Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json)
Hash identifier: ItGjbTsfxMPLOT/CFBMbe2+7wnPQoWdxrffIAqI9Tso=
Subject key identifier: F4:86:29:C2:B3:E8:15:A5:C7:7D:B7:7C:3E:1E:54:F0:14:3D:C3:5D
Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92
Certificate serial: 01975346FA5CEF96C708CFC6418AF9844566
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
Manifest number: 04E9
Signing time: Mon 09 Jun 2025 06:00:49 +0000
Manifest this update: Mon 09 Jun 2025 06:00:49 +0000
Manifest next update: Tue 10 Jun 2025 06:00:49 +0000
Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: MzBxnW5ZzL5PlkCe6SI3XRg8T7ZfxXE8kGSZGrlClX0=)
2: S2et9u3-k4c1RbSQYpZyfZKneKE.roa (hash: Ha/+fD6TOAGH3fDS11rGJPIxFiX3z4IR9RxVgbeKPDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:46:fa:5c:ef:96:c7:08:cf:c6:41:8a:f9:84:45:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de182707c444c31064b1899c597e9efd73438f92
Validity
Not Before: Jun 9 06:00:49 2025 GMT
Not After : Jun 10 06:00:49 2025 GMT
Subject: CN=f48629c2b3e815a5c77db77c3e1e54f0143dc35d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:dd:46:68:1e:80:91:bc:12:fa:cc:c2:23:
06:c3:6f:21:28:c3:2a:a2:47:5a:21:62:48:75:24:
a5:c1:50:c9:83:e8:82:2d:31:d1:1f:b2:ec:67:8e:
b4:18:39:07:39:4e:77:f1:76:b3:fc:09:2c:f8:e7:
2b:08:6d:50:9d:64:cf:e8:03:e6:d6:9f:ec:97:cc:
ec:4f:d1:51:1f:d8:3b:3f:7c:28:4c:d8:c7:b7:d1:
7c:77:59:66:85:42:f8:50:d5:80:4d:62:e3:79:b4:
ec:68:2b:b1:18:5d:5e:0f:d7:a5:24:6a:07:d9:c1:
56:9c:e1:6c:e3:bf:ef:9e:91:b5:d0:11:84:fd:7d:
d1:7a:8e:2f:94:6c:ae:32:3c:41:34:31:c4:21:e8:
28:e4:86:1a:cc:cd:9f:4a:90:94:46:80:72:d1:96:
5b:72:1b:95:23:41:ee:25:e4:ca:8b:cc:c3:d7:18:
82:44:01:4a:7c:1f:17:60:f6:3f:bc:f4:7a:5b:c7:
b6:a2:36:af:26:55:dd:b1:e8:fe:c4:cb:5c:0a:e2:
37:9b:83:b8:4b:4c:1b:18:52:eb:9e:29:11:42:b5:
fa:45:e7:ed:d2:42:d6:48:c1:84:36:1d:9c:a7:b5:
78:be:7e:7c:d0:e1:78:6c:23:75:b1:89:16:ae:e0:
fe:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:86:29:C2:B3:E8:15:A5:C7:7D:B7:7C:3E:1E:54:F0:14:3D:C3:5D
X509v3 Authority Key Identifier:
keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:3e:97:86:d5:45:43:9f:c9:90:e3:b3:29:0c:f8:59:93:cb:
09:ef:b0:30:df:60:30:98:a7:11:31:c3:8a:61:32:54:3f:15:
e9:0f:15:68:f4:24:d5:06:c8:ef:07:56:0c:42:45:f8:67:14:
18:8b:e4:07:4f:11:36:1d:dd:c4:5c:e5:80:27:8e:e4:d0:e0:
d1:58:ce:04:76:87:10:a3:61:46:f3:0c:f8:87:1e:c5:fd:6a:
7a:c9:89:35:d1:4c:2b:0e:3e:4c:47:6b:a9:56:23:79:78:44:
9e:2f:79:e5:da:77:e7:57:9c:15:8b:95:d1:fa:42:e1:fe:20:
66:51:74:c3:ac:d9:d2:58:91:d6:6e:4d:88:44:7a:4b:80:04:
36:55:03:eb:55:3d:59:05:01:b3:ee:89:ec:0d:85:c9:9e:c3:
d8:52:29:a0:10:ab:20:31:e5:d6:2d:27:15:ad:93:8d:28:3e:
07:9d:f2:1c:e9:8f:9a:2c:eb:5f:b4:62:99:7e:69:22:92:d2:
e5:af:f7:6d:8e:82:cc:ef:a5:f8:90:56:31:12:aa:ed:c2:ee:
7c:6c:1b:80:8f:d9:c8:51:4e:42:92:7f:5b:e2:2c:16:c0:05:
64:11:80:51:6d:f3:92:cf:20:18:6f:3f:95:63:a2:68:b9:c7:
87:16:3a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:54:57 2025 by rpki-client