Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: MYha/2+XstmS6cNddfHSP9VhwCdcVXM9m+ROaFgTayE=
Subject key identifier: 73:AC:9F:15:85:4B:44:2E:6F:0B:5B:1C:17:66:37:37:38:77:F1:2E
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 019688EE0201BAB525932A6C658134054C20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: F2
Signing time: Wed 30 Apr 2025 23:00:21 +0000
Manifest this update: Wed 30 Apr 2025 23:00:21 +0000
Manifest next update: Thu 01 May 2025 23:00:21 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: v6NECo17Rhkmr1uqS5P+uxUvd3dLFp8JxkaGqTHR320=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:ee:02:01:ba:b5:25:93:2a:6c:65:81:34:05:4c:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Apr 30 23:00:21 2025 GMT
Not After : May 1 23:00:21 2025 GMT
Subject: CN=73ac9f15854b442e6f0b5b1c176637373877f12e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1a:60:cc:b5:a4:00:da:91:49:12:57:eb:4e:
ba:cc:10:2a:67:65:54:ed:c8:f1:56:83:be:66:72:
35:a2:7f:b8:f4:8c:06:5c:29:2f:0b:bf:e6:2b:b1:
16:ec:0f:d6:d1:54:14:2d:84:b9:b8:22:3d:0b:2e:
b6:e9:e3:a3:7a:7e:fd:29:78:09:8b:43:43:10:e4:
8e:91:3f:9d:52:02:14:b9:44:87:60:d4:05:81:42:
f2:5a:ce:c7:1b:5b:3e:a4:14:e8:44:43:cd:18:97:
0f:6f:a8:4d:b1:b7:cb:c3:bb:99:82:11:f1:8c:74:
5e:c5:36:12:8b:75:18:7a:4e:82:59:d7:10:6d:ec:
25:94:7c:a7:a8:06:32:b4:55:1d:19:5f:51:da:2e:
54:b1:af:29:3c:f5:4d:f1:c5:18:a3:6c:bd:a0:54:
99:ec:74:0d:15:e1:43:71:c2:50:e5:2f:f8:82:77:
e0:17:16:30:80:16:97:19:c1:89:63:20:f8:a5:d5:
35:ee:77:05:b6:be:8f:32:cf:71:25:70:19:0f:6f:
8f:62:95:ac:9e:a1:af:89:10:fc:dd:e5:d2:df:3b:
82:1a:af:f6:e8:3c:2e:6f:37:e4:b8:06:ad:06:07:
53:7d:40:b2:9f:4f:2a:5a:5d:8b:e8:62:a3:39:b8:
14:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AC:9F:15:85:4B:44:2E:6F:0B:5B:1C:17:66:37:37:38:77:F1:2E
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:07:52:44:65:47:55:f0:ba:34:f4:88:b3:52:99:ed:99:98:
01:7e:e6:87:4b:0f:cd:cd:11:bf:48:f8:39:51:f5:b6:6e:39:
c0:98:4f:a9:e3:4d:b5:73:89:32:4f:68:90:db:2d:6c:bf:ac:
61:ec:c6:bb:fd:e2:05:52:6b:25:96:cd:2c:be:6d:3c:e0:ca:
aa:67:a3:f2:e3:68:ae:7a:b1:77:c4:75:da:cb:0e:8c:6f:1d:
61:fe:bc:6d:68:dd:b1:df:9c:20:30:95:ec:4a:23:6d:43:ab:
22:fe:c8:09:69:8a:33:45:1f:4f:8e:5c:0e:b9:48:a6:f7:56:
a8:80:ef:98:31:ba:e3:4b:1e:cd:0d:1b:be:c6:20:ac:98:03:
bd:df:b4:37:0f:f6:a0:ee:ad:e6:5b:4e:6f:6c:be:7c:ce:a9:
74:cb:14:59:99:70:96:ac:c9:0e:79:f8:c0:77:52:a5:c1:e4:
fa:e6:ff:55:8b:6f:73:3c:f3:2a:db:62:58:e8:2f:32:b7:89:
5f:57:ed:d0:9e:26:67:af:42:05:b1:58:6c:6f:96:ef:c9:07:
fc:da:34:81:95:9a:eb:70:3f:ad:cd:34:6e:df:31:6c:93:1f:
a9:b1:f3:c2:6b:8c:a6:7c:25:36:03:20:4b:a1:79:db:43:52:
06:a0:cf:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:46:38 2025 by rpki-client