Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
File: 3AXfbkBO-SDmpZKNiWPmpfjWESA.mft (raw, json)
Hash identifier: 85Q0P3RO6KKmkZPTuWYrumvUiyzsikjc/V+LZHG28I0=
Subject key identifier: 3C:37:A3:87:0C:52:D6:3D:75:E0:06:82:A2:EA:DE:46:40:3A:49:BB
Authority key identifier: DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
Certificate issuer: /CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Certificate serial: 01976F2BB9BF4FEA7937746CF8213D02657E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 16:00:25 +0000
Manifest this update: Sat 14 Jun 2025 16:00:25 +0000
Manifest next update: Sun 15 Jun 2025 16:00:25 +0000
Files and hashes: 1: 3AXfbkBO-SDmpZKNiWPmpfjWESA.crl (hash: tRmE94Hx9SoGscU/8jbpOuo/01ZrS8W9BbMFJPAQMEo=)
2: VU0FkvZgVaRI8EGkm-qXkP1h2_c.roa (hash: FXgImtBv7FeA5blXsKdg5pD7MuiscFVJi0Lfx25h6e4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:b9:bf:4f:ea:79:37:74:6c:f8:21:3d:02:65:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc05df6e404ef920e6a5928d8963e6a5f8d61120
Validity
Not Before: Jun 14 16:00:25 2025 GMT
Not After : Jun 15 16:00:25 2025 GMT
Subject: CN=3c37a3870c52d63d75e00682a2eade46403a49bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:82:8f:2e:f1:a5:5a:86:c2:93:92:ae:d7:e8:
40:49:ec:93:e5:32:fe:da:a6:d1:4d:7d:ca:d4:0f:
97:25:50:8e:f3:13:58:ab:e1:64:e6:49:ce:20:12:
bd:d7:6e:f0:39:fb:fd:c2:ef:2b:42:87:6e:b4:8b:
ec:75:01:cd:c3:ac:e0:31:c4:15:1e:fb:0d:c5:38:
24:80:ae:0e:51:c9:21:42:c3:10:07:d4:aa:24:33:
16:b9:6f:10:0f:d4:6c:5f:d1:98:41:07:d5:a7:50:
b0:d2:69:c4:16:c8:90:b4:12:e0:7c:ab:41:ec:3f:
b5:18:7b:cb:b3:1f:66:21:5c:8b:76:1b:58:a8:5c:
a1:43:ab:68:a9:a2:f6:24:d4:52:80:de:ff:ec:c5:
e6:76:47:58:c7:be:de:52:d4:bd:64:f4:27:a8:29:
47:03:fc:b7:df:d3:c6:ab:c8:cc:7c:1c:8a:8d:e5:
20:05:d2:ca:16:5c:47:30:f7:13:69:90:bf:94:32:
eb:ce:a3:2d:c4:d3:d0:0d:93:d1:e1:a3:4f:b5:57:
c5:8a:87:17:64:7f:49:04:67:75:63:b6:8b:61:c8:
55:c8:30:5e:c9:50:96:d3:64:82:17:7e:f0:da:9a:
9a:cf:fd:5d:04:76:74:db:29:d6:61:98:90:a0:4a:
d3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:37:A3:87:0C:52:D6:3D:75:E0:06:82:A2:EA:DE:46:40:3A:49:BB
X509v3 Authority Key Identifier:
keyid:DC:05:DF:6E:40:4E:F9:20:E6:A5:92:8D:89:63:E6:A5:F8:D6:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AXfbkBO-SDmpZKNiWPmpfjWESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/0c3886-a32d-4435-ab74-bce934205ae8/1/3AXfbkBO-SDmpZKNiWPmpfjWESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:52:88:e0:c6:ca:1f:c7:85:39:8c:e1:0c:f0:5c:36:08:db:
e3:a4:cd:19:1c:87:bd:7a:8e:3b:b1:20:39:e9:52:68:77:7b:
01:9b:ee:21:04:d8:34:57:a8:35:b4:d5:5d:e7:8f:6f:a3:fa:
66:20:e8:9a:31:f9:85:3e:d6:14:e1:47:97:97:e1:75:92:43:
bf:6e:f3:a8:66:52:fc:7a:ed:dd:db:c1:c8:33:5d:d8:68:66:
2a:41:bd:38:9f:4c:ec:55:e8:2c:b8:af:00:46:cd:b4:17:7d:
09:e6:cc:6e:30:3c:da:ff:34:47:77:e0:97:74:c0:ea:87:8a:
9e:ca:28:fa:14:81:fe:a5:58:4a:59:7d:59:6e:b8:cd:c0:f6:
8d:be:71:a0:f5:4b:2c:a3:2f:b7:78:70:29:0c:ed:c6:83:23:
6c:6f:6a:34:91:0d:80:6a:48:6d:6e:eb:2c:eb:11:76:12:95:
31:e5:d0:74:3a:66:1e:2b:12:da:81:ed:d1:35:8a:3e:a5:5e:
94:06:15:d7:73:16:a8:10:06:67:e1:62:77:21:dd:ff:8a:c1:
cd:e7:a0:4c:bf:0b:67:70:f8:cc:c9:1d:a8:d1:90:d9:fa:ba:
36:e2:8d:0c:dc:c0:e8:ab:64:63:e8:07:4a:d7:29:df:ba:f7:
e0:f1:24:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:40:50 2025 by rpki-client