Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: CXE1p2p+meJvvWliC5erQPRnXHkEP4QrBL09SB5Lo0I=
Subject key identifier: 98:D7:7B:8E:F2:C5:A9:7B:CE:94:C6:B8:5A:01:93:C3:85:B3:E3:ED
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 01977865FE67E4E398C4C0E6D037D43DD763
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0D7A
Signing time: Mon 16 Jun 2025 11:00:39 +0000
Manifest this update: Mon 16 Jun 2025 11:00:39 +0000
Manifest next update: Tue 17 Jun 2025 11:00:39 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: k7WJDBA8fZp743Mu7sOXIGIPi+Omc9EMA2BGChc5Mqc=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 11:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:65:fe:67:e4:e3:98:c4:c0:e6:d0:37:d4:3d:d7:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Jun 16 11:00:39 2025 GMT
Not After : Jun 17 11:00:39 2025 GMT
Subject: CN=98d77b8ef2c5a97bce94c6b85a0193c385b3e3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3a:49:af:c3:bb:9a:f6:65:f2:cd:82:15:0c:
17:f9:4f:55:d5:cd:ed:ab:6b:7e:2c:f8:2d:69:84:
c1:29:32:34:40:39:e3:0a:35:73:43:84:f0:62:5c:
c7:f0:f5:9e:e0:e6:61:9b:92:bb:e0:30:9d:0e:34:
9e:48:e1:47:90:31:f5:eb:94:a8:b1:c9:3b:ee:bc:
5f:4b:fa:05:23:f7:23:2c:4a:44:5a:32:b6:3f:4d:
85:f1:fb:6f:d2:6d:25:3a:a6:d6:b0:3f:1e:58:df:
3e:54:e0:c8:16:ba:cd:52:c7:22:e1:f8:1d:0a:95:
a2:da:5f:ff:ea:46:51:b4:33:6e:fa:06:7c:b3:e2:
68:3c:9c:5e:c0:92:28:14:cc:4c:14:27:d7:9b:cb:
72:e6:98:be:dc:f4:14:58:0c:b4:44:33:62:03:74:
f9:a1:01:db:60:0d:97:bd:fe:17:0c:71:24:b1:f3:
2d:4f:80:d6:94:c3:7a:3a:fa:7b:79:55:3e:f6:60:
9f:c4:c0:46:09:4c:a7:96:72:99:d9:9b:b4:09:30:
3c:f8:06:da:34:09:e7:e2:2b:c1:fc:cf:17:2d:d2:
79:a9:21:6f:02:ff:6e:32:20:fc:f8:e5:f2:fd:48:
f0:68:c1:fa:73:8f:e8:18:af:f8:c1:2a:3b:8c:70:
cc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D7:7B:8E:F2:C5:A9:7B:CE:94:C6:B8:5A:01:93:C3:85:B3:E3:ED
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:19:ab:df:36:65:ff:62:24:03:4a:57:c6:91:b6:15:2f:4f:
12:eb:b7:0d:c2:69:1f:ed:9d:aa:70:fc:fe:51:0e:0f:3a:39:
e4:1e:9b:8e:54:0c:71:54:cb:81:56:bc:c9:bc:63:b3:9a:b8:
83:47:d7:fc:b5:2c:cd:7a:ee:4b:64:e3:b8:ec:5c:f7:a2:cb:
ad:9c:e9:2e:87:90:49:fd:30:0a:58:d7:cd:ea:9e:11:e1:17:
d6:6a:68:9b:6b:5d:2a:f5:8a:26:c5:4e:88:38:8e:5b:71:91:
11:41:e3:f6:cf:7e:f6:a3:1b:77:36:dc:11:22:06:79:0d:ba:
36:7e:a7:18:8a:fe:da:1c:4a:0f:44:23:5a:b0:ae:d7:84:66:
2d:e2:a0:6b:d1:f4:56:25:0c:8e:a8:4e:f4:66:82:71:05:13:
02:a5:d0:5d:a5:17:f4:5d:ac:93:74:41:17:7e:2f:27:6d:b0:
8d:a2:70:73:c3:26:0d:38:7a:2c:a0:1f:63:33:c6:b5:58:b8:
39:99:84:d9:8d:49:82:8b:2a:cd:ff:8f:fa:34:d4:f0:1d:05:
99:73:95:99:60:b8:24:73:78:0f:7e:24:a6:06:4c:73:20:da:
e4:23:d0:49:61:67:45:ed:f8:e6:84:28:15:ad:5a:fa:c8:25:
38:4c:87:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:50:49 2025 by rpki-client