Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
File: 3XF0IQf16FBis-CuZa-kuuZw4Es.mft (raw, json)
Hash identifier: /jj/WM1jomY0b1ZMEIQldfaSWjzte2MVA/vRCDlY1EA=
Subject key identifier: DC:71:96:69:5D:EE:02:5B:1F:34:01:73:D1:13:31:07:71:23:C6:0F
Authority key identifier: DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
Certificate issuer: /CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Certificate serial: 01977640F56858E866673B9FB4B57FF026E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
Manifest number: 0414
Signing time: Mon 16 Jun 2025 01:00:58 +0000
Manifest this update: Mon 16 Jun 2025 01:00:58 +0000
Manifest next update: Tue 17 Jun 2025 01:00:58 +0000
Files and hashes: 1: 3XF0IQf16FBis-CuZa-kuuZw4Es.crl (hash: GQB6ZFrg4PQtO4eXetNoleVPHO/ixk1BSDuh28kbSvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:40:f5:68:58:e8:66:67:3b:9f:b4:b5:7f:f0:26:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Validity
Not Before: Jun 16 01:00:58 2025 GMT
Not After : Jun 17 01:00:58 2025 GMT
Subject: CN=dc7196695dee025b1f340173d11331077123c60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cc:91:36:23:21:c8:7b:2c:38:91:48:91:13:
0b:3c:0b:c4:2b:dd:16:b7:d6:94:fa:4f:04:9f:63:
f0:6c:0f:a1:79:b3:a1:fe:3e:4f:15:cf:06:7b:95:
d4:e3:06:59:6c:9f:d5:55:b4:b7:8e:ff:92:a5:1c:
96:94:7d:43:db:9e:f6:af:95:03:c5:e0:7e:69:08:
d3:99:5a:4d:1c:be:69:3e:7b:5e:40:74:2a:bb:f4:
33:bd:02:b2:ac:47:ee:be:36:2e:cd:85:e1:1c:bb:
08:11:8c:5b:71:0a:39:40:18:99:04:d7:75:19:e1:
53:14:01:00:98:46:6f:29:ca:b3:e3:49:81:67:86:
bb:61:95:7e:53:a8:92:31:3f:bb:26:ea:3d:fc:70:
b3:e1:ae:db:a2:d6:f5:b5:85:c0:c0:5d:c6:1b:45:
ba:af:39:0e:6f:8c:c6:7a:6c:24:fc:6c:50:bd:3b:
50:ca:fc:ae:a7:f6:b7:55:c9:62:f3:12:ad:09:53:
64:33:1a:87:9d:c3:46:ca:fc:72:9f:eb:56:9d:5d:
47:43:9a:a6:2a:1f:1e:e0:8e:0d:7c:09:96:56:4b:
45:df:b1:09:e4:3b:17:55:b9:dc:b6:5e:fd:72:50:
67:8c:05:d3:eb:c5:3c:b0:9b:b4:40:3e:cf:0c:cc:
e3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:71:96:69:5D:EE:02:5B:1F:34:01:73:D1:13:31:07:71:23:C6:0F
X509v3 Authority Key Identifier:
keyid:DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:6b:09:a3:9d:2c:f7:ed:7c:6c:c3:6c:e0:43:03:4a:a4:a6:
2f:aa:e2:ea:a3:7d:28:75:4e:46:8e:66:13:94:9a:80:1d:c9:
94:30:ae:32:02:9d:ec:b6:d3:9c:80:82:2e:ee:b4:1c:22:99:
a1:eb:ee:c8:be:f4:98:ee:33:8d:6f:94:4c:ee:2c:d0:09:76:
18:e0:92:e6:70:65:09:a9:15:f6:df:9d:52:62:ca:ee:dc:00:
2f:51:ee:49:ec:60:65:85:1b:5a:86:46:2e:1b:63:f1:69:d7:
ac:7a:8b:af:7e:52:03:91:f3:64:3f:db:7c:70:e0:18:4a:3d:
20:97:55:4c:06:0b:9b:da:7a:47:83:7e:ce:08:0f:dc:67:53:
e3:9a:6a:4d:d0:26:07:cc:96:ac:b5:fd:1f:5a:98:6e:22:fc:
0d:6c:8e:46:22:a2:2c:cb:00:3d:29:ca:45:cb:a3:13:79:bb:
e1:f1:a7:83:de:2e:4e:6d:9e:c3:c1:b3:e9:5f:4f:9e:a2:16:
8f:62:7a:27:9f:66:a8:32:df:18:71:ee:5e:44:01:f3:d3:de:
4f:b6:bd:8f:9f:83:23:d2:4e:9d:b8:05:63:14:c4:21:6a:60:
3c:12:35:e9:20:d4:5a:0d:bc:2c:f3:24:4d:74:3a:55:40:cb:
3d:c0:8a:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 06:59:58 2025 by rpki-client