Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/35ad6e-4d6b-4f9c-90f3-90b18ca8c20c/1/2x3NeuqJI6iq_So40dw9BmhAeaY.mft
File: 2x3NeuqJI6iq_So40dw9BmhAeaY.mft (raw, json)
Hash identifier: wBpE/pinsq0qY8Lj0s04lckFs6Dqdqo4oMENhSWd9Js=
Subject key identifier: 67:66:D7:64:AF:F3:89:E0:28:7F:39:36:C8:23:C9:9B:64:73:AA:1D
Authority key identifier: DB:1D:CD:7A:EA:89:23:A8:AA:FD:2A:38:D1:DC:3D:06:68:40:79:A6
Certificate issuer: /CN=db1dcd7aea8923a8aafd2a38d1dc3d06684079a6
Certificate serial: 01987D8A3E8F6F17F88795BD10987B5A678A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2x3NeuqJI6iq_So40dw9BmhAeaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/35ad6e-4d6b-4f9c-90f3-90b18ca8c20c/1/2x3NeuqJI6iq_So40dw9BmhAeaY.mft
Manifest number: 08B3
Signing time: Wed 06 Aug 2025 04:01:08 +0000
Manifest this update: Wed 06 Aug 2025 04:01:08 +0000
Manifest next update: Thu 07 Aug 2025 04:01:08 +0000
Files and hashes: 1: 2x3NeuqJI6iq_So40dw9BmhAeaY.crl (hash: 2lW6aMhkqJVpbaQeDJC7RkybFeNjVV9iFdYYB2jSeVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/35ad6e-4d6b-4f9c-90f3-90b18ca8c20c/1/2x3NeuqJI6iq_So40dw9BmhAeaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/35ad6e-4d6b-4f9c-90f3-90b18ca8c20c/1/2x3NeuqJI6iq_So40dw9BmhAeaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2x3NeuqJI6iq_So40dw9BmhAeaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8a:3e:8f:6f:17:f8:87:95:bd:10:98:7b:5a:67:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db1dcd7aea8923a8aafd2a38d1dc3d06684079a6
Validity
Not Before: Aug 6 04:01:08 2025 GMT
Not After : Aug 7 04:01:08 2025 GMT
Subject: CN=6766d764aff389e0287f3936c823c99b6473aa1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:78:5c:30:a2:a9:1d:63:ed:d9:c9:5b:04:24:
9a:b8:f1:f9:a3:de:85:30:9c:b5:bd:37:57:3e:04:
d1:f4:c7:b3:9e:f4:6e:61:8c:12:28:4b:20:f8:96:
55:32:ab:20:73:84:c7:1f:8a:ae:7d:77:e2:06:01:
0c:3b:cf:77:a3:8d:cb:a5:30:7a:72:d3:c8:72:eb:
b6:42:28:38:c9:10:1b:bd:46:2f:9e:0d:81:6d:e2:
6d:36:ae:f5:42:5f:56:72:b7:9c:ee:2e:ed:83:7f:
c3:f5:1a:1c:44:8c:b5:e9:d1:3d:e6:d6:3c:39:cb:
bd:69:a5:2f:55:46:72:fd:7c:ef:30:9d:4b:15:ae:
f9:d6:24:e4:22:f7:70:b7:4a:05:10:b4:dc:7c:e5:
7b:92:ad:4f:01:67:ec:0d:8d:5e:9b:47:73:97:0f:
ee:0c:9c:7d:4a:28:f9:c0:02:f9:7b:dd:48:dc:41:
b0:9d:21:64:96:0c:3a:03:72:86:a5:f8:aa:c1:e4:
84:e2:c0:fc:8d:47:66:64:94:23:86:97:97:be:e8:
7a:5e:62:b9:2f:c0:58:02:2c:88:0a:9a:8d:51:1a:
84:7e:66:02:73:57:bc:81:77:26:41:97:43:48:91:
f9:e7:e9:2b:41:8d:ee:e5:29:8a:bd:12:1f:6a:68:
40:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:66:D7:64:AF:F3:89:E0:28:7F:39:36:C8:23:C9:9B:64:73:AA:1D
X509v3 Authority Key Identifier:
keyid:DB:1D:CD:7A:EA:89:23:A8:AA:FD:2A:38:D1:DC:3D:06:68:40:79:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2x3NeuqJI6iq_So40dw9BmhAeaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/35ad6e-4d6b-4f9c-90f3-90b18ca8c20c/1/2x3NeuqJI6iq_So40dw9BmhAeaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/35ad6e-4d6b-4f9c-90f3-90b18ca8c20c/1/2x3NeuqJI6iq_So40dw9BmhAeaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:51:0f:17:47:c5:7d:70:6b:26:18:51:d7:c7:36:cf:d9:cb:
ef:62:1c:e8:cb:19:bf:34:59:e9:b5:5f:50:4d:93:49:8f:e4:
2b:61:fa:72:b0:98:73:50:3c:14:5f:49:98:2a:84:83:2a:7d:
f3:cc:36:b5:b0:e8:6f:e5:28:db:0c:91:5a:36:ea:b3:d6:9f:
18:8b:cf:6c:69:2d:40:58:87:a1:48:e5:6d:87:43:46:ff:98:
5a:81:1b:1c:54:a2:33:2f:4f:11:13:5c:4c:dc:1a:b8:69:dd:
39:e9:65:09:ef:55:cb:95:9c:07:cb:f9:e6:63:2c:f2:88:df:
d4:7d:e5:a4:07:3d:e3:1e:21:29:9f:ea:57:be:d8:04:6f:9b:
81:ff:36:21:53:4c:9f:8a:f2:b0:46:ac:f9:eb:7e:97:50:f5:
70:74:85:07:46:9a:fd:01:66:22:90:93:0c:b3:db:e7:53:38:
63:3d:e1:1b:33:7d:1c:10:d0:ab:4f:47:6e:30:40:06:09:12:
c3:45:c2:70:2f:4f:67:97:27:05:31:ae:46:92:2b:87:5d:19:
1e:4e:f0:07:0f:99:13:23:bf:be:81:90:3a:0a:00:ad:4c:ff:
74:01:f1:4c:aa:99:e5:f8:ea:e6:a6:da:36:a7:6a:ae:28:84:
2d:aa:23:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:31:07 2025 by rpki-client