Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: iTbEhQtoFxqJIR54Q4isANokqlH4avZeojxjtTB5k60=
Subject key identifier: 8D:C4:9F:DD:81:89:3E:75:8D:85:A7:DD:C7:66:26:83:A4:FB:18:9A
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 0197771CBC9F3E6EC801C11A1B5F2AB906BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 102E
Signing time: Mon 16 Jun 2025 05:01:01 +0000
Manifest this update: Mon 16 Jun 2025 05:01:01 +0000
Manifest next update: Tue 17 Jun 2025 05:01:01 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: /fYl0EUh/7xwF9gTOTLsN4IvuNsYYS4AfzL8toKm1w8=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:1c:bc:9f:3e:6e:c8:01:c1:1a:1b:5f:2a:b9:06:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Jun 16 05:01:01 2025 GMT
Not After : Jun 17 05:01:01 2025 GMT
Subject: CN=8dc49fdd81893e758d85a7ddc7662683a4fb189a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:78:ac:97:8b:2d:cc:47:67:fc:1e:f8:52:
d2:3d:7f:95:bc:66:da:0f:b2:c2:78:5b:f0:51:91:
f4:f2:ff:0c:ba:c8:2f:41:bd:09:a3:d2:b0:1f:80:
e9:b2:90:76:2f:82:72:77:f8:9a:7e:8f:67:63:d0:
b7:be:22:f8:92:30:04:e9:7a:d6:5b:d2:3b:dc:14:
4f:93:36:02:a2:70:de:69:a3:76:9c:6a:25:0d:68:
b4:d6:e8:a8:e0:24:e1:c2:06:49:58:6f:54:ba:fe:
c4:76:56:c7:57:52:ad:c5:f5:9a:62:a4:7e:38:56:
41:55:74:d0:be:44:af:e5:5c:f2:d7:88:45:26:5f:
50:2f:6e:8e:0d:5e:7a:fd:20:d7:f9:b7:91:88:2b:
ad:27:9b:95:65:e0:f9:d0:02:bf:17:b1:2e:75:8c:
0c:ff:ad:ec:8d:87:41:7c:48:a0:b8:a5:e6:0e:a2:
be:bf:e9:82:41:0a:d0:4e:8b:63:9c:68:8f:eb:42:
18:28:e7:17:4b:98:f7:7a:22:56:d3:08:3f:54:a1:
8c:3b:15:cc:25:e9:80:03:63:e4:4e:b9:41:59:c7:
2b:63:8b:ec:82:ec:fb:37:3a:7a:a8:bd:2b:3f:72:
8d:dc:50:71:35:9d:b3:62:d4:2b:e7:3e:ca:aa:a1:
4d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C4:9F:DD:81:89:3E:75:8D:85:A7:DD:C7:66:26:83:A4:FB:18:9A
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:e0:56:8c:72:b3:e5:b5:2b:ab:34:3b:a9:68:a0:71:55:ba:
07:67:36:45:e9:43:4e:24:4b:e5:61:bb:b1:c5:13:84:cc:3e:
51:b8:0e:05:2b:d1:64:aa:c8:5a:2f:a2:82:16:79:98:2c:51:
d2:18:28:81:68:bf:a6:16:b3:02:ae:30:c8:86:8d:ca:60:22:
b9:8f:0e:f8:c6:c5:c2:29:85:e9:a5:2a:67:a0:93:0c:ad:46:
c8:dd:da:e5:1a:b5:14:8f:72:9f:ed:c7:50:5d:94:06:ce:17:
7d:74:0b:f4:54:52:a6:32:9b:16:f2:21:c7:aa:13:1c:ce:32:
4d:15:dd:4a:27:ce:1c:7c:3e:d0:44:f6:51:3a:c3:71:aa:02:
3c:c7:2f:8e:90:f5:ad:19:66:10:3f:45:18:a2:f5:2a:fe:13:
87:da:67:6e:4e:4e:fb:72:ee:80:46:fd:d1:76:15:72:de:35:
ab:38:21:b7:78:c4:b7:da:15:e1:ae:3e:93:a4:ae:3c:ea:ae:
eb:a4:cb:29:7e:08:e2:d3:19:42:1e:29:ee:4c:fd:9f:9b:b3:
56:7f:8b:13:f1:88:dc:cb:bb:3f:31:a2:21:14:e5:9a:23:46:
05:bd:34:fd:f5:d1:3b:22:d4:58:c9:76:d4:33:b6:9b:5c:47:
c3:b2:67:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 10:40:56 2025 by rpki-client