Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: zyYiEDYnStM6phAgx/4frBaJEyMgtdOLB+qZQ+PZLSo=
Subject key identifier: 3B:5D:63:8A:F7:33:63:D7:A6:8C:D2:2A:77:91:1B:7A:55:FA:33:3E
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 01988B7C8F01B994CCAD15E0F09B46783A39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 15B7
Signing time: Fri 08 Aug 2025 21:00:52 +0000
Manifest this update: Fri 08 Aug 2025 21:00:52 +0000
Manifest next update: Sat 09 Aug 2025 21:00:52 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: 2pJrwgNKb/2PtReb/Uzkso+z3mWE54u/Q8bmgJFVQmw=)
2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:8f:01:b9:94:cc:ad:15:e0:f0:9b:46:78:3a:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Aug 8 21:00:52 2025 GMT
Not After : Aug 9 21:00:52 2025 GMT
Subject: CN=3b5d638af73363d7a68cd22a77911b7a55fa333e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a0:4e:09:05:13:48:50:43:12:99:38:04:80:
d3:a9:65:ea:73:47:d0:55:84:d7:6b:e0:08:b0:45:
81:c4:94:29:60:98:20:70:45:ad:8a:46:cc:c0:86:
18:68:da:f5:b0:a9:29:e1:48:96:ae:2c:05:9b:70:
38:03:dd:76:f7:12:58:e7:9b:19:1c:26:af:22:c6:
15:bb:0b:64:5d:c8:52:1a:bb:d6:28:cf:4b:bc:23:
cd:65:5a:f6:58:99:66:17:d7:0c:e0:62:51:e0:bd:
eb:63:b8:0a:c4:be:48:d1:f1:16:a7:0c:57:ea:b0:
57:35:61:54:4c:0e:5a:bb:b2:45:36:c7:a4:4e:ca:
c7:85:d0:b2:1f:78:6f:c1:5f:a1:77:13:51:c9:92:
7d:1f:77:17:71:48:46:2d:24:30:08:48:5d:d9:b1:
94:c2:14:a0:c2:87:af:18:c8:af:a2:4b:7d:97:19:
a1:de:7e:96:7f:5d:5d:f2:17:b9:0a:bc:11:9d:0f:
db:88:09:e2:d3:da:c3:a2:45:e7:a7:39:37:a3:28:
b3:ba:ab:55:f1:3e:53:f8:13:07:ec:0a:9e:0f:35:
5d:09:9f:ba:f2:36:c9:f8:25:71:85:a3:0f:66:b2:
6d:1f:2b:c2:e6:6e:62:f0:26:f1:3a:26:34:40:b4:
19:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5D:63:8A:F7:33:63:D7:A6:8C:D2:2A:77:91:1B:7A:55:FA:33:3E
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:0b:7a:40:30:d8:74:57:77:ea:03:14:25:70:16:f5:5e:e5:
3e:c0:b2:23:03:49:74:2f:ff:5e:0d:aa:bc:4a:52:b3:bb:b9:
e3:54:a6:13:02:ef:9f:6a:f1:d2:9d:69:ca:e7:1b:20:ac:c0:
b2:6c:61:2b:e6:02:c6:4b:87:9e:4e:71:d9:bb:e0:67:d5:23:
22:50:b9:58:dc:24:9a:19:d3:d1:70:07:9a:0c:b8:7f:72:fb:
48:0e:16:1d:98:ff:99:79:3d:97:d8:2b:07:be:96:6f:46:9f:
26:4f:01:55:ff:0b:0a:e3:b5:38:7b:26:6d:9d:54:90:8f:37:
d1:00:83:59:5d:47:75:84:e7:c1:ae:ee:ca:ee:e7:76:9f:6b:
09:91:01:de:ab:db:48:0d:f4:71:33:07:3b:ce:10:57:d3:d5:
b7:7c:51:e9:8d:4d:3e:b0:14:ad:d3:6d:58:39:27:39:38:5c:
3d:5d:b9:8d:cd:d7:97:2e:b0:4b:26:d4:38:cb:90:be:c7:e7:
72:ab:04:a0:7e:7a:a8:8c:c4:87:95:80:9d:a2:25:99:8e:c1:
18:81:74:55:c0:1f:20:8e:f5:d7:0b:d9:2e:26:33:a0:d1:61:
27:5c:d4:13:5c:e6:86:1b:44:43:02:f1:54:2f:c5:eb:07:90:
c2:46:57:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:51:44 2025 by rpki-client