Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
File: C3A70AD7F32685733597C663E02CE28A3306F923.mft (raw, json)
Hash identifier: GkVJXFpOhmiXe6Lnt4+684mHcDRMWBo/prQ4AdTzSXs=
Subject key identifier: 7E:3F:10:3A:0A:DD:F8:C5:DE:BC:00:8C:A2:BA:C9:FE:A0:70:AA:D3
Authority key identifier: C3:A7:0A:D7:F3:26:85:73:35:97:C6:63:E0:2C:E2:8A:33:06:F9:23
Certificate issuer: /CN=c3a70ad7f32685733597c663e02ce28a3306f923
Certificate serial: 1400F50902947614556C60FB40792274997FBDDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6cK1_MmhXM1l8Zj4CziijMG-SM.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
Manifest number: 64
Signing time: Thu 01 May 2025 02:35:23 +0000
Manifest this update: Thu 01 May 2025 02:30:23 +0000
Manifest next update: Fri 02 May 2025 04:28:23 +0000
Files and hashes: 1: C3A70AD7F32685733597C663E02CE28A3306F923.crl (hash: kTsxWb09OlUf56niUMbCjWwgd8FqkSXqahzqoJMKamo=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.crl
rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
rsync://rpki.ripe.net/repository/DEFAULT/w6cK1_MmhXM1l8Zj4CziijMG-SM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 04:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:00:f5:09:02:94:76:14:55:6c:60:fb:40:79:22:74:99:7f:bd:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a70ad7f32685733597c663e02ce28a3306f923
Validity
Not Before: May 1 02:30:23 2025 GMT
Not After : May 2 04:28:23 2025 GMT
Subject: CN=7E3F103A0ADDF8C5DEBC008CA2BAC9FEA070AAD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:14:7f:05:4c:41:b9:e9:d3:e1:3c:a0:92:
b1:11:2d:f0:61:05:68:e2:ca:30:30:1d:62:02:61:
e2:a6:9f:01:10:d3:e2:99:69:38:79:e4:13:d6:9c:
31:33:07:3c:ba:5a:c8:e7:6f:96:22:2f:18:06:41:
83:8b:05:69:9b:5a:58:cd:df:42:81:2b:72:53:72:
ac:5d:51:9c:44:4e:23:b8:01:b8:a9:0a:7b:b0:ae:
16:f1:bc:8a:08:9a:8c:43:cd:13:b6:e2:0c:56:c4:
07:97:47:18:21:02:45:9c:8c:1f:5a:8c:69:c6:fa:
ef:71:6b:75:61:77:cc:31:33:73:04:d3:84:6b:e2:
9e:23:86:49:8a:ad:85:f7:ee:63:4c:79:db:5c:ae:
e6:3a:70:f9:18:70:74:6f:10:33:63:4c:78:5c:0d:
f9:65:9f:6d:93:97:a3:de:26:6e:1a:04:73:f4:70:
86:27:f7:6a:61:e5:b8:dc:3b:2d:f7:55:c5:67:11:
1b:ff:34:02:18:1f:f7:cd:5e:b0:5c:03:50:03:d3:
6a:9f:e1:37:da:d0:60:f0:32:bd:2b:0d:73:71:8b:
65:77:cc:1f:3d:45:21:11:8d:6b:2b:aa:70:9f:3d:
2e:13:e6:d4:a0:ff:10:37:9c:03:27:19:6a:4b:59:
68:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3F:10:3A:0A:DD:F8:C5:DE:BC:00:8C:A2:BA:C9:FE:A0:70:AA:D3
X509v3 Authority Key Identifier:
keyid:C3:A7:0A:D7:F3:26:85:73:35:97:C6:63:E0:2C:E2:8A:33:06:F9:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6cK1_MmhXM1l8Zj4CziijMG-SM.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fa1b8677-ea6b-4043-907d-59f4675f2977/0/C3A70AD7F32685733597C663E02CE28A3306F923.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:00:ba:42:6f:bf:d3:87:a4:ac:a5:0d:de:24:39:3c:82:27:
09:43:1d:08:ae:79:f9:07:40:a6:1a:4c:f7:2c:e0:26:7e:38:
08:fc:58:70:94:4e:ec:89:17:4a:f8:8d:ab:29:c8:2b:c6:e8:
71:02:8c:fe:5e:1c:de:74:0a:16:d9:d6:8b:d5:7e:11:e0:f1:
41:44:ec:11:43:ef:55:5b:c7:bf:55:49:df:8c:c7:24:da:ef:
01:af:77:bb:b7:55:2d:eb:dc:24:42:58:cc:33:51:bb:a4:d9:
dd:e3:bc:aa:0a:2f:29:00:7e:58:11:f7:64:d3:0b:01:b2:fb:
bd:d8:ed:f4:b7:82:17:38:a0:6f:e5:ea:94:94:eb:3c:31:05:
b1:5d:8b:32:23:76:ea:3d:bf:e1:0f:46:77:f5:c1:43:1d:0d:
1f:71:7a:dd:fe:51:32:20:e4:5d:e3:b1:81:03:c0:69:9c:64:
56:a9:3d:57:79:ea:12:ea:a3:60:c7:b1:68:5f:2d:6e:4d:26:
0f:5c:97:12:4c:c5:1f:7e:80:7a:aa:6e:f7:7d:d0:8a:ba:8a:
4e:b1:bd:8a:e5:7b:62:a0:43:66:4c:0c:57:a8:fb:b3:38:4b:
e2:63:46:d8:f8:be:5e:c2:94:4f:c9:8c:77:8f:c6:cc:01:ae:
4c:34:6f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 09:36:50 2025 by rpki-client