Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: OgZX7WIc9hR5frkHaKNzPhUYKg4Cz2qWpmY0Ae/JtQI=
Subject key identifier: F8:F7:98:68:BB:8E:73:87:8A:56:71:C5:BF:9E:F3:DF:94:8D:D9:15
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 01977C79B1FFED185306FACA7355E68D56A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 052A
Signing time: Tue 17 Jun 2025 06:00:39 +0000
Manifest this update: Tue 17 Jun 2025 06:00:39 +0000
Manifest next update: Wed 18 Jun 2025 06:00:39 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: VRtGt/xLJ7t6CPCzWmlwj0F0OfQvXlZgjVCr2fNcwso=)
2: Vnw9H8iqt-gts3LY3CEVf7p6PaE.roa (hash: s2vDBc3kUppwqWxQSMIljxY/yV7+Xm77EH+5A9yGbgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7c:79:b1:ff:ed:18:53:06:fa:ca:73:55:e6:8d:56:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Jun 17 06:00:39 2025 GMT
Not After : Jun 18 06:00:39 2025 GMT
Subject: CN=f8f79868bb8e73878a5671c5bf9ef3df948dd915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4a:42:68:9b:35:bb:99:8a:42:fb:aa:17:f5:
fa:82:61:44:b5:01:af:2b:30:90:f0:52:ca:a6:a8:
a5:bf:29:3e:90:79:68:bd:58:ee:d1:fb:a1:1f:f8:
d1:1b:49:be:e4:53:91:98:b6:08:b7:eb:c4:75:8f:
64:92:43:79:02:33:fd:0f:d1:05:8d:1d:b6:3f:53:
fa:db:c2:22:fe:1e:76:fd:18:61:b6:55:6c:98:91:
2f:d0:bd:d2:06:3a:74:d0:b6:20:e0:93:3a:a7:d6:
89:20:13:8d:6f:29:ec:e8:2e:b6:db:ad:9c:b0:bd:
2c:07:c6:39:da:76:35:e1:98:0d:d4:92:d0:90:2e:
1e:dd:bd:f0:3a:10:70:36:e7:f0:76:20:c7:2b:db:
d0:40:07:b3:80:a3:65:f5:1a:ff:63:3b:7b:48:d6:
d4:b9:aa:5c:8b:a8:42:ce:72:4c:bb:6b:6d:79:d8:
14:89:e3:b2:2b:58:f8:1b:52:67:df:0c:5c:86:40:
c6:65:ec:48:6e:eb:49:e9:1c:6f:0c:14:76:53:5f:
e0:3c:2f:85:1c:c9:26:ad:6d:6b:b8:b1:cb:97:96:
ef:cd:98:57:ca:28:20:35:18:ad:0a:11:31:93:5f:
4c:d8:a4:cb:a9:12:1c:5b:63:c7:5f:c1:0d:8d:fb:
b3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F7:98:68:BB:8E:73:87:8A:56:71:C5:BF:9E:F3:DF:94:8D:D9:15
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:26:9a:06:d8:04:41:4a:d2:a5:af:97:85:fd:c3:f5:8b:fd:
17:5d:93:12:af:9b:ef:4c:3b:9f:97:65:49:7c:5a:7f:18:b4:
8b:eb:59:b4:0a:47:70:a4:79:0f:15:fd:3b:3b:f7:54:cf:6b:
a0:c5:7e:6e:6f:27:ac:86:53:95:7f:86:9d:d1:b5:be:d0:19:
30:72:4d:94:b4:08:70:6a:51:3f:ea:bb:88:9d:eb:9b:42:34:
48:25:37:8a:29:58:db:b7:33:43:c5:b7:4f:85:06:53:f9:98:
a2:4d:68:80:29:ae:2c:02:4e:1e:cc:05:38:bd:07:b1:82:ed:
4c:a7:66:11:00:55:6a:b9:18:b8:a9:05:2b:ca:86:28:79:79:
9d:55:f6:50:7d:79:3c:61:9b:50:b6:d3:e1:48:1c:11:60:aa:
d7:55:c0:c0:34:22:cd:b0:6f:de:88:0a:03:69:7f:cb:98:87:
cf:f8:14:c9:e6:0a:95:99:9b:f7:ab:d9:68:c4:20:84:f6:b9:
37:6d:b1:10:26:b5:00:b8:60:af:93:e9:4b:d5:c6:b4:4e:4e:
5e:4b:40:d2:15:df:a4:15:94:fa:d8:e1:46:a7:58:3e:2c:ad:
bc:a1:ad:6e:71:cd:a3:04:aa:0f:63:5f:73:ab:2b:b9:78:8f:
3d:04:9a:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 08:24:09 2025 by rpki-client