Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: FWXvmt/J9aY2TKDXpAcMiCZzAoDgCFPQXOxGrhMsxQo=
Subject key identifier: 3D:57:54:0E:1A:97:51:A4:76:18:BB:F0:84:79:CB:1F:CB:48:7A:61
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 0197718821789429BF6F919BFCEF7A51F6B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 1525
Signing time: Sun 15 Jun 2025 03:00:36 +0000
Manifest this update: Sun 15 Jun 2025 03:00:36 +0000
Manifest next update: Mon 16 Jun 2025 03:00:36 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: 0ypbWVkigi0Pa2EpMTZ5T9tqvz2/8WykSYB8g+3KygA=)
2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 03:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:21:78:94:29:bf:6f:91:9b:fc:ef:7a:51:f6:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Jun 15 03:00:36 2025 GMT
Not After : Jun 16 03:00:36 2025 GMT
Subject: CN=3d57540e1a9751a47618bbf08479cb1fcb487a61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:56:f8:a2:6a:ea:69:9c:13:8c:a2:39:d2:
11:23:a8:a4:e4:ef:b1:e2:70:4c:81:9d:5a:6d:59:
c1:38:1d:c0:56:41:40:2b:ab:44:c4:6a:62:e1:15:
d9:a6:ca:6b:07:16:a6:42:8a:03:6c:ab:ea:16:0b:
f5:40:e7:ee:4f:50:92:8c:b0:af:2b:7b:1a:ac:a6:
09:25:b4:7f:50:4a:44:9b:7b:c3:a3:cb:b8:88:2d:
ab:c7:c4:a2:9e:7b:cb:ba:d5:76:04:43:f3:eb:4f:
fd:71:ac:2d:e0:49:47:81:58:c6:93:a0:91:cb:ad:
50:e1:98:a3:ba:31:21:2f:00:24:f2:ce:18:cc:3a:
d3:1c:76:f5:7d:e2:0d:3c:83:57:a7:da:1b:96:30:
3f:9f:0f:28:6b:58:73:07:a2:05:4b:2f:e3:57:c4:
6c:2e:52:a5:d4:4f:6d:74:ce:04:2f:d8:22:e0:13:
c7:05:f3:22:40:95:4f:15:15:58:ad:e0:7d:ea:ad:
22:db:3f:25:a9:cd:2a:80:18:e2:ff:9c:aa:1a:41:
bf:36:38:18:88:55:56:05:de:99:1e:b6:1e:d9:4c:
72:ec:53:09:90:26:a9:3c:cd:80:f0:b3:b9:9b:b7:
2a:16:5d:9d:ab:85:e4:1e:35:9e:d1:52:92:03:3f:
d0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:57:54:0E:1A:97:51:A4:76:18:BB:F0:84:79:CB:1F:CB:48:7A:61
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:49:7f:d2:63:da:19:e0:86:ff:f3:e8:a0:d4:c6:7c:1e:4d:
cc:44:ee:69:7e:7c:a5:e9:26:93:a1:bb:5a:fe:68:8c:b9:b5:
39:20:b6:52:c0:04:3d:58:62:bd:15:4c:66:d7:92:3f:c5:ab:
83:6e:fe:4b:b3:04:f1:c9:89:0b:c3:73:9e:35:be:b1:e1:d2:
10:25:ca:07:fc:b9:ce:fe:03:f6:a6:4a:34:0e:32:33:b9:c8:
98:dc:73:fa:3e:f6:f1:93:51:3d:9a:0f:b2:29:8c:a1:06:41:
b3:53:51:27:28:6c:55:20:03:4a:98:44:b2:d4:c3:67:b3:19:
0f:00:6c:d1:fc:78:75:ea:6b:09:44:4f:bb:c3:39:c2:c9:5f:
b8:33:cc:f0:63:34:2c:66:96:d9:c4:b7:ae:a8:60:75:4d:b1:
8c:71:a7:81:68:77:08:dc:ef:ff:6d:95:7c:b5:18:6c:1f:2c:
7c:db:d7:10:76:dd:44:88:1b:b7:2f:6d:0e:d2:77:f6:01:da:
71:eb:67:c4:16:00:3e:1b:3d:f8:9e:ba:f2:5c:0b:ae:08:8f:
64:ab:c4:16:be:23:13:5e:49:be:1b:8e:1e:05:da:d9:1a:a7:
4e:dc:41:52:50:05:11:2c:e9:88:73:1c:f4:ae:11:2d:78:9f:
fb:0b:dc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:26:18 2025 by rpki-client