Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: Uajf4+56F806DH04/U7sXZvT68UH5ejO7JKFAyxdR7U=
Subject key identifier: 6F:62:B7:22:CE:61:0F:E1:46:5C:C7:A1:00:4B:07:84:62:8D:6D:D4
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 019881678FFE558733757F800C2E26DC1C9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 03DA
Signing time: Wed 06 Aug 2025 22:01:44 +0000
Manifest this update: Wed 06 Aug 2025 22:01:44 +0000
Manifest next update: Thu 07 Aug 2025 22:01:44 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: EsVsRo67m2zwXln+gfITP98JuuvESKlPKzo58sYWIFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 22:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:8f:fe:55:87:33:75:7f:80:0c:2e:26:dc:1c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Aug 6 22:01:44 2025 GMT
Not After : Aug 7 22:01:44 2025 GMT
Subject: CN=6f62b722ce610fe1465cc7a1004b0784628d6dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:70:3b:63:6a:a3:11:8d:18:ac:26:73:60:e9:
b8:c9:60:d9:6b:98:93:69:59:d9:9c:0c:30:e6:17:
c7:09:a3:81:f9:b6:35:1c:d9:a8:70:a4:2e:e1:9a:
6c:d7:d3:c4:5f:af:00:f1:86:25:b5:c4:d0:37:cd:
89:42:b2:37:07:10:27:21:17:8c:c8:3b:34:dc:21:
5a:1a:7d:3e:1c:33:6b:c8:ec:33:a3:50:2c:4b:e1:
2e:95:65:bd:18:d3:39:2e:fa:ed:11:d8:0d:3c:f3:
02:9d:0e:9f:86:98:85:63:71:94:a4:a3:7b:f7:b4:
43:20:e8:39:2a:a3:3c:54:82:85:44:1a:42:9c:c6:
3b:a1:b0:66:81:58:a7:94:54:1e:32:5a:ee:1e:cd:
46:5c:29:5f:84:5a:04:70:dd:c1:b9:29:83:de:1a:
72:7f:15:9a:01:ab:cf:5d:11:61:ee:0b:e1:32:36:
7e:70:6b:a6:8e:26:e1:32:ab:12:75:80:2f:8e:0c:
46:90:d7:01:0a:70:7c:84:c0:41:af:03:03:5e:f8:
03:17:6b:a9:32:36:d5:55:33:c6:b8:b1:d9:60:42:
5d:7e:de:71:fd:ba:35:8a:89:bc:71:4f:30:cd:bd:
de:e7:38:50:05:e7:8c:26:88:b1:d1:47:6f:a9:9e:
71:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:62:B7:22:CE:61:0F:E1:46:5C:C7:A1:00:4B:07:84:62:8D:6D:D4
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e4:80:44:b2:b8:ef:98:ef:dd:b7:cb:24:67:4c:83:ca:2a:
c7:bf:2c:97:be:ab:1d:cd:8f:fa:93:42:9e:37:08:7d:bc:ee:
72:ff:8e:c5:db:48:8b:ff:5e:bf:29:63:59:79:8f:50:d3:e9:
49:43:96:08:e6:e7:08:17:09:d6:3b:8f:f6:5f:7c:f7:5d:1e:
7b:0b:6c:20:f3:48:88:8c:c6:b1:c0:69:52:37:5c:8f:80:f2:
b2:3e:30:59:b5:8d:73:71:50:40:4c:c8:2f:26:da:f7:9e:2a:
65:57:04:c7:fc:48:d5:44:31:29:ad:ea:1a:cd:23:5d:ac:62:
35:2d:d5:57:a4:82:2c:9f:a9:2a:c2:b6:fc:27:7d:b2:c3:60:
11:3e:fd:ad:9f:f8:34:d3:20:d0:30:34:03:88:f3:56:25:99:
ee:8d:bb:66:ee:eb:a8:16:ba:35:ca:71:d5:2e:8f:4f:57:ce:
22:61:d9:d7:3c:1f:f7:2b:9b:1c:e1:1b:3b:d0:57:06:17:0b:
0a:a8:20:88:dc:b3:ad:2f:2c:71:3f:df:db:43:75:7a:fd:97:
65:6e:6e:10:c6:bc:bc:49:fd:34:a4:0e:b2:9a:10:b0:11:c7:
54:f3:ec:15:c6:79:24:27:49:2f:be:18:77:08:bf:3f:25:b5:
c1:49:aa:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:17:04 2025 by rpki-client