Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
File: 3IiUXIhnpyYro3mzpphACRpPGQQ.mft (raw, json)
Hash identifier: LYo0MQMGS9l3SHPgQ1QHEGZTqKSgLUYpTpFR1WNamjA=
Subject key identifier: 75:29:CD:4D:59:0D:16:A6:4D:82:0F:FC:68:C7:B4:16:BB:0F:80:CE
Authority key identifier: DC:88:94:5C:88:67:A7:26:2B:A3:79:B3:A6:98:40:09:1A:4F:19:04
Certificate issuer: /CN=dc88945c8867a7262ba379b3a69840091a4f1904
Certificate serial: 01968435E6E49ABE11882E5562F3E2C55E19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
Manifest number: 08E8
Signing time: Wed 30 Apr 2025 01:00:47 +0000
Manifest this update: Wed 30 Apr 2025 01:00:47 +0000
Manifest next update: Thu 01 May 2025 01:00:47 +0000
Files and hashes: 1: 3IiUXIhnpyYro3mzpphACRpPGQQ.crl (hash: wKvu2t1Gk8spPaueL9YJNQwaEjHN1fHo6MJMl6GAgWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:e6:e4:9a:be:11:88:2e:55:62:f3:e2:c5:5e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc88945c8867a7262ba379b3a69840091a4f1904
Validity
Not Before: Apr 30 01:00:47 2025 GMT
Not After : May 1 01:00:47 2025 GMT
Subject: CN=7529cd4d590d16a64d820ffc68c7b416bb0f80ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:47:68:f9:22:7e:26:77:38:ad:ed:7b:70:fb:
9f:c8:e6:d1:64:8f:2d:8f:9f:3f:0d:63:58:7b:24:
19:60:ae:26:79:00:e0:a4:68:a6:b8:fc:66:fd:90:
e7:01:15:97:2b:bd:af:ba:08:76:76:4d:90:54:9e:
8c:20:8b:a7:17:f7:ce:b2:b6:7b:42:b6:17:83:ed:
5d:7c:82:06:9a:08:98:b7:b4:13:aa:37:fc:48:6c:
74:9d:a1:f2:24:e8:d4:b6:96:15:44:88:94:92:5c:
61:23:cb:18:51:6f:d8:93:5a:79:62:27:c6:ba:57:
e2:9e:67:69:d0:68:e4:b1:3e:4f:40:8a:ca:0f:29:
ad:f2:34:64:d1:24:9e:ee:9e:9d:1d:1a:dc:a1:ec:
db:4f:40:a5:ac:34:69:08:26:94:05:ac:5a:4b:44:
07:b0:9e:44:a9:30:ea:21:99:14:4c:fc:d6:bd:e5:
16:38:5f:b3:2b:2f:f7:76:ba:85:f4:87:21:c8:8e:
d7:5e:72:94:79:40:a7:da:c2:74:39:9b:89:e6:bb:
b1:44:7d:2e:b0:1e:6e:6f:5e:b0:8a:af:cb:4f:8c:
68:bf:26:f4:b4:6a:01:7a:b3:59:28:8b:36:50:93:
49:10:e8:54:f8:92:c1:ab:28:80:4d:19:ea:12:f9:
64:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:29:CD:4D:59:0D:16:A6:4D:82:0F:FC:68:C7:B4:16:BB:0F:80:CE
X509v3 Authority Key Identifier:
keyid:DC:88:94:5C:88:67:A7:26:2B:A3:79:B3:A6:98:40:09:1A:4F:19:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3IiUXIhnpyYro3mzpphACRpPGQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/621022-4350-419f-947a-9cff1aee2b0c/1/3IiUXIhnpyYro3mzpphACRpPGQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f1:8a:60:6f:fa:fc:d4:64:85:05:e9:cb:9a:af:de:ba:06:
f6:8c:c2:00:17:4a:af:57:75:c5:09:de:20:bc:0b:dc:25:da:
b1:88:ec:53:3b:fd:c8:5f:48:ef:d5:ec:a0:35:c8:ca:d7:f2:
67:63:7d:84:fd:f2:bb:e3:8d:14:2c:3e:25:3e:fc:52:14:d9:
42:cf:a8:b0:d0:bb:c9:e8:2d:07:05:37:5a:04:56:6e:dc:ed:
89:80:f6:4b:6f:56:12:9b:41:e7:98:86:87:e8:2b:73:b7:fa:
51:97:f1:83:c7:79:eb:bb:62:67:99:7a:9c:29:63:f0:b0:4f:
be:6f:3c:d4:8f:ae:73:9e:dc:b0:09:81:4b:39:41:76:e3:52:
0d:1e:78:e0:5d:c2:e9:80:65:2f:79:4a:82:fc:b8:97:83:76:
a5:69:2d:66:18:7c:a2:0a:42:a8:7b:91:0d:47:26:db:67:0c:
a2:8b:b1:9b:5f:16:c9:18:22:29:f6:58:b8:fe:55:5a:96:d4:
c8:4e:24:16:c3:bb:33:82:ce:da:26:42:a3:12:ab:40:c7:f6:
4f:95:35:a2:91:1f:08:a7:75:b3:ff:a7:ad:b5:62:5f:dc:ae:
1e:d3:09:e5:6b:f8:06:f9:29:a5:d6:65:34:cd:29:3d:ce:30:
93:9a:81:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:46:41 2025 by rpki-client