Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
File: is3dXDDVgOsP7soqFs9cWoslaP0.mft (raw, json)
Hash identifier: vqV9YcfSuN0gZLyZUBGd6YKqpMxIlkZGjJuEtJf9dZk=
Subject key identifier: 3F:41:F1:12:CD:EB:D5:54:84:7C:CD:D2:47:D3:F6:2B:F6:1E:3A:5F
Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Certificate serial: 0197688529530C9178FADAAE858C2A9EAA51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
Manifest number: 158F
Signing time: Fri 13 Jun 2025 09:00:46 +0000
Manifest this update: Fri 13 Jun 2025 09:00:46 +0000
Manifest next update: Sat 14 Jun 2025 09:00:46 +0000
Files and hashes: 1: 1-BU0QGGPOY6StLl6EjdaPUoRp0U.roa (hash: YErgeEfB3mK/ybWEoY6pFZ+o+6uteNHWASk7smyhzI8=)
2: is3dXDDVgOsP7soqFs9cWoslaP0.crl (hash: qoPdwxit8wGV5a9LN93/WC/BWMA9nIcImpwnwqv9tno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:29:53:0c:91:78:fa:da:ae:85:8c:2a:9e:aa:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd
Validity
Not Before: Jun 13 09:00:46 2025 GMT
Not After : Jun 14 09:00:46 2025 GMT
Subject: CN=3f41f112cdebd554847ccdd247d3f62bf61e3a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:83:a3:e8:78:e4:d0:64:d3:55:05:e7:c4:59:
a2:dc:40:84:cb:e0:9c:66:f5:ff:db:00:33:3e:be:
64:c5:90:5f:fa:77:37:36:5d:dc:c3:77:2b:bc:e2:
30:1e:8a:98:dc:40:eb:59:92:52:1b:e1:16:a2:71:
08:0c:cd:fa:4c:56:f3:3f:cb:d2:b0:97:2b:79:fb:
dc:83:31:cc:83:74:18:b0:9d:86:30:2b:d1:4c:ac:
36:64:77:0e:e7:46:b3:8b:4b:e6:5a:d9:29:de:e7:
a6:6a:a9:11:ea:27:37:ff:77:07:44:60:a1:09:68:
d2:96:e9:16:78:8e:45:48:5b:e6:8b:d7:1d:74:9b:
38:fa:1c:85:af:d7:28:19:87:65:16:1f:1f:8d:11:
93:86:c9:4c:d4:41:21:3e:cd:e6:a9:20:6e:94:a7:
43:71:da:13:09:c9:31:23:f0:c1:44:96:d8:32:1c:
58:b1:f5:68:53:2b:12:2d:22:a4:c3:97:3a:bd:c8:
8d:c8:81:7a:d7:6f:5e:20:3c:6a:f3:a3:59:cc:65:
cc:96:ef:e3:66:14:1c:63:f6:3e:a0:39:f5:88:a3:
ef:3d:37:04:16:e0:b5:50:c8:87:2b:d6:3f:6f:3a:
d3:6a:ff:22:57:ed:6e:d3:7e:f0:60:02:cd:bf:ce:
dc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:41:F1:12:CD:EB:D5:54:84:7C:CD:D2:47:D3:F6:2B:F6:1E:3A:5F
X509v3 Authority Key Identifier:
keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:7f:38:4e:03:a2:e9:50:28:7a:84:35:5d:4e:64:e3:f4:a2:
50:76:5f:05:e8:74:4e:25:c6:cc:67:af:44:a4:84:23:8d:96:
aa:35:bf:19:c0:6d:08:fd:69:64:7b:4f:91:6b:ea:a9:00:76:
2c:84:bf:f6:3f:35:9e:79:15:1d:cf:34:1a:bb:2d:64:77:fe:
e1:7d:b6:d9:33:66:bc:29:c4:0b:14:cb:e7:11:22:94:4e:98:
b7:9f:03:c5:4a:94:70:8f:e7:fc:57:cd:e5:40:be:49:26:16:
b9:0b:b4:d2:70:f0:31:f7:7e:9f:f6:5f:cc:21:db:b0:7d:a0:
76:44:75:c2:1d:59:c8:ef:df:8c:c6:23:3b:d8:1c:10:64:3a:
6b:ca:4f:03:05:ae:0c:e3:1f:77:45:5c:7a:d4:76:bd:2b:c3:
38:5f:6e:97:6c:0a:77:04:d8:b3:db:3a:3e:eb:a8:a7:04:dc:
4a:d8:ce:5b:1d:b5:65:07:89:e0:07:e8:18:6c:94:3e:c9:5b:
00:9d:49:32:f6:bd:a9:bd:c3:b5:d4:dd:8b:4f:cc:2a:d1:0f:
ab:93:21:8b:cd:68:62:0e:49:f6:13:9d:36:01:ec:8c:e2:58:
40:e1:25:44:2a:24:48:98:57:fd:94:41:04:57:2f:b6:ba:6a:
5f:af:dd:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:35 2025 by rpki-client