Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: AQhHYRPXS9MiXO+D0KN5PEXfY79dIl4eNiuzzzNn0V0=
Subject key identifier: 4C:69:37:19:26:FB:82:43:00:FA:2E:17:32:A7:DD:5B:62:19:81:B4
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 01987D1CA702F80FDDCD75E9727EF54072FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 01F5
Signing time: Wed 06 Aug 2025 02:01:26 +0000
Manifest this update: Wed 06 Aug 2025 02:01:26 +0000
Manifest next update: Thu 07 Aug 2025 02:01:26 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: STMSQ75XsTQZf9fjbcpQO6KL4dUNIi0E6tqNhwxjGLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:a7:02:f8:0f:dd:cd:75:e9:72:7e:f5:40:72:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Aug 6 02:01:26 2025 GMT
Not After : Aug 7 02:01:26 2025 GMT
Subject: CN=4c69371926fb824300fa2e1732a7dd5b621981b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:0e:ca:ab:3d:79:97:27:cd:38:95:fb:9f:8c:
7b:4d:36:0d:3e:21:92:67:71:97:5e:66:b9:96:10:
16:db:2f:48:95:79:50:fb:10:98:5f:5d:04:5a:fc:
eb:84:a0:0d:5c:6f:0b:68:bd:8e:ca:c1:d9:28:54:
78:5e:1c:6b:d9:89:02:19:20:0e:01:b6:e9:ec:b5:
0b:87:0c:bb:f9:f3:f0:4b:ca:97:24:ef:3f:40:90:
2d:ad:aa:73:d2:c0:c6:d5:fa:48:36:81:79:10:fb:
92:f2:9e:e1:e6:86:83:c7:ca:de:d0:bd:08:a4:dd:
c1:b8:93:5b:65:2c:d3:e9:88:8b:59:83:9a:b2:7d:
58:c6:b2:06:b6:7f:e4:82:46:d2:bd:b5:86:4a:d7:
da:78:f8:12:da:2e:f4:8c:8a:63:ba:c2:6f:8f:ad:
af:c3:fe:61:2e:66:f6:61:74:4c:17:f3:a6:78:77:
aa:b2:4f:b4:09:5b:c9:b1:7d:cf:dd:2d:89:36:07:
c4:8d:54:38:24:c8:e3:1c:10:bc:61:dd:c4:06:00:
0a:8b:cb:fe:aa:0f:5d:c0:e1:9e:93:f8:86:d4:25:
f2:e4:87:18:d6:d8:43:bd:f9:2e:b4:0e:97:3e:f1:
a1:6d:f8:23:09:ea:96:ab:62:9b:3f:90:79:ad:10:
f6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:69:37:19:26:FB:82:43:00:FA:2E:17:32:A7:DD:5B:62:19:81:B4
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:35:33:0e:c9:e5:08:6b:04:45:d7:4f:d1:7c:54:1a:c0:17:
0e:5e:55:5e:25:93:bf:4e:7c:9d:b0:9b:f3:53:20:16:59:dd:
75:d2:41:da:12:b8:c9:4e:a9:95:32:1d:bc:21:44:e8:c0:b2:
42:00:b8:fb:6b:b0:52:88:7e:0b:60:3f:23:fb:45:5a:32:34:
94:75:2a:1e:a9:d9:7d:66:ee:a3:2d:a8:94:ed:90:59:b7:c3:
0a:15:fd:1c:99:a6:7e:30:28:58:b3:4c:a5:a8:60:5e:13:7b:
0d:93:42:3a:be:e2:40:31:ca:75:3c:74:54:49:7a:4b:18:cb:
b9:c2:de:ee:15:73:0c:69:a2:b0:14:60:42:86:f2:59:62:8e:
27:05:5b:c1:28:04:37:9a:6e:0f:3e:c9:bf:cd:7d:6a:fa:c0:
52:80:d7:f8:53:db:76:d0:32:e9:e2:21:6a:75:d4:f5:ca:64:
b5:54:7c:15:88:34:24:44:08:0c:c2:5c:ff:b5:58:6e:08:4f:
be:3b:5e:2c:44:7f:f2:a7:21:a5:0e:19:7d:68:8a:d3:eb:8f:
2d:b2:da:ae:ca:20:18:a9:d1:02:d0:7b:4f:26:c7:d9:5c:c6:
43:7e:ff:ee:54:36:fa:f0:33:40:0a:b2:3f:74:66:67:43:93:
25:42:55:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:57:44 2025 by rpki-client