Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
File: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft (raw, json)
Hash identifier: PzJfLxDfkj1+UlHeh1ANbMY71hFL2SW2rqWwLa7TBDM=
Subject key identifier: D8:85:15:1B:40:72:91:12:F6:EB:77:B4:F3:84:73:6F:62:CC:B0:7F
Authority key identifier: DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
Certificate issuer: /CN=dd640339e59addc75fd978101b40082b5d2b8796
Certificate serial: 01967B69D09F81004D1FF377CE2048EBD701
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
Manifest number: 0CF7
Signing time: Mon 28 Apr 2025 08:00:54 +0000
Manifest this update: Mon 28 Apr 2025 08:00:54 +0000
Manifest next update: Tue 29 Apr 2025 08:00:54 +0000
Files and hashes: 1: 3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl (hash: WhgpxHKBnqnXiEkeB+eJy+ImVwGGhtRIeh+eUC1R8lI=)
2: D7PGGduIwX7v-ShQSUz8OVV9C1w.roa (hash: 7ckgBrpQ8LkiNGwk/n+SRdsap+chU5QW5iJNm8qHanE=)
3: IrsYdpqcOnQ3SpbKBx6nFfzcVrQ.roa (hash: AIbJqohxVTkRlwXht+/E+fE7aYFk0d/YsXjveY/e/+A=)
4: QV_KHSRk0F1p49xmdU8Cjw9F95k.roa (hash: bXFoeKrbp3I/mSHJx/SNzgxE/ZuKpJd2GAhpkwSz+z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:69:d0:9f:81:00:4d:1f:f3:77:ce:20:48:eb:d7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd640339e59addc75fd978101b40082b5d2b8796
Validity
Not Before: Apr 28 08:00:54 2025 GMT
Not After : Apr 29 08:00:54 2025 GMT
Subject: CN=d885151b40729112f6eb77b4f384736f62ccb07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9f:b9:12:c1:12:70:0a:fd:77:6e:2f:f1:15:
9e:f8:65:1a:a1:64:03:23:a6:17:30:3e:a4:03:1e:
88:6e:bc:5a:f9:35:cd:26:c3:20:7f:4d:44:c4:3d:
60:8e:d3:f7:7d:e7:c0:95:8d:ce:07:f0:ad:2a:ee:
42:ae:00:0f:8a:0c:75:3d:5c:08:9f:b2:f0:2a:8a:
58:15:9b:b4:93:62:a6:fb:99:0e:5d:79:35:f0:d4:
a1:b6:9a:2f:5c:0c:2e:f5:56:fc:05:1b:a1:f5:98:
af:12:8c:c4:97:2a:03:08:d2:a0:ed:52:a5:f5:42:
eb:14:9f:17:7f:bf:31:d6:31:02:a3:f6:7d:93:1b:
ae:2c:e2:0d:46:f1:d5:15:3e:78:4b:ca:28:df:69:
21:c6:73:f8:74:a0:f4:cc:98:5b:dc:09:92:b6:17:
98:65:3d:1a:49:47:ae:75:38:4d:13:d4:dc:3b:62:
22:55:26:0d:b4:ff:da:96:61:e0:c7:05:a1:5c:52:
ee:d7:dd:b0:07:2f:f9:06:70:59:74:e2:23:a5:58:
ee:a8:6e:eb:16:21:b5:03:ec:cb:57:f0:8b:9d:97:
8d:88:81:59:a4:35:35:ff:d7:9f:58:2b:3f:9f:ba:
7b:d4:97:f1:9a:c3:db:0b:f9:57:42:73:ba:47:74:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:85:15:1B:40:72:91:12:F6:EB:77:B4:F3:84:73:6F:62:CC:B0:7F
X509v3 Authority Key Identifier:
keyid:DD:64:03:39:E5:9A:DD:C7:5F:D9:78:10:1B:40:08:2B:5D:2B:87:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3WQDOeWa3cdf2XgQG0AIK10rh5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7616e5-a8cc-45d1-b3d0-61b73354abdb/1/3WQDOeWa3cdf2XgQG0AIK10rh5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:1c:96:14:97:c5:b7:58:d8:6d:d5:cb:9a:b8:2c:a7:26:18:
0c:58:13:f8:92:72:4c:4d:46:69:98:16:94:7b:5f:84:0f:2f:
7b:24:d8:25:34:27:43:69:d6:e1:d7:09:f3:ba:64:80:03:73:
a0:8d:7a:26:b9:e3:23:f8:da:20:6a:b0:be:b6:47:2b:4a:6b:
40:58:f5:11:fa:0c:56:80:3e:dd:00:6e:7f:13:f9:a2:ee:09:
fe:3d:b5:12:96:1d:e8:e2:77:af:b2:05:01:f2:be:6b:e6:53:
fc:e4:59:cc:1e:57:90:af:ab:a8:34:ea:3e:32:c3:0a:f3:05:
18:57:42:fc:7f:b4:a0:1f:7c:f9:b0:bb:93:c7:ac:99:9a:54:
1f:20:70:49:0a:4a:70:2b:2f:45:64:dd:c9:32:9c:7c:bb:69:
4d:28:e6:76:1b:9f:c8:7e:30:a7:80:11:8b:4a:25:17:f1:2f:
32:6b:eb:c4:4b:91:7c:12:13:7d:1b:e0:77:89:85:bf:67:0f:
98:5e:d3:47:7c:26:00:ce:20:2b:ef:9b:11:bd:70:cf:57:80:
ac:a1:cd:e1:e1:32:fe:6d:f5:44:73:ae:38:24:1e:b7:2c:80:
19:e8:b3:b8:99:97:5a:d7:4c:cb:39:8c:70:67:a2:2c:eb:fb:
45:13:f5:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 10:55:22 2025 by rpki-client