Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
File: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft (raw, json)
Hash identifier: n8cx/nzH8dbzXNFeYeAjXjZnk+CZz3qlAuujw4+0CZU=
Subject key identifier: 72:6A:1D:33:13:39:60:24:2E:92:A5:BF:CD:FE:05:CF:53:50:9D:7E
Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad
Certificate serial: 019673E6CDBABCCF663EBE71F51BBBF4F3C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
Manifest number: 0FC1
Signing time: Sat 26 Apr 2025 21:00:27 +0000
Manifest this update: Sat 26 Apr 2025 21:00:27 +0000
Manifest next update: Sun 27 Apr 2025 21:00:27 +0000
Files and hashes: 1: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl (hash: Eoj2Z+RZYYRrAeO/VdojIFH9k+jb6TVT+Pg3VFlgQuE=)
2: 4PgtcW6j7xPoaJPy67vk2tMAXu4.roa (hash: fufIwyPbWqbMyORM68+h1FhSNKXbFzjdgG7WcXkavWU=)
3: cUPSsBWZ4irx4TApxzbroJpf5do.roa (hash: 6GPPFraRfTGyKrm5jIIIVF8Jt+KHlsZR8YFMwLgpuuE=)
4: xqYP462dYCt-0eOV8zXikdtxg14.roa (hash: YzKJbzm4Szaaz/1aNRHY+rmqu5/8YwNywOTzBNgzdeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:e6:cd:ba:bc:cf:66:3e:be:71:f5:1b:bb:f4:f3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad
Validity
Not Before: Apr 26 21:00:27 2025 GMT
Not After : Apr 27 21:00:27 2025 GMT
Subject: CN=726a1d33133960242e92a5bfcdfe05cf53509d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:4a:28:4e:9c:e1:70:71:4c:c0:29:4d:35:
8c:0d:40:11:ba:d0:4d:c6:45:33:9b:61:99:bd:88:
24:7c:04:cb:c4:52:07:94:c7:89:13:5f:37:12:e5:
72:8d:72:1a:6b:d2:c1:d8:cd:78:1e:97:d5:c6:aa:
75:05:a0:2a:64:81:4f:98:6b:e0:6b:ef:69:35:4e:
da:99:60:cd:07:01:b3:79:c6:6f:cf:c5:4b:e2:a2:
b1:a1:36:a8:6c:4e:5d:ed:f4:db:92:57:19:ec:85:
f6:28:98:ed:1b:38:70:7a:ac:83:6d:0a:bc:2d:7a:
f7:89:79:1a:99:09:db:48:db:26:cb:68:f9:f1:e0:
f1:24:a8:03:88:f6:ef:bb:c1:db:09:fc:5e:01:68:
18:85:46:06:f4:f0:07:1a:fe:44:b4:f9:85:35:fb:
af:38:75:26:7f:3e:bd:09:c3:f7:e7:6b:60:5a:c3:
28:23:21:81:79:64:e1:29:0d:12:93:c3:8c:86:1e:
a9:84:40:17:d8:9d:04:5d:88:52:20:34:af:54:0d:
c8:03:b6:00:de:56:e1:8d:b2:7f:67:e7:25:81:54:
da:fe:ec:41:11:e1:66:8a:e8:a5:05:f1:00:f7:7a:
26:3d:b3:48:b0:6d:cf:47:f3:3f:a0:97:20:1c:75:
6e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6A:1D:33:13:39:60:24:2E:92:A5:BF:CD:FE:05:CF:53:50:9D:7E
X509v3 Authority Key Identifier:
keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ae:fd:32:e3:7a:cb:c4:18:11:d9:e2:79:0f:0f:58:40:ac:
d8:2d:06:4f:f0:ea:ed:06:f8:a6:93:c4:30:4d:8e:e2:97:6e:
09:5d:ca:30:a5:42:54:24:f7:b2:cd:a3:a6:92:5a:20:f6:86:
f8:d3:be:77:e5:ed:66:d5:a6:15:23:4c:b1:37:ea:fd:6b:84:
6e:fe:1d:36:ad:2b:e5:cb:a8:94:1c:a5:45:e6:2a:ae:dc:9f:
e7:38:0b:ec:58:5a:bc:d1:e3:bd:b7:6d:0a:26:5a:0d:86:5e:
ec:f9:ca:3f:cb:5d:34:8d:6c:e1:9f:e8:49:10:c9:8a:17:c3:
eb:74:7c:10:64:23:11:21:39:b2:55:f0:a4:39:8a:27:28:76:
3a:f3:7d:ca:a0:cd:c2:08:6d:a8:6a:0e:e6:cc:0d:e9:ec:1c:
ce:c1:f3:86:99:36:e1:c1:2d:21:1e:c2:24:c1:d5:9c:75:2a:
ef:ae:ed:92:a7:28:a6:95:cb:5e:4d:e8:af:5b:c5:12:6d:61:
30:0b:c7:33:5a:58:a2:7d:d2:70:40:c5:b2:33:db:1e:0e:64:
15:cb:60:46:84:80:ea:5d:f0:1c:40:b4:9a:a8:3d:15:24:ff:
5f:bf:5d:95:0a:5e:4c:b0:36:aa:76:9f:e6:26:92:06:e4:89:
56:2b:f3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 01:35:13 2025 by rpki-client