
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
File: 3XF0IQf16FBis-CuZa-kuuZw4Es.mft (raw, json)
Hash identifier: 0RurTnKej2jWE6sVaCg7+lZR8AXO+XV/xr/VRKtFi14=
Subject key identifier: D5:B2:59:05:53:54:64:76:36:FA:78:98:A6:B8:40:07:8C:CF:43:A1
Authority key identifier: DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
Certificate issuer: /CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Certificate serial: 01987CE4E429E9BC5A2C19E3ED587C19F953
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
Manifest number: 049C
Signing time: Wed 06 Aug 2025 01:00:31 +0000
Manifest this update: Wed 06 Aug 2025 01:00:31 +0000
Manifest next update: Thu 07 Aug 2025 01:00:31 +0000
Files and hashes: 1: 3XF0IQf16FBis-CuZa-kuuZw4Es.crl (hash: 8oUXBH953oXDy7HuCzGo1w0k6xxQt38m/EXy+I6YW7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e4:e4:29:e9:bc:5a:2c:19:e3:ed:58:7c:19:f9:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd71742107f5e85062b3e0ae65afa4bae670e04b
Validity
Not Before: Aug 6 01:00:31 2025 GMT
Not After : Aug 7 01:00:31 2025 GMT
Subject: CN=d5b259055354647636fa7898a6b840078ccf43a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c0:ff:af:ff:e1:12:f3:9a:74:67:6f:95:92:
42:e8:3b:b9:4d:2d:e0:a2:78:99:01:76:a7:ed:d0:
d6:64:54:56:47:81:99:78:53:ea:35:61:72:89:12:
f8:7e:6a:16:17:82:4c:c9:87:b4:cf:94:68:9a:76:
56:1d:cf:ac:31:aa:11:18:7f:97:76:ca:91:96:38:
bc:f8:ed:8c:46:98:32:e0:a0:9c:60:bb:d6:1f:1f:
c0:0f:a8:a1:52:c1:51:4d:3c:0e:e2:94:f9:69:2a:
40:9b:dd:d0:59:49:54:90:1f:b0:76:64:39:40:86:
86:ee:7a:56:3c:a7:4e:d9:f3:9d:b9:2b:aa:4d:7b:
ee:5a:05:1a:18:a2:d2:15:26:39:93:4a:d3:6b:92:
9b:17:e6:6d:9b:25:d8:af:9f:46:e8:04:36:46:ae:
1d:aa:df:37:c7:bc:fb:30:a2:5d:01:46:ff:95:8b:
f2:8a:53:46:30:61:4e:92:3a:b8:10:44:33:3f:7d:
1c:f5:29:a2:16:82:93:72:5c:a3:2a:5b:1d:71:1a:
b1:41:7b:ab:1a:9e:ea:63:27:34:9f:6f:96:12:51:
7d:6b:9d:91:32:af:08:6b:9b:f3:13:a2:6d:0e:a8:
93:83:ae:f9:78:bc:be:6d:02:60:ed:a3:ea:3f:4b:
c7:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B2:59:05:53:54:64:76:36:FA:78:98:A6:B8:40:07:8C:CF:43:A1
X509v3 Authority Key Identifier:
keyid:DD:71:74:21:07:F5:E8:50:62:B3:E0:AE:65:AF:A4:BA:E6:70:E0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XF0IQf16FBis-CuZa-kuuZw4Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2de4a9-658c-406b-8ee7-a7706ba30889/1/3XF0IQf16FBis-CuZa-kuuZw4Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:87:de:00:5a:3d:51:70:1f:af:c5:d9:78:03:a7:5e:5d:d1:
23:c2:74:6c:09:34:da:4b:59:ae:9a:83:0d:b7:12:3c:d7:01:
28:2b:de:9e:1c:c1:d1:6e:89:c3:62:ba:60:43:f5:ca:4f:f7:
a6:09:f1:78:60:bc:39:5f:76:33:42:bc:12:6c:64:79:8c:1b:
ee:0b:b0:93:73:40:7e:a0:39:de:4c:0f:09:b8:7d:41:93:f3:
ee:b3:31:99:a7:8d:cb:25:b1:53:7e:2b:a0:77:b2:31:54:bb:
28:39:5b:8b:72:3a:aa:c1:4e:ed:48:67:8f:71:17:b3:a9:b2:
f3:6e:dd:51:bd:25:52:d1:1d:a9:86:e2:21:a9:bc:7b:9c:a3:
31:58:54:ab:7f:05:78:15:a0:34:b0:c6:b1:1b:c4:a6:52:1e:
97:2f:be:85:6c:b5:63:81:94:88:3e:5b:b8:23:dc:82:54:5f:
d3:66:28:ea:a3:87:6c:74:71:a7:3d:d2:73:a6:9c:d2:1e:7e:
3d:4b:91:a6:8d:1d:9f:28:83:3e:21:8e:eb:31:bf:28:4b:39:
de:3b:91:9b:c0:e5:e8:af:95:11:c3:c9:af:4d:05:59:fe:19:
9f:f9:1b:47:91:f7:f4:cb:f0:f1:8f:3a:c9:e6:94:3d:ec:af:
e3:ad:a5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:56:37 2025 by rpki-client