Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: 5/t2IIcg3jbgGg3QabQhnkxVtxtffrHguM8347OYRtY=
Subject key identifier: 18:8E:C9:5E:E2:F7:CB:1C:21:60:BC:66:0E:B3:73:9F:78:E6:58:88
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 01976D067D62B704968D6798E83C5C84A566
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 06:00:31 +0000
Manifest this update: Sat 14 Jun 2025 06:00:31 +0000
Manifest next update: Sun 15 Jun 2025 06:00:31 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: HDxyZ6oJ7No4U8/xgphIDJX8WDe37OLLri8oQvXMsT4=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:7d:62:b7:04:96:8d:67:98:e8:3c:5c:84:a5:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Jun 14 06:00:31 2025 GMT
Not After : Jun 15 06:00:31 2025 GMT
Subject: CN=188ec95ee2f7cb1c2160bc660eb3739f78e65888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:31:c4:8e:f0:96:1b:05:40:ba:1a:58:aa:f8:
aa:95:f8:40:4f:60:1e:ef:d8:49:3f:bc:eb:64:04:
a5:9b:1d:44:bd:c5:a6:ac:3e:17:bf:e7:4c:41:47:
a8:c1:ce:86:78:a9:14:14:a3:94:4b:48:02:9a:7e:
29:ca:d0:a0:d5:fe:a6:2a:a8:60:58:55:24:1f:6c:
04:3e:47:e5:49:3f:ab:e1:95:4f:15:93:b5:14:4c:
c2:a9:ae:1d:ea:ad:47:57:65:87:50:45:f1:a5:cd:
7a:14:84:2e:ab:82:8c:b8:fc:e8:00:c8:82:2a:27:
2d:11:62:81:10:51:c5:20:65:e9:4b:b7:db:f9:2f:
d9:23:97:26:87:0c:a5:df:49:9d:b3:cb:e5:6d:69:
36:32:ad:89:fd:46:19:54:19:34:cf:85:74:1b:4e:
db:b7:ca:da:f1:5c:69:fd:fc:22:9a:7f:47:46:4a:
c5:5d:dc:f1:51:34:52:9b:95:94:fd:c2:ed:96:cc:
93:c2:9c:38:67:37:6d:72:c5:e6:95:1c:ca:04:60:
80:66:c9:08:bc:91:a6:e2:f7:ae:49:77:02:cd:a3:
ac:ec:9f:77:5c:1d:5b:4b:0d:61:1b:cb:48:f3:73:
14:b4:2a:9f:b5:52:21:cb:69:ee:ce:b4:d7:f1:36:
3c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8E:C9:5E:E2:F7:CB:1C:21:60:BC:66:0E:B3:73:9F:78:E6:58:88
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:37:22:b4:1c:4d:41:d6:c2:29:15:b7:9f:40:56:7e:95:1c:
07:6a:5c:b3:22:c9:74:8c:1d:39:d9:54:f9:26:21:fc:c3:9a:
3f:1a:88:e5:c3:36:1a:44:e2:c6:d4:f0:e5:aa:47:2e:80:bf:
6b:79:20:1c:fd:9f:07:9e:09:6a:c3:22:2d:fa:6f:e8:48:4b:
57:81:14:40:06:dd:22:73:f9:2c:c8:32:ff:07:1a:a9:84:b1:
58:ff:64:3b:12:19:70:75:4e:44:25:59:36:e5:d1:63:ad:c8:
ba:eb:2e:02:84:d2:7e:8f:a7:68:be:c3:1f:1b:9b:b3:4c:8e:
fc:bf:98:1b:09:33:ea:47:02:85:11:fc:34:05:43:d8:ca:48:
16:a5:d5:d4:e9:96:7e:18:f3:83:62:bb:7d:86:61:0f:de:6c:
ec:f1:92:3a:11:af:94:2f:cf:3e:91:c8:04:2d:c5:1d:4e:c2:
fb:62:34:71:94:d3:43:0b:ee:3c:e5:06:da:b7:b1:f1:c5:c7:
25:7b:48:0a:f4:ae:8c:42:b0:93:41:39:39:b5:7a:a8:7e:75:
59:ef:b1:6d:2b:0e:84:80:f1:cb:8b:43:09:46:24:30:de:ee:
11:b9:c8:e0:52:b6:da:be:ad:33:e5:6f:80:ef:c0:3d:dc:f2:
bd:36:21:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:50:40 2025 by rpki-client