Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
File: 3AXfbkBO-SDmpZKNiWPmpfjWESA.mft (raw, json)
Hash identifier: k+UUWv96UTZNAVjo8rf6grKR/j0pMlNZWDJbAuq40sM=
Subject key identifier: 2D:94:B8:D3:68:B1:F0:8E:A0:33:51:B0:F5:67:06:70:9C:AA:51:CF
Authority key identifier: DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
Certificate issuer: /CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Certificate serial: 0196760C34EFA60326204E6C6FF7A7B8EBB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 07:00:33 +0000
Manifest this update: Sun 27 Apr 2025 07:00:33 +0000
Manifest next update: Mon 28 Apr 2025 07:00:33 +0000
Files and hashes: 1: 3AXfbkBO-SDmpZKNiWPmpfjWESA.crl (hash: ueCVrLrtqfCYw7MJA/MisN0R5Sqn9hzURzu+egbTyCE=)
2: VU0FkvZgVaRI8EGkm-qXkP1h2_c.roa (hash: FXgImtBv7FeA5blXsKdg5pD7MuiscFVJi0Lfx25h6e4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:34:ef:a6:03:26:20:4e:6c:6f:f7:a7:b8:eb:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Validity
Not Before: Apr 27 07:00:33 2025 GMT
Not After : Apr 28 07:00:33 2025 GMT
Subject: CN=2d94b8d368b1f08ea03351b0f56706709caa51cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d5:7a:5e:ea:3c:56:89:43:37:48:31:9a:7d:
6a:a9:84:6a:90:09:93:a3:52:8d:15:97:6f:53:cd:
74:bd:c2:e2:6f:dc:b2:e3:ab:f1:6d:23:b8:d4:59:
43:1a:2a:68:a7:09:fc:62:f6:28:0d:ee:37:13:f3:
fb:e3:6e:aa:ff:a3:29:e1:74:88:6b:bc:42:5a:7f:
37:d2:ca:3b:04:8e:25:66:1a:79:87:b8:ed:0b:95:
ba:95:63:49:23:aa:e1:72:35:a3:a2:4b:ac:9e:ae:
14:d4:60:a3:cc:7c:5c:a9:b2:01:fa:82:72:fc:35:
fe:9c:a7:cd:45:5c:a6:29:ce:09:a4:98:e5:a8:dc:
bc:38:cc:a7:1a:55:29:81:2f:80:ac:ce:1e:4c:2e:
fc:0c:2a:b1:cb:28:94:45:d5:d4:af:dd:b2:4b:ac:
6a:94:c4:2b:60:a7:70:7e:6e:21:98:61:c8:be:76:
09:63:74:e7:6f:6a:b4:59:d9:f4:dd:49:89:ff:a7:
a6:c4:da:fe:31:13:37:fe:23:72:ac:7b:3f:2e:c3:
ed:44:35:79:8c:8b:f1:d6:1b:90:75:22:6b:89:3e:
d2:9b:a0:92:53:03:85:96:5f:bc:ed:8a:7a:ae:c9:
af:6f:5c:3c:ab:96:de:63:ea:98:59:95:c6:bd:c2:
99:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:94:B8:D3:68:B1:F0:8E:A0:33:51:B0:F5:67:06:70:9C:AA:51:CF
X509v3 Authority Key Identifier:
keyid:DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:a4:05:b6:78:5c:b0:bb:82:94:a0:f3:1a:78:f7:6e:aa:a2:
e1:71:f6:3b:c2:d7:93:18:0b:26:19:6b:6a:d7:bf:a7:e6:70:
e3:87:85:85:21:4f:29:44:2c:85:b2:dc:ed:7e:1e:ff:89:77:
54:74:31:71:10:25:49:d9:1c:9b:1b:f6:4a:24:cd:67:ce:80:
a5:18:98:a1:30:b5:46:18:65:a3:2b:78:95:16:57:af:a6:8e:
5d:b1:6a:22:20:d6:95:61:4b:2d:0f:7e:0c:ea:e8:a2:a1:aa:
4f:8b:9a:b9:37:37:df:2c:01:a0:b3:00:3f:b0:21:0d:a6:55:
7b:69:f7:f1:a2:8a:28:b0:6a:5c:64:4e:a3:cd:c4:2e:14:dd:
eb:7b:8d:2b:da:39:c2:50:f5:62:ae:e1:7a:73:0e:81:8d:24:
25:8f:7b:83:fb:05:04:69:aa:dd:a4:8a:c8:89:0a:e3:aa:27:
02:8a:bc:f4:90:7e:c8:fd:3b:b8:92:9c:9a:cf:c1:a7:4b:d4:
e2:69:5f:3a:5e:90:86:72:94:e2:89:21:0e:da:18:1c:8d:84:
f4:d3:88:75:91:14:29:5b:6b:fb:10:31:29:d2:d1:23:15:cb:
c1:e7:cf:82:16:c1:4a:7d:fc:70:8d:d8:db:43:37:09:16:81:
49:d8:28:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:40:50 2025 by rpki-client