGWO1cI.roa (hash: 3p0hXdk+JmHhQEiq1MExor2f3lGKmZyobEJTxOu9buE=)
6: eHnC0ZqJNqxv3y7mak9QRJMJw-o.roa (hash: +LqAwsdmA3jPuO+2IgsX5kZHBO+HuvNtjbjVsU8ziig=)
7: f25v4uVZY4JbTyMqNXKXGA35WKk.roa (hash: Cmqw5364kiAvR31aujca3rQebhgV1WXm34C80bI/lTU=)
8: xJ0_FRg6EplS-mzoDbYvP1y_mUw.roa (hash: 7evtOJQCPXqekbIigyPzPGbzquzgJixLY3c438GOL/g=)
9: zTq6cqLbZBiRPZ7jFpyiF-kS2nU.roa (hash: 58LUL/KkVIlVDMCj1/N1vyBYpPzDWYfUKAfSIQ9KHh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:30:2f:6c:67:5c:24:58:0d:f2:45:74:05:8d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3
Validity
Not Before: Jun 7 04:00:36 2025 GMT
Not After : Jun 8 04:00:36 2025 GMT
Subject: CN=9c04c6af7966fc37fe8476fc3a6487f8f97b89ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:98:ef:26:4d:38:65:f5:21:d4:4d:91:47:
d8:04:ff:b2:e5:4b:f2:03:73:b5:7d:6c:fc:bf:48:
ad:d0:2f:66:68:f8:e1:4d:ef:c1:79:ab:8e:3c:b8:
42:d5:a6:98:29:b4:70:71:4a:48:83:54:08:87:73:
3f:79:3c:3f:78:a1:03:7b:f0:6b:bc:0b:ac:61:2e:
d4:00:7f:b3:4f:c0:14:11:04:5d:92:61:bb:40:02:
69:4c:9a:41:9f:0c:d3:03:ff:7d:5a:28:38:2c:6b:
13:63:9f:e8:cd:07:f0:49:9e:8c:45:07:19:01:dc:
fb:ff:3d:1f:fb:8f:a4:bf:8e:15:d2:78:60:6c:93:
1b:09:1d:36:ca:7c:13:d0:0e:6a:a9:8f:f4:ab:a0:
99:5b:5b:c7:be:45:1d:99:1c:c7:b5:22:f2:67:96:
e1:7d:f8:23:95:e8:19:ac:82:76:47:47:3a:7c:56:
e4:c2:e6:a8:c4:b7:56:ae:2a:c9:74:f6:8b:01:18:
4c:ba:21:fc:1a:5a:56:b9:a9:83:bf:8e:68:33:71:
56:89:2b:b7:ce:26:17:83:b9:30:84:64:ab:e4:8f:
41:31:fd:d4:63:44:7b:91:f9:8e:26:bc:3b:e7:6e:
c2:b2:00:d4:2b:ab:f5:9a:29:1b:9c:4e:4c:32:8c:
59:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:04:C6:AF:79:66:FC:37:FE:84:76:FC:3A:64:87:F8:F9:7B:89:EE
X509v3 Authority Key Identifier:
keyid:DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:5c:c2:47:cc:c2:a9:4b:c8:f2:9e:40:0a:08:79:5c:5e:ec:
3d:b0:24:c1:b3:fd:77:12:d2:20:44:29:98:45:75:12:6b:be:
37:40:4b:26:6e:a5:17:c3:5b:5d:1f:8a:26:b2:4b:d0:dd:68:
6f:ad:ec:52:72:c1:0e:5f:41:6d:63:18:a7:1c:48:be:71:79:
a0:32:67:97:41:87:92:ea:89:32:04:56:bc:35:52:1f:97:49:
1b:de:9f:91:39:5c:9b:5c:13:77:74:60:98:0f:6c:ae:6e:a4:
28:f3:66:83:97:39:b3:f5:99:fb:58:5b:97:00:ac:2d:38:01:
26:ac:95:9f:c9:31:0e:e8:fb:91:2d:97:c0:d2:7b:de:3e:11:
78:15:9e:86:9c:f3:45:61:11:c4:5c:a8:50:f7:91:d8:86:db:
3b:b3:67:de:15:20:10:4a:f2:9c:34:85:6f:a6:29:05:05:8c:
4f:17:7d:c4:7a:e5:b3:4c:dc:50:b8:e2:92:4f:01:4f:a8:cf:
f1:50:6c:ba:28:d7:d5:47:59:54:8e:02:4f:8a:7f:e1:4c:09:
51:22:b8:a7:6b:a2:54:5d:c5:2e:a9:a9:44:69:ca:40:2a:70:
02:90:96:63:ad:d0:bb:20:17:68:71:96:f5:29:dc:7e:c0:94:
48:7e:ae:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:30:19 2025 by rpki-client