Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
File: 3fz_0QDcAH8alqRDDqhyOJxX1s8.mft (raw, json)
Hash identifier: UtH41L2xkbj2ak3oFM2B03W2ji9cLSY1vq7jKDE3RF0=
Subject key identifier: 46:3F:17:0C:F4:85:A2:6A:25:BB:5D:12:03:90:6C:B6:43:63:77:DE
Authority key identifier: DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
Certificate issuer: /CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Certificate serial: 01967C0E21E54BFB14C321E94EEDFF72C99C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
Manifest number: 0204
Signing time: Mon 28 Apr 2025 11:00:22 +0000
Manifest this update: Mon 28 Apr 2025 11:00:22 +0000
Manifest next update: Tue 29 Apr 2025 11:00:22 +0000
Files and hashes: 1: 3fz_0QDcAH8alqRDDqhyOJxX1s8.crl (hash: ez0jA5mfYtqleszN73WJG90oPdcoSy1jIBhlem4vdN4=)
2: SHvoKKIBU3wgrybj6zWAE812zjc.roa (hash: yK7W9vbdAmqtnEpvGmawrHGyq/oUYACQgVTYc+60SM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 11:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:0e:21:e5:4b:fb:14:c3:21:e9:4e:ed:ff:72:c9:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfcffd100dc007f1a96a4430ea872389c57d6cf
Validity
Not Before: Apr 28 11:00:22 2025 GMT
Not After : Apr 29 11:00:22 2025 GMT
Subject: CN=463f170cf485a26a25bb5d1203906cb6436377de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e6:15:70:b7:c5:3f:f4:fd:1e:fd:70:13:a3:
a2:5d:71:e8:91:9d:77:7d:06:ce:c9:68:64:af:49:
53:8f:d3:da:a1:d5:a9:29:2d:ae:35:00:de:74:4a:
8f:b3:0b:d6:9c:af:53:0b:fa:ea:f4:3d:bc:0a:5b:
32:94:39:9e:c6:90:fb:b4:32:5e:f0:c5:82:d2:e3:
a6:b5:36:88:16:14:ee:f5:85:ad:4a:ca:0c:88:6c:
79:02:7c:05:63:3f:de:9d:a5:1f:d4:bf:8d:58:d8:
dd:1c:91:f0:4c:8a:33:cf:50:9a:1d:90:05:04:d1:
3d:e7:bc:cf:4c:45:2e:fd:fc:7f:6b:d9:72:bf:72:
cd:a2:31:46:02:3d:ec:f0:fc:70:33:f7:1c:57:5b:
a2:71:11:b9:51:c8:c8:69:45:53:b1:06:06:b1:a6:
5b:b4:66:a4:0c:65:71:b2:3c:61:e5:fc:22:e0:b0:
e3:b8:30:0f:35:01:b4:2b:3f:71:a9:aa:72:21:42:
78:70:b0:5a:95:cd:50:03:4c:95:a2:2d:6a:44:d8:
e0:5d:e1:fa:03:a9:11:e2:59:f2:30:72:74:0f:6f:
15:a8:68:66:ba:8e:32:71:4e:9c:7f:68:96:a1:5f:
8e:23:02:65:b6:1a:88:e7:dc:85:5f:18:e4:96:f9:
86:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:3F:17:0C:F4:85:A2:6A:25:BB:5D:12:03:90:6C:B6:43:63:77:DE
X509v3 Authority Key Identifier:
keyid:DD:FC:FF:D1:00:DC:00:7F:1A:96:A4:43:0E:A8:72:38:9C:57:D6:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fz_0QDcAH8alqRDDqhyOJxX1s8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/2fc375-da14-4f7f-8fae-15a6e7df45c9/1/3fz_0QDcAH8alqRDDqhyOJxX1s8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:58:1e:da:3a:26:ff:ed:04:cd:53:34:1d:6e:eb:0b:82:c3:
79:9d:22:35:47:dd:3a:4e:9e:f8:6d:6f:6e:ef:6a:bf:ae:e6:
3e:d5:5c:0b:47:7e:5f:e8:0b:86:5b:93:34:76:b8:63:c1:b8:
bd:b7:f6:d2:1a:3f:fb:24:78:0d:f5:48:51:82:4a:da:87:07:
31:76:78:56:cd:97:d5:5a:6c:42:44:38:30:f1:21:67:38:65:
2d:e3:8b:af:02:4d:89:3b:79:c0:22:35:72:bd:46:bb:2c:c6:
85:21:96:4b:25:1a:1c:93:08:fc:24:d1:8d:58:a5:1d:0f:43:
16:7f:00:2f:78:70:d7:31:fa:52:68:f5:0b:3b:da:a1:bf:ad:
cb:05:a1:be:20:b6:b1:ec:d4:b1:99:63:71:7b:af:9e:ff:cf:
f7:f1:04:a3:be:7a:1f:33:25:d9:29:57:12:31:21:3a:6e:23:
61:3f:5d:b9:3b:67:9d:ac:37:b0:a8:06:a2:2c:e1:e4:ba:d7:
1f:b6:30:32:30:64:9b:86:75:77:8f:6a:f1:58:b6:34:95:cc:
d5:91:44:ec:85:5a:9a:e5:03:2f:10:c2:27:54:86:e4:76:50:
07:87:0d:8d:f2:a1:4d:ba:a4:5b:cf:ba:25:ea:9a:71:f3:17:
c8:74:98:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 16:34:48 2025 by rpki-client