Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
File: sz3NILWulcFy0y7XKevzBhl7I-c.mft (raw, json)
Hash identifier: MIXKLD+dereulQM/5pb1NhUMGa1S3Vxd2O4ebzRWl0M=
Subject key identifier: 7E:46:16:AE:A7:FA:B7:52:A7:E1:8E:EA:45:98:96:D4:3B:B2:C1:C2
Authority key identifier: B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
Certificate issuer: /CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Certificate serial: 01976FD119A6FD83B33D7AFF138162DF2E7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 19:01:03 +0000
Manifest this update: Sat 14 Jun 2025 19:01:03 +0000
Manifest next update: Sun 15 Jun 2025 19:01:03 +0000
Files and hashes: 1: CIm7PdRT4tGc0ohUd0vMkXyk2Z4.roa (hash: bKi9ERQ3HDvQWS3A9n+SnlJFymCAx7E6eQcIAFgcP7o=)
2: sz3NILWulcFy0y7XKevzBhl7I-c.crl (hash: tFM7uQlo4pckwqc2dTk1F2EoEXxdk6GaC6PiCxAcUf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d1:19:a6:fd:83:b3:3d:7a:ff:13:81:62:df:2e:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b33dcd20b5ae95c172d32ed729ebf306197b23e7
Validity
Not Before: Jun 14 19:01:03 2025 GMT
Not After : Jun 15 19:01:03 2025 GMT
Subject: CN=7e4616aea7fab752a7e18eea459896d43bb2c1c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:27:a8:08:65:78:27:2c:dc:cc:49:f6:90:08:
d0:8c:6c:64:62:72:0c:1e:f7:bf:36:4c:30:27:fd:
d0:2d:09:4b:fb:b0:3d:bb:17:1e:5d:97:02:08:24:
ca:5d:2e:2e:ae:0b:ea:cb:68:aa:30:30:d5:11:50:
35:5a:3e:26:a5:a7:5d:cf:c3:40:19:80:3f:9c:d1:
5d:8f:ed:2c:e6:cd:0b:4b:d4:21:3f:51:72:c9:4a:
a5:35:16:e8:2c:7c:90:ea:00:84:02:e1:2c:94:19:
61:53:14:fa:4f:be:2d:ba:dc:48:35:f8:43:56:92:
28:3d:4e:89:37:58:2c:d7:f5:47:e2:44:92:61:ba:
53:c6:6e:d2:7c:fe:4d:19:58:c6:97:29:0e:50:d0:
b0:64:1a:41:6b:7a:13:85:19:5b:6f:a8:b8:85:82:
09:03:e5:e6:a1:40:5a:43:98:29:dc:92:64:90:38:
c6:6c:52:b3:5b:55:63:9c:94:32:16:e0:ef:4e:ad:
fb:92:2b:0d:9d:30:7b:5c:26:83:91:59:9b:31:dd:
bd:d8:e1:a3:c6:50:f4:e5:57:5a:3c:86:eb:cc:62:
fa:86:f3:70:4b:28:59:7c:f8:0a:ab:a7:ea:65:bb:
eb:81:fa:a1:23:af:a2:f0:05:20:12:9b:82:90:0e:
29:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:46:16:AE:A7:FA:B7:52:A7:E1:8E:EA:45:98:96:D4:3B:B2:C1:C2
X509v3 Authority Key Identifier:
keyid:B3:3D:CD:20:B5:AE:95:C1:72:D3:2E:D7:29:EB:F3:06:19:7B:23:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sz3NILWulcFy0y7XKevzBhl7I-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0ac3ba-54d3-491f-9048-555a19833d8e/1/sz3NILWulcFy0y7XKevzBhl7I-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:fb:6d:fc:9b:bd:c3:1a:d2:97:2d:96:05:18:06:5e:c2:e4:
68:ac:4a:e8:fc:42:21:27:0d:af:79:72:60:b9:37:4f:2a:9d:
05:6c:b7:8b:1f:96:af:e2:a0:85:6f:fb:f9:4f:a0:53:d2:29:
94:cf:49:8a:c0:2c:fb:ad:60:dc:15:0d:02:a2:1b:a1:a7:55:
9d:95:7a:0f:ee:90:92:99:2d:a9:c2:e3:51:b3:31:bd:44:9f:
9e:20:a6:a8:d5:d3:11:e9:bf:4e:42:3f:db:72:74:f4:de:bd:
8d:3d:ed:9d:6c:db:6a:1d:66:78:13:30:2a:11:6c:93:0d:aa:
8c:96:26:17:d9:67:f9:91:9f:22:5b:83:8b:b2:dc:5c:16:b2:
31:d8:2c:0c:e8:3b:ba:29:43:11:37:3b:b6:1f:45:f6:f2:3d:
37:66:a6:98:7c:28:33:c3:95:7b:84:d6:af:d2:b4:d8:90:80:
b1:fa:87:b2:4e:1b:25:32:ab:05:5e:0c:85:ca:f7:c6:34:ef:
01:02:55:58:ec:2e:88:91:fd:e3:87:19:12:66:27:c0:cd:29:
8e:69:b7:bc:95:3c:b2:7b:7e:9d:c1:ec:1e:57:85:d1:66:11:
e4:78:47:4d:57:17:b8:b6:6b:77:50:dd:0a:01:ba:80:df:3d:
4c:3d:f4:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:15:01 2025 by rpki-client