Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json)
Hash identifier: mpsu1rW8mObaKdRw5zwGTmFIn+Y846B3Dp429Wp8eRI=
Subject key identifier: 1D:70:87:5F:95:B8:F3:73:A4:49:11:98:C2:54:22:11:BA:9E:02:BA
Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Certificate serial: 01976D3E87B065D67925C89B07E85E035DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
Manifest number: 0F75
Signing time: Sat 14 Jun 2025 07:01:43 +0000
Manifest this update: Sat 14 Jun 2025 07:01:43 +0000
Manifest next update: Sun 15 Jun 2025 07:01:43 +0000
Files and hashes: 1: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: xSsmEzpatRCkIS7KDB9394UHnOf+kxfVn3BBeOTnNVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:87:b0:65:d6:79:25:c8:9b:07:e8:5e:03:5d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Validity
Not Before: Jun 14 07:01:43 2025 GMT
Not After : Jun 15 07:01:43 2025 GMT
Subject: CN=1d70875f95b8f373a4491198c2542211ba9e02ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:04:69:64:ab:60:72:5f:c0:9b:d3:d3:59:33:
ff:b9:34:39:1f:b5:fd:5e:f0:16:ee:18:ed:f6:e0:
3c:32:0c:83:a5:ef:57:bc:98:11:87:80:ce:9b:1a:
3d:b7:9d:f2:e4:ce:3d:bb:2a:53:ea:86:20:9b:5a:
4c:c2:19:cd:9e:61:87:9a:a8:2c:a4:d9:2d:88:79:
4f:0a:db:83:ba:27:67:1b:f6:8f:08:8e:4a:21:bf:
4e:a5:08:73:4b:28:a6:cc:77:65:4c:31:9f:13:f1:
be:11:bc:09:06:f8:a7:c9:1e:d8:95:ad:2a:ed:27:
3d:ca:17:24:e8:40:d8:a4:a5:5e:6f:e3:8e:82:59:
41:95:4f:06:20:1a:ad:63:5b:60:f1:ba:e8:4d:b3:
cf:38:06:f8:41:f2:86:0c:e1:d9:0b:58:42:ca:f6:
a0:1a:57:33:ec:a4:e6:ab:68:68:3d:1e:02:9d:09:
62:f4:67:6d:d1:64:02:09:97:76:eb:2e:27:23:84:
a7:fe:70:a6:21:61:c8:b3:c0:f1:1d:9f:b9:b7:3a:
ee:a0:9e:cf:0e:e5:37:c9:de:99:a3:72:7d:0e:01:
1c:f5:3d:81:c5:97:01:3c:d5:e7:c5:23:08:db:89:
2c:d5:d6:83:0d:90:18:f9:db:2b:27:44:fe:44:c8:
9a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:70:87:5F:95:B8:F3:73:A4:49:11:98:C2:54:22:11:BA:9E:02:BA
X509v3 Authority Key Identifier:
keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:02:42:19:42:c1:d3:05:1b:9c:e4:54:77:b2:cb:7b:3f:71:
9d:59:12:c4:72:ef:7b:f4:4c:f8:c0:a8:e8:5f:94:71:5c:3b:
ce:4b:9f:82:d8:df:f3:20:57:3b:07:46:07:be:d0:f9:d8:92:
d9:40:87:15:5f:41:cd:22:af:bb:34:02:10:ff:bf:de:9d:f5:
b3:56:35:1a:c0:8a:28:a7:62:fd:92:b6:e7:a3:ba:a7:2b:cb:
44:15:9a:a4:53:df:d0:a3:69:30:38:7d:a8:af:38:d7:77:1f:
45:92:6e:9a:9f:e9:03:27:41:41:11:e0:8e:e1:a1:8e:7a:73:
ff:1c:c3:ef:23:f7:b7:1b:47:c0:f3:6d:f7:82:2b:31:30:20:
48:28:d1:23:ce:ac:90:a4:12:42:9c:59:84:97:62:5a:58:90:
7a:cd:b4:b4:cd:e2:16:ce:d8:40:ea:90:8b:5d:3a:f2:a7:29:
2a:34:02:81:32:f0:b3:be:e8:a8:4e:66:fc:78:77:eb:fa:aa:
a5:f5:a1:f3:34:91:25:16:1f:ff:08:04:b3:fc:dd:8c:f6:83:
d9:7c:1a:f5:9b:a7:be:23:e9:e0:d4:2e:9d:48:0a:31:a6:af:
d0:22:e3:63:b3:9d:1c:26:65:d0:a1:a4:42:5c:40:e4:22:06:
ba:87:9f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:22:12 2025 by rpki-client