Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json)
Hash identifier: 44nIe2fqrj8fMcGGcFhYqzIUUVzGfoyDed8my4/l/qg=
Subject key identifier: 67:74:86:BF:8A:46:CC:F0:D8:6E:4E:69:DD:E0:78:44:41:56:08:D2
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 01977AC329DDB879FAA499122EF7E6846427
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 22:01:39 +0000
Manifest this update: Mon 16 Jun 2025 22:01:39 +0000
Manifest next update: Tue 17 Jun 2025 22:01:39 +0000
Files and hashes: 1: 8GPy1nq-d8qyd5DzcEoD7_wmnRk.roa (hash: VU25KKsH1DHg8pytMPBtSMEdGMuo9BZsAecAtygfZnk=)
2: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: thQQOlSnqGdfs/DlZ0UA6ozpIzgtIoBL7+PaJJVFrkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:c3:29:dd:b8:79:fa:a4:99:12:2e:f7:e6:84:64:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Jun 16 22:01:39 2025 GMT
Not After : Jun 17 22:01:39 2025 GMT
Subject: CN=677486bf8a46ccf0d86e4e69dde07844415608d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3e:d2:7b:a1:db:fb:48:e8:ba:2f:89:65:bf:
1b:45:af:2f:1f:f4:77:37:89:05:af:6f:16:c4:ce:
5b:34:7c:80:72:ea:3c:92:09:4b:05:65:3c:f4:73:
37:b8:38:a3:07:64:d1:6e:78:52:21:67:9e:b5:cb:
11:b9:fc:ec:ee:7b:34:ec:7f:e3:fd:c6:56:d7:40:
43:65:32:cf:49:a2:35:be:a8:3d:e1:5b:5c:9b:49:
7d:7c:24:e8:69:c5:af:11:a9:b5:3c:14:37:69:ae:
54:c3:e3:98:20:eb:c2:fb:ea:1c:7d:76:d2:e2:60:
cc:ae:cf:bb:72:5f:0c:d9:09:64:57:9f:2c:75:49:
1a:6a:fb:8c:b0:a3:a5:ea:5a:05:40:22:d8:6d:f2:
78:c6:eb:9a:38:db:9e:65:ba:66:88:a0:49:49:7b:
ad:62:df:72:7e:b2:4d:5e:f0:40:26:dc:f6:58:d7:
49:04:cd:ec:ce:6d:84:20:e4:04:70:84:07:43:89:
20:25:cf:f9:2d:a0:d1:86:1b:c0:02:3f:47:82:22:
00:06:13:c2:2f:a2:b8:2e:13:5d:03:dc:af:f5:46:
b1:1c:9a:48:48:ab:f3:57:ad:d7:f6:d6:95:c6:8d:
6d:27:de:6c:65:fd:c4:77:cc:bb:54:2f:d1:3c:c5:
dd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:74:86:BF:8A:46:CC:F0:D8:6E:4E:69:DD:E0:78:44:41:56:08:D2
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:57:61:a8:b5:6d:91:19:a3:dc:80:9b:85:73:bb:d2:f5:0f:
a0:e3:4c:14:fd:a6:36:22:e6:ef:60:8e:7a:20:5a:f4:9b:3b:
3b:b7:86:de:c0:93:ca:80:9c:35:7b:98:0e:db:33:c9:d2:2f:
3f:ad:31:0d:7c:91:22:3c:17:1b:81:f3:fa:4a:2c:00:9a:0b:
20:f9:46:29:1e:72:73:7d:4c:7f:12:a0:9f:b4:47:d7:c2:4c:
87:f0:b1:4b:52:cd:20:4e:23:df:63:26:33:b0:ee:bb:25:66:
28:a1:50:2d:73:18:c6:43:62:55:10:1b:33:17:05:9b:00:f8:
09:41:77:f5:73:13:b5:0b:67:95:bd:99:e2:3a:84:58:ae:6d:
3d:fa:e7:8e:ec:8c:7d:74:46:02:1e:0f:f3:a7:3a:20:e0:09:
2f:e5:19:49:66:6d:6d:37:14:b9:f9:8c:dd:08:f8:f3:07:0b:
b5:67:2a:da:96:4e:d6:fc:e8:7f:f7:21:f4:a3:37:73:08:ba:
06:84:c7:e0:d5:fb:d2:f0:82:36:cd:3e:e6:a8:68:ca:d1:a9:
ed:13:1b:58:37:5d:64:ac:7f:ee:4c:0d:43:1a:c0:1a:72:9a:
45:89:90:82:11:3a:3e:10:1b:56:16:b8:22:1c:a7:03:8f:1e:
58:6e:42:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:24:51 2025 by rpki-client