Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
File: 3hL5ZansM-LC6HthYb7vuL4obKM.mft (raw, json)
Hash identifier: YZmlNubRqPWqR/rSKeGDeb4sWz0fjxPY67yc4bV89N8=
Subject key identifier: 1F:CA:91:A4:2D:13:FB:A8:C6:2A:D9:36:67:09:36:47:B6:28:86:5A
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 019690712A7A56EEE684CE22BE1CA2F517EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
Manifest number: 1340
Signing time: Fri 02 May 2025 10:00:57 +0000
Manifest this update: Fri 02 May 2025 10:00:57 +0000
Manifest next update: Sat 03 May 2025 10:00:57 +0000
Files and hashes: 1: 3hL5ZansM-LC6HthYb7vuL4obKM.crl (hash: Dz6iWbBMdI2bcCO70Y/J3NSIlUPfjpxTPUWMewFnLl4=)
2: WwmcE7wGl7pyI1JEZUrcMqc8ydE.roa (hash: eYdzJRuLYCeHIGBMM52itYWmfWw58ujov0m3EgFoPMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:71:2a:7a:56:ee:e6:84:ce:22:be:1c:a2:f5:17:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: May 2 10:00:57 2025 GMT
Not After : May 3 10:00:57 2025 GMT
Subject: CN=1fca91a42d13fba8c62ad93667093647b628865a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:1e:ad:22:d2:0a:e6:df:28:18:29:fd:80:
46:7f:bf:e7:e7:df:39:9e:34:e2:0e:28:e5:d0:60:
b3:6a:58:01:a9:cc:f9:31:5a:22:13:d2:bf:52:99:
a2:68:a0:58:fb:06:4e:81:f9:fe:cf:d5:61:63:8c:
d8:19:1c:8d:36:c6:13:76:67:07:ec:eb:73:7e:39:
0e:12:61:af:26:15:62:c2:84:d3:7c:b9:9c:a7:74:
82:2d:a6:b9:f4:98:a0:f1:a4:bb:01:24:07:de:90:
e9:40:6f:ff:ed:a1:28:42:cb:b0:4c:d1:7d:ae:15:
80:35:aa:8c:10:84:ce:99:84:47:9b:3d:5b:d9:51:
23:97:10:13:19:92:e5:d6:a7:e5:62:be:53:1c:18:
18:c7:3b:7d:d2:81:32:c0:57:1b:1b:a0:ae:8e:81:
c8:6c:7b:2d:d3:79:52:be:85:a3:25:88:55:15:3e:
85:35:dd:47:54:39:88:be:b9:49:e5:b8:ec:92:1c:
03:41:04:76:1a:3e:68:af:31:1a:0e:77:cf:06:8f:
00:e1:00:ba:31:ba:b5:e5:7f:7f:ee:9c:55:0d:9e:
0e:8d:af:6d:a0:e2:45:18:66:ef:e4:8f:3b:b4:7c:
80:0f:c4:f5:01:be:ef:f4:2e:bb:53:44:c5:ec:8b:
90:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CA:91:A4:2D:13:FB:A8:C6:2A:D9:36:67:09:36:47:B6:28:86:5A
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:0e:53:77:9a:58:2d:bf:c7:e4:08:e0:a2:4a:90:61:0f:4c:
25:32:35:4d:f3:5a:32:8a:7c:50:68:ba:64:41:25:42:b8:a3:
f6:84:77:fc:0d:7f:2c:4f:3b:3c:7d:39:62:48:da:0b:11:18:
a7:f0:32:50:b1:2f:c9:40:78:c6:4e:a2:20:53:19:9f:b8:6d:
4c:e8:7d:3b:5c:34:0f:84:bc:71:8a:a5:b1:f2:df:f4:f7:09:
e4:a7:7d:a3:ec:27:5b:80:d1:7e:9a:f5:e7:22:b8:01:47:10:
86:27:16:38:8b:60:07:16:2a:d9:70:b5:6a:fc:64:c6:6e:54:
21:c1:0a:64:c2:5d:4e:80:79:cb:e2:ec:5f:dc:38:df:98:90:
fe:9c:74:49:62:14:1b:68:61:74:90:f3:3e:34:ce:0f:f4:52:
fa:05:4a:58:69:15:60:94:7b:56:9a:54:27:0d:fc:af:3f:f5:
6c:2f:b3:f7:4f:e4:28:80:64:46:5c:d0:cf:d4:26:65:64:c8:
d9:b3:2c:84:68:28:ca:5b:3b:7f:9d:f8:86:37:d5:53:12:c2:
58:db:f8:e9:2e:3f:c0:8b:ed:79:d4:66:ba:57:59:9c:39:69:
83:d1:2d:8e:97:63:f6:e1:07:cd:ee:22:bf:b5:f0:6a:49:ef:
b8:01:26:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 15:01:38 2025 by rpki-client