Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
File: 3fz_0QDcAH8alqRDDqhyOJxX1s8.mft (raw, json)
Hash identifier: JfnCKhRfyZWlG3UpxdMOKvnbhZY3VQuWv0BC6pTp55c=
Subject key identifier: BC:AF:3F:47:65:2E:39:BD:A8:E8:A5:CA:1E:4C:87:B6:6B:4C:2B:EE
Authority key identifier: DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
Certificate issuer: /CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Certificate serial: 01976F631FB9833B93A0296A9C490D4C2143
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
Manifest number: 0282
Signing time: Sat 14 Jun 2025 17:00:56 +0000
Manifest this update: Sat 14 Jun 2025 17:00:56 +0000
Manifest next update: Sun 15 Jun 2025 17:00:56 +0000
Files and hashes: 1: 3fz_0QDcAH8alqRDDqhyOJxX1s8.crl (hash: ZA75cqjag54uQrqivLy7ykxixhs/s1xNT628dK4RyCg=)
2: SHvoKKIBU3wgrybj6zWAE812zjc.roa (hash: yK7W9vbdAmqtnEpvGmawrHGyq/oUYACQgVTYc+60SM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:1f:b9:83:3b:93:a0:29:6a:9c:49:0d:4c:21:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Validity
Not Before: Jun 14 17:00:56 2025 GMT
Not After : Jun 15 17:00:56 2025 GMT
Subject: CN=bcaf3f47652e39bda8e8a5ca1e4c87b66b4c2bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:25:7b:4c:66:7f:e4:67:44:d0:3f:e8:be:5c:
7e:09:f2:74:04:33:c2:60:1d:05:0c:ed:cf:41:0d:
d9:9d:39:71:8e:fc:49:d2:4c:55:8d:13:c5:a1:bc:
c6:ca:7d:62:66:2d:2a:ee:66:46:71:d6:f5:82:5d:
8f:cb:d7:ca:3e:70:c3:28:bf:c1:32:c7:de:82:39:
71:38:f2:8b:75:bc:e8:df:e4:ac:df:7e:d7:12:49:
66:86:5f:b0:91:1e:ed:54:e4:82:ac:67:bf:cd:4d:
0c:3f:56:87:c0:b4:67:1c:66:72:f3:b3:fa:b5:28:
28:56:e3:59:29:c1:0e:4c:74:37:77:e7:c0:82:f2:
f7:34:03:ba:ea:f0:8d:65:93:19:62:18:45:20:33:
0e:1b:36:fb:c8:7d:72:4f:4a:d1:d9:26:89:25:69:
36:46:3c:32:cc:52:af:5b:18:6c:7b:5c:42:d0:3b:
14:16:5b:ca:4c:07:8f:a4:e7:8d:83:fd:49:6d:fb:
a3:17:c4:da:da:4a:11:49:9b:18:98:6b:7f:08:2a:
a7:b0:1e:78:38:2e:73:37:96:d9:9e:51:29:e8:8e:
e1:fb:23:79:48:0f:68:2f:6d:55:92:c2:51:5d:0f:
c2:49:a3:9e:a0:3c:4a:4e:9c:cb:56:8b:37:da:76:
3a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AF:3F:47:65:2E:39:BD:A8:E8:A5:CA:1E:4C:87:B6:6B:4C:2B:EE
X509v3 Authority Key Identifier:
keyid:DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:dd:f7:71:bc:ab:e8:87:67:0b:0c:05:3b:6f:f9:db:c3:be:
45:90:16:66:d2:35:65:f4:e0:3b:0e:11:a5:04:cb:0a:22:7c:
5f:de:54:e7:fe:c5:50:59:82:79:ec:a0:bf:e3:f0:3b:95:4c:
43:a7:cb:27:99:01:6a:89:8d:23:ed:0b:66:5b:9b:c5:99:b9:
fc:59:60:c3:a0:0c:03:ba:f8:ef:e2:f2:a8:24:b4:d4:06:34:
45:b2:97:58:95:fd:60:22:38:34:64:5f:d9:c2:1f:74:c7:56:
f5:ed:6c:99:28:98:63:83:7f:88:21:ec:66:9e:96:cb:7d:04:
52:b2:e0:c3:ef:59:0e:ac:08:25:4d:09:7c:4d:b6:54:91:12:
5e:28:ad:45:7e:df:40:d4:6b:8e:3d:0c:b5:a1:42:93:7f:01:
83:81:02:b0:0e:37:92:e5:73:e7:1c:4f:60:e9:33:5d:bf:49:
6e:2c:dd:1a:e5:8c:9d:2a:8a:8f:13:eb:f2:50:67:91:0f:2f:
4c:cd:1f:a8:f9:26:9b:53:a4:a5:a7:64:1d:78:9c:9d:8c:3e:
9f:32:3b:ef:5c:f1:00:4e:6a:62:71:83:80:23:11:d6:2c:48:
79:a1:07:93:5b:68:e5:24:70:a9:52:43:f2:c3:7b:f4:ba:67:
d0:79:c9:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:23:40 2025 by rpki-client