Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
File: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft (raw, json)
Hash identifier: r/xtQEbRgGpU6EJ2CogelRliuftcUdE3OYdf6iqLULA=
Subject key identifier: B6:59:FB:1E:1E:2B:1B:6C:AC:4D:CC:CF:2F:38:D2:B8:F7:9B:87:8F
Authority key identifier: DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
Certificate issuer: /CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Certificate serial: 01976F2BE9AA29400028A01D7B600246F557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
Manifest number: 0995
Signing time: Sat 14 Jun 2025 16:00:38 +0000
Manifest this update: Sat 14 Jun 2025 16:00:38 +0000
Manifest next update: Sun 15 Jun 2025 16:00:38 +0000
Files and hashes: 1: 3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl (hash: jf5YNnyEdjei8nUuyvzuuq7p05JV0Tba3wUT1OJ8OrQ=)
2: EiOjn6Cn36HWuMJFodH0EVbfYdc.roa (hash: prKCNtfilLl42pcGEF7Kjg7za6QhPHVZeIUhroTyVuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:e9:aa:29:40:00:28:a0:1d:7b:60:02:46:f5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de0b59fb68151e21dc99d62faf03589be41fbea2
Validity
Not Before: Jun 14 16:00:38 2025 GMT
Not After : Jun 15 16:00:38 2025 GMT
Subject: CN=b659fb1e1e2b1b6cac4dcccf2f38d2b8f79b878f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ed:12:df:af:9a:a2:63:30:48:9a:3a:23:f0:
09:2d:7a:b8:9c:6c:3b:bf:ec:6d:e3:50:96:f8:4f:
84:d1:fc:f1:c7:05:84:4b:d3:0c:45:fd:3e:b9:44:
4f:4c:0c:00:39:22:ca:16:37:1c:58:b2:6a:42:3b:
88:7f:97:1d:60:16:38:de:9e:ee:66:f3:88:b0:16:
bc:fa:24:55:9b:ed:74:12:4a:07:a3:e7:b4:eb:f1:
ab:c3:b1:5c:ad:32:a2:a9:90:67:59:93:30:72:ba:
71:65:5f:a9:eb:e2:7c:80:7e:1e:35:4d:e3:0c:60:
e4:f0:66:51:47:49:6f:9f:8c:fc:47:52:75:b8:26:
c0:72:7a:dd:d2:f2:d1:56:7b:a4:d3:d1:64:9f:5f:
4f:e4:c8:4c:61:37:a1:8c:1a:05:e2:9f:bc:eb:a6:
f8:74:a2:0d:49:9b:a2:b7:92:db:cd:a1:49:b5:18:
a8:7b:b0:7c:c3:38:22:f1:86:c8:29:2d:82:bb:ec:
fc:05:e6:9b:af:01:47:d3:dd:02:34:85:9a:11:13:
cd:00:69:1e:64:b9:73:13:bf:21:87:97:2c:e6:f6:
c9:0e:5e:5b:73:1c:a4:03:8e:1c:33:9c:4c:0a:fb:
98:8a:7f:07:a3:f7:fd:30:1e:c6:2b:44:1c:93:64:
bc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:59:FB:1E:1E:2B:1B:6C:AC:4D:CC:CF:2F:38:D2:B8:F7:9B:87:8F
X509v3 Authority Key Identifier:
keyid:DE:0B:59:FB:68:15:1E:21:DC:99:D6:2F:AF:03:58:9B:E4:1F:BE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9ad508-bfc1-4b8a-bafc-cd024788ed3c/1/3gtZ-2gVHiHcmdYvrwNYm-QfvqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d3:a4:b1:ad:da:85:bc:8d:f0:ee:c0:71:55:24:21:fb:bd:
15:02:f3:c9:ce:d4:5f:3c:7c:8c:c4:72:10:18:fc:ba:14:29:
f9:0e:ea:c8:96:5f:c3:70:74:a4:0e:7e:3d:1c:1a:b7:73:40:
50:d8:8f:7f:07:28:b0:84:c5:71:62:05:b8:d1:4a:69:16:87:
9c:19:16:42:90:6e:11:11:10:01:3c:7c:c1:61:27:92:34:79:
1e:44:4a:78:99:dd:71:da:f6:75:34:16:91:c4:46:b3:15:b4:
56:52:5f:36:b4:72:53:fe:22:dd:9b:1c:02:a1:54:f9:19:7d:
72:42:80:8d:d6:d4:e1:70:e3:9f:94:ee:ec:6b:dc:84:09:10:
39:7a:07:12:df:ab:f8:d2:1c:88:64:4f:42:34:be:5b:c0:73:
7c:61:81:07:bd:d0:85:d4:9e:3a:ee:3f:34:74:c0:8e:91:0d:
f8:86:3e:33:d6:40:c6:aa:79:e6:9a:52:5f:88:16:bd:07:4d:
9c:6e:1f:80:31:6f:9d:63:c8:56:60:75:28:15:ee:82:31:48:
04:af:9c:09:da:74:53:5b:9f:06:23:b6:01:95:24:84:1f:3c:
3e:71:80:3b:26:54:53:40:23:17:46:0c:21:32:ea:69:5a:7f:
a8:3f:df:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:33:24 2025 by rpki-client