Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
File: 3o44GHrnDLx77WlXWfDgMpn7swI.mft (raw, json)
Hash identifier: JmbSEkd0y0rUlWorDxnr8OkfaOFDXoBxwgTdNZhgNak=
Subject key identifier: 17:87:3C:0D:C3:69:50:CF:54:21:81:84:84:9F:7D:53:45:14:EB:B8
Authority key identifier: DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
Certificate issuer: /CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Certificate serial: 019681D938CF25DCF3ADAABBD3C8F34EB102
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
Manifest number: 019D
Signing time: Tue 29 Apr 2025 14:00:18 +0000
Manifest this update: Tue 29 Apr 2025 14:00:18 +0000
Manifest next update: Wed 30 Apr 2025 14:00:18 +0000
Files and hashes: 1: 3o44GHrnDLx77WlXWfDgMpn7swI.crl (hash: wiFZjknGqBogSF0Wx9Ap497Vsf0SeGHDKvOedcykGTQ=)
2: wSO8Qf5_v1p-oNDifbsTI9tUaPY.roa (hash: t8VFb4R1YuauyoB16s9G5smfDaNXuP879i5idHgDRZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 13:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:d9:38:cf:25:dc:f3:ad:aa:bb:d3:c8:f3:4e:b1:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de8e38187ae70cbc7bed695759f0e03299fbb302
Validity
Not Before: Apr 29 14:00:18 2025 GMT
Not After : Apr 30 14:00:18 2025 GMT
Subject: CN=17873c0dc36950cf54218184849f7d534514ebb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b8:94:a3:56:12:4e:11:78:91:e3:71:fa:3c:
a3:aa:03:e7:11:a1:8d:a5:1b:dd:c1:a2:c4:94:bd:
1a:6d:86:c4:27:48:d5:5b:58:fa:76:7a:d8:b6:77:
2b:67:ff:32:dd:35:70:4d:78:bd:89:19:c3:7b:7d:
db:f7:4f:0c:f5:92:16:47:1a:06:2e:b1:73:51:4b:
2c:9f:35:42:2e:2a:0b:32:19:79:d6:02:b1:f2:ca:
6f:51:e6:e6:98:78:34:4b:40:88:59:ff:50:61:7b:
da:c5:e4:4d:ab:b1:6f:96:58:33:2d:66:f3:13:3c:
44:db:9e:79:35:cb:b8:6c:54:1c:48:74:03:7c:8a:
e3:06:04:6f:f1:81:4c:84:f6:b1:30:e0:40:92:f8:
3e:93:e5:e5:49:81:34:82:b4:16:1a:d4:0a:62:b1:
cb:d1:b9:f5:15:1c:75:02:9d:8b:9b:43:91:f1:3c:
77:10:cd:86:d4:ff:84:e4:98:e2:ea:b4:fb:52:de:
87:b8:c3:21:dc:d4:5c:b4:f1:74:b5:95:21:b5:c7:
9c:00:0d:cf:34:98:eb:ef:13:64:75:88:a7:7e:11:
55:83:4e:fd:5c:e0:c8:53:ee:7a:a7:3e:f8:2b:86:
7f:c4:45:8e:11:b6:39:fb:49:8d:e2:f9:ef:bc:4d:
24:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:87:3C:0D:C3:69:50:CF:54:21:81:84:84:9F:7D:53:45:14:EB:B8
X509v3 Authority Key Identifier:
keyid:DE:8E:38:18:7A:E7:0C:BC:7B:ED:69:57:59:F0:E0:32:99:FB:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3o44GHrnDLx77WlXWfDgMpn7swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/580c11-3913-4479-bea3-5b1f48b3e214/1/3o44GHrnDLx77WlXWfDgMpn7swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:98:60:60:61:dc:56:55:8c:1c:0e:5c:34:29:a9:e6:88:8b:
c4:73:fe:a8:36:05:6d:aa:93:2c:c7:4b:25:80:2e:af:60:3a:
65:84:46:f2:b6:05:e0:78:b3:4a:74:a9:05:c3:54:2d:46:0e:
4f:65:47:e7:6b:10:03:54:67:30:77:23:c6:ce:c2:ae:02:c1:
fd:84:ad:32:a4:e6:e9:9f:7a:08:8e:5d:35:8d:a0:6f:a0:49:
06:93:f1:d5:60:91:e5:1e:de:70:c9:46:91:c4:ef:8f:d7:89:
ca:5d:b1:19:8a:fd:a8:2e:e5:71:95:df:5a:00:cf:04:1f:86:
67:a9:2b:b6:6f:db:28:34:b0:06:da:a8:48:f0:9a:17:80:5e:
ba:a8:7f:00:51:c7:f0:1c:ff:5d:3a:b4:10:e0:90:43:d1:cf:
66:d4:a9:13:8d:a2:93:b9:12:59:fe:b8:df:0e:4d:ae:d4:00:
38:0a:c1:8f:e3:39:16:76:63:c4:21:96:6c:4a:38:0d:dd:f7:
30:35:71:2a:a1:d2:78:56:2c:3d:de:52:4a:37:04:d9:c2:c2:
f4:3a:55:b9:6f:4c:9e:39:1c:7e:cd:78:a5:83:4a:ab:c5:0e:
d2:02:cb:78:f6:5d:c2:5a:20:d0:c4:e9:00:7a:d5:51:07:ab:
17:0b:e7:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 17:28:18 2025 by rpki-client