Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: mJlbvSNmAn5xtTP2E3CX1S2DLTi4uS/FL4l8xJiuYqY=
Subject key identifier: C6:9B:53:77:07:BB:B2:9E:06:99:EA:1A:22:12:BE:DA:53:85:E5:3E
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 019883C3164EF63A18045D2F914B8831A078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 0F2B
Signing time: Thu 07 Aug 2025 09:00:57 +0000
Manifest this update: Thu 07 Aug 2025 09:00:57 +0000
Manifest next update: Fri 08 Aug 2025 09:00:57 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: oMpc9QXdjnciTP84ECikkLtrAYZI+9B6QDzX0J5cAgk=)
2: NZtS_yd4-bo9e2cvGKzyKvYI3pE.roa (hash: +rJHNNOfAgRLW2AYZ2GQZ4sJIXJPzKob0SOJ3Knzwec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:c3:16:4e:f6:3a:18:04:5d:2f:91:4b:88:31:a0:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Aug 7 09:00:57 2025 GMT
Not After : Aug 8 09:00:57 2025 GMT
Subject: CN=c69b537707bbb29e0699ea1a2212beda5385e53e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fa:a6:82:61:c1:5e:5b:14:4b:67:29:a2:62:
3d:94:9d:2b:cf:e9:a9:d8:22:70:b4:1d:22:f8:78:
c3:fd:a6:58:6d:4c:98:58:98:c3:f2:37:e8:5a:96:
ad:75:9f:0a:df:a6:f0:17:46:13:28:4c:af:52:ae:
0d:24:da:87:22:d5:e5:ee:f8:54:75:ca:35:14:04:
cf:48:2e:0c:0a:30:c7:cb:2f:8f:9c:1b:93:02:b3:
4c:08:ac:fd:34:e3:17:5b:e5:92:1d:07:95:7a:1f:
ce:37:c0:6a:0e:f5:69:25:e9:d2:3b:4b:ba:88:c2:
73:a2:06:88:2e:fe:02:2e:8a:10:6f:e6:e4:ba:89:
fe:a0:3d:9e:3e:81:84:42:25:11:74:82:91:d5:cf:
d4:c6:de:dc:27:eb:75:cd:a8:33:df:9d:df:d0:38:
73:db:b6:4f:13:75:ef:64:45:ab:9d:d2:8c:75:34:
a3:50:94:99:d4:df:c3:d3:93:d9:ed:c9:40:c8:5e:
f2:49:7a:93:1e:fe:f4:a4:d7:43:18:03:24:43:da:
e5:54:12:35:a6:1b:33:f6:bc:d2:3c:8a:d5:67:7e:
62:2a:07:35:69:ba:d5:eb:af:7c:82:4d:ab:a4:05:
91:a5:15:a1:e7:3b:28:df:da:c0:b2:f7:e6:0b:d7:
25:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:9B:53:77:07:BB:B2:9E:06:99:EA:1A:22:12:BE:DA:53:85:E5:3E
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:6f:5e:c7:69:b2:0b:58:b3:0a:ad:e2:36:4c:ec:ee:2e:66:
68:c8:81:65:8d:02:1f:d1:b5:60:f7:b2:71:c1:98:3c:8d:36:
b5:d7:a1:4d:55:49:73:c4:cb:95:59:ea:e9:d8:a1:8f:91:14:
2f:bf:ad:6d:c2:f1:6c:17:df:76:f3:a1:99:d0:32:53:6f:d7:
75:ef:82:5c:30:36:3a:17:1a:d2:03:ef:0f:1e:38:0d:72:86:
7d:5f:7c:35:f2:96:7d:92:cf:25:da:5c:6f:6c:93:8a:8c:6a:
3c:d4:44:27:2f:9b:77:cf:e9:eb:8d:b9:4b:95:8c:2c:8a:8b:
e1:1b:9f:bd:7a:36:2b:f0:35:d1:4d:03:fc:68:67:68:85:e2:
9d:db:70:8c:35:9c:88:38:90:8b:6c:f3:8c:b7:51:01:8f:19:
75:8c:69:e3:ec:76:9f:fd:89:f8:c1:ec:1b:de:a5:01:db:b7:
2e:37:50:8e:9e:3f:73:96:1d:b3:40:a8:ff:13:e0:23:7c:a2:
ae:06:a5:fe:c5:f8:56:86:e4:09:3e:8f:ea:f8:a3:9c:9b:00:
e3:3b:8c:91:1a:c3:6b:97:a1:b3:7d:6d:50:9a:c6:87:e2:0c:
c5:f0:97:9f:bd:c7:91:db:5c:cf:e9:c7:97:62:ef:ff:b9:b0:
05:3c:72:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 14:50:43 2025 by rpki-client