Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft (raw, json)
Hash identifier: 38uSI18Bv7MrN9euq3W8/8HQe3Jci6xpWXP9ky42iB8=
Subject key identifier: A6:4E:C2:7D:88:DD:C6:73:0F:D3:94:F7:50:80:AF:0D:17:B8:C9:F4
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 019768854829705A9F69430DDB367C323F53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
Manifest number: 158C
Signing time: Fri 13 Jun 2025 09:00:54 +0000
Manifest this update: Fri 13 Jun 2025 09:00:54 +0000
Manifest next update: Sat 14 Jun 2025 09:00:54 +0000
Files and hashes: 1: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl (hash: DxR24YKO2I4Pba7EzYh09vZ0xtPc8SDSXNvO3OV1h2A=)
2: fl1IqJ22OZD_5WNed1aOqRFU-dQ.roa (hash: Kuo9lPYONUc1nk6pXtWGALeHz/jfanabaBDCbZ+GeWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:48:29:70:5a:9f:69:43:0d:db:36:7c:32:3f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Jun 13 09:00:54 2025 GMT
Not After : Jun 14 09:00:54 2025 GMT
Subject: CN=a64ec27d88ddc6730fd394f75080af0d17b8c9f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:34:ac:fb:91:16:80:62:55:57:8f:08:63:fc:
2d:16:03:32:7b:40:b3:0b:10:a9:26:66:3c:3c:40:
0d:0e:4b:6d:9e:36:2d:85:63:88:12:62:b9:87:1f:
6c:d3:7e:20:14:cc:a3:04:b4:dc:64:87:6c:74:04:
7a:b1:0e:e1:ee:ff:b0:42:bd:01:65:74:17:1f:a3:
2a:1d:04:dd:9e:0c:a2:44:e5:25:9f:30:3b:05:3d:
cd:ab:f8:8e:50:bf:01:df:c1:03:40:86:da:b7:ea:
f2:73:b2:0f:ac:9d:f2:eb:14:70:aa:44:29:60:bf:
45:90:79:d7:f1:e8:17:34:71:1e:da:fb:27:50:5e:
fb:89:3a:a1:2a:a6:6f:ad:f4:00:24:0d:c0:ab:ae:
0a:75:83:a7:2b:62:ac:f9:cd:b3:03:c5:00:16:b7:
d2:58:ba:03:bd:71:53:b2:24:87:90:fc:51:f8:f7:
68:d1:69:db:e7:72:55:f1:73:5c:ef:4c:97:12:49:
d3:f1:38:70:86:aa:79:02:d6:1e:a3:64:33:cf:9e:
4d:d3:07:db:e2:f1:82:99:38:13:be:9e:7f:02:f3:
34:5a:de:33:f5:be:52:0a:2d:67:0e:d6:91:ed:73:
15:8d:4c:30:c3:e1:18:b4:84:ab:2b:ae:95:f5:18:
60:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4E:C2:7D:88:DD:C6:73:0F:D3:94:F7:50:80:AF:0D:17:B8:C9:F4
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:4e:3b:16:6b:5a:37:55:3f:11:c1:a9:97:77:f6:de:06:9d:
25:2a:0f:62:a3:ea:1c:32:cd:b2:51:0d:4c:4f:d3:8c:d5:f0:
7f:df:d0:5a:ad:d1:6d:4f:73:31:bb:ac:94:b1:37:9d:c2:4a:
8e:9a:48:14:be:bc:c4:39:a2:fa:26:5a:4b:eb:2e:a1:11:ad:
1c:5d:6a:bc:3f:f9:83:2e:b9:c3:11:a8:d8:e3:a1:47:89:79:
fa:ce:fd:13:55:ac:b1:8e:5e:87:4d:54:79:cb:9e:7a:f7:f9:
90:56:86:65:cf:7c:14:a2:70:17:69:ee:d7:6d:f6:43:15:03:
bb:8a:11:b5:cc:18:e9:f1:61:1e:38:80:ff:fd:ba:f1:43:16:
ed:a7:37:a4:a1:10:98:a1:d6:94:03:19:a9:ef:9e:52:6f:f9:
b8:72:8d:ce:ba:fc:e5:66:95:22:dc:57:2c:19:5f:00:bb:8a:
a0:f8:c1:8d:80:18:60:c0:0a:d6:2d:51:b7:55:1a:87:71:b3:
e5:69:53:e2:bf:ad:e9:43:04:f1:b0:f5:ff:eb:87:62:94:b1:
84:9c:99:b7:40:43:91:a0:21:44:26:42:8a:bc:a8:3f:5d:cb:
0e:df:6f:34:65:a1:e0:fd:99:a9:1d:2a:df:e2:a1:91:25:5f:
a7:35:1c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:31:57 2025 by rpki-client