Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft (raw, json)
Hash identifier: SkN/B0sWedmEwYEx9CpxWr2QVcNvXKJgoAIg2Xouxqw=
Subject key identifier: CB:AB:5E:DF:60:31:32:67:38:B9:92:1B:54:25:E5:8A:EB:23:38:43
Authority key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Certificate issuer: /CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Certificate serial: 0196753069F878E9688C7A5D86C69F1A6374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 03:00:29 +0000
Manifest this update: Sun 27 Apr 2025 03:00:29 +0000
Manifest next update: Mon 28 Apr 2025 03:00:29 +0000
Files and hashes: 1: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl (hash: mAMqG85uPPyaIq0ukcwRgsGMxQR7m39OStROJ0ZlB+M=)
2: fl1IqJ22OZD_5WNed1aOqRFU-dQ.roa (hash: Kuo9lPYONUc1nk6pXtWGALeHz/jfanabaBDCbZ+GeWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:69:f8:78:e9:68:8c:7a:5d:86:c6:9f:1a:63:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Validity
Not Before: Apr 27 03:00:29 2025 GMT
Not After : Apr 28 03:00:29 2025 GMT
Subject: CN=cbab5edf6031326738b9921b5425e58aeb233843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ff:f5:f8:35:93:30:22:24:e6:39:e7:14:b2:
5a:ad:fb:cb:b6:63:db:a1:8d:b7:70:48:d4:d9:ad:
87:b0:34:0b:cf:ec:64:1a:69:0d:68:2a:a9:29:d9:
91:c5:14:89:e0:6e:a7:7e:d9:8c:fe:80:b3:65:9c:
0b:26:15:25:28:51:ec:00:9f:64:96:9e:5d:81:cb:
b4:65:49:58:8a:50:c0:26:57:3e:f8:00:93:e3:63:
39:2d:17:4f:2f:61:b1:9a:a0:12:3a:ae:07:2c:cd:
72:9c:e5:9d:96:44:86:c7:6d:2a:f4:0a:ab:ca:5c:
21:2b:81:27:bc:8e:b4:a4:32:6f:d0:2e:1c:a5:4f:
8e:7a:eb:fe:af:a1:20:d1:ec:b8:ee:7c:68:e3:58:
02:d3:f1:54:8d:ba:fc:1a:47:00:67:36:d5:ad:d2:
9e:e5:ef:ac:10:a7:79:3b:8d:43:5f:78:cc:14:1a:
96:a5:d6:40:45:ec:e1:04:39:3e:c9:c8:97:1d:67:
d6:87:04:b6:cd:77:29:e6:de:a2:2d:67:df:c8:31:
1d:25:c2:78:b0:6f:4b:36:df:2f:e7:2d:e7:6b:d1:
f3:db:bc:a9:c6:ed:a7:28:0e:30:40:ec:c8:3c:3c:
44:e2:53:9b:70:5e:ef:11:a5:11:fb:fc:52:50:04:
07:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AB:5E:DF:60:31:32:67:38:B9:92:1B:54:25:E5:8A:EB:23:38:43
X509v3 Authority Key Identifier:
keyid:DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:d4:35:c6:b1:55:c3:11:c8:0f:46:e4:ca:80:55:6a:ce:f5:
a1:e1:78:e2:de:26:0e:e6:c5:51:75:a4:ac:90:41:d4:a8:e4:
f9:0b:00:5e:46:1e:c0:19:9d:e0:06:82:8d:84:66:79:df:10:
13:76:28:c2:87:b7:ef:44:2b:2d:45:95:e8:ef:76:9e:41:a2:
9b:db:e9:f7:bd:60:82:ca:92:f1:f8:d1:84:4c:ec:91:72:a2:
71:07:3f:d5:2d:75:28:ed:15:5c:f3:71:38:cd:46:48:25:2f:
c2:0f:76:58:49:c3:ab:3d:49:9e:e5:1c:80:dc:5b:47:68:0b:
0f:be:b4:bd:fe:b6:95:95:31:54:55:96:2d:6c:f7:0e:59:1c:
73:93:74:77:59:6c:33:f1:d9:a3:fb:b0:fc:c7:f9:a7:63:f3:
78:ee:5d:88:33:87:86:44:79:e7:cc:35:71:d6:11:9f:be:0b:
7a:27:04:16:69:68:5c:c6:83:27:0e:74:83:d8:17:e7:e8:04:
ee:ac:f5:69:56:b8:62:af:71:3c:93:1d:7d:de:c6:c4:fd:cc:
b8:bb:cd:43:26:3e:c3:cb:8d:be:92:bd:3e:af:6d:35:5b:97:
be:b4:3a:83:4c:83:f3:0c:eb:06:97:28:5a:bd:2d:ae:65:b3:
14:1d:80:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:48:39 2025 by rpki-client