Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
File: G3NaOdmSptxEu-c6TZm-PIQvqWg.mft (raw, json)
Hash identifier: 9CI46l/RaeIX/PMBmgCdOcog5p5TEq6+3f4jXQj0Wvw=
Subject key identifier: E7:C5:39:BB:6B:64:F5:0F:F8:16:4B:60:BD:3B:5B:1B:CD:60:38:E6
Authority key identifier: 1B:73:5A:39:D9:92:A6:DC:44:BB:E7:3A:4D:99:BE:3C:84:2F:A9:68
Certificate issuer: /CN=1b735a39d992a6dc44bbe73a4d99be3c842fa968
Certificate serial: 01987418A871CEA464E922BF94C8157791F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
Manifest number: 03A6
Signing time: Mon 04 Aug 2025 08:00:29 +0000
Manifest this update: Mon 04 Aug 2025 08:00:29 +0000
Manifest next update: Tue 05 Aug 2025 08:00:29 +0000
Files and hashes: 1: G3NaOdmSptxEu-c6TZm-PIQvqWg.crl (hash: fGudloTeYl+mXGM0kWk6y1gcVa5ha4jS0J+fnH0S7pI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:a8:71:ce:a4:64:e9:22:bf:94:c8:15:77:91:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b735a39d992a6dc44bbe73a4d99be3c842fa968
Validity
Not Before: Aug 4 08:00:29 2025 GMT
Not After : Aug 5 08:00:29 2025 GMT
Subject: CN=e7c539bb6b64f50ff8164b60bd3b5b1bcd6038e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:51:ba:de:2e:84:c4:e6:9a:b0:92:c4:7e:df:
91:8d:48:f6:c6:78:bb:ca:a5:86:c8:2d:10:5d:7d:
31:33:eb:b4:ac:93:84:a7:85:db:cf:fa:dd:b3:2b:
32:45:08:d8:80:dc:1f:67:0f:f0:96:f7:0a:59:18:
fb:a8:6e:84:11:4f:86:73:4b:b3:a9:06:cd:2a:31:
3b:4f:bb:a4:bb:10:1e:4e:96:81:76:cf:bd:92:cc:
fe:f6:66:4b:e4:44:88:c5:2a:64:3d:38:35:5a:e7:
ec:50:39:45:4b:db:7b:39:78:28:c4:61:9c:f8:6d:
46:98:1e:3b:7b:1d:2e:6b:b8:0a:75:17:67:08:34:
c6:f8:31:73:dc:55:7d:a4:50:87:62:3a:d0:3f:1d:
43:9e:c4:d7:fc:45:f5:3d:4f:62:4f:4e:62:41:a5:
8b:e5:9a:a8:a9:c0:c9:9e:98:77:29:ee:c1:4d:88:
40:ad:7b:99:39:df:56:6e:5f:43:ad:32:38:6b:63:
96:c7:f3:9e:7f:f0:85:63:f3:a3:76:99:da:81:3c:
a8:de:4d:9e:f3:4e:35:36:ff:c3:c1:1b:06:5b:fb:
62:f6:ba:18:69:b4:0e:af:94:b2:1f:7f:12:7d:fd:
27:05:c9:0c:07:93:d2:24:47:1e:43:9e:43:85:c6:
4d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C5:39:BB:6B:64:F5:0F:F8:16:4B:60:BD:3B:5B:1B:CD:60:38:E6
X509v3 Authority Key Identifier:
keyid:1B:73:5A:39:D9:92:A6:DC:44:BB:E7:3A:4D:99:BE:3C:84:2F:A9:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:75:f9:b3:f3:e5:d6:be:16:23:4a:47:08:ec:fe:de:f7:07:
ab:7f:56:f8:c9:14:a5:15:67:28:ea:32:dd:4f:62:09:00:db:
55:11:12:b6:e4:12:19:db:ae:aa:34:82:5c:10:2b:4c:f8:97:
db:44:b4:c2:2f:dd:b2:82:95:fc:a7:5e:f7:dc:33:8f:38:4b:
0e:f4:72:b4:40:92:bf:a4:62:e9:87:b7:fa:01:7e:f4:bf:13:
0a:6f:04:d3:8a:dc:f8:a1:7f:28:24:7e:a0:28:e8:bd:20:73:
fe:f5:fb:76:8c:b4:bd:a4:3c:02:6e:ad:47:58:cc:75:6f:f4:
c2:11:17:cb:0a:8b:a2:b9:84:f9:dd:1f:41:de:f4:10:b0:6b:
47:2e:b8:06:26:af:5a:26:64:ca:8f:5f:37:b7:3a:c0:eb:c5:
34:41:f9:d4:f2:96:70:e3:97:f3:6b:78:58:0c:04:5c:89:f8:
70:d1:7a:4a:be:7b:5d:09:1e:e3:3f:82:0b:86:88:c4:85:5d:
77:35:5c:3d:ee:dc:42:ea:3b:0e:a6:61:f5:19:c1:27:10:b7:
f6:3b:3e:32:d6:e2:75:08:13:0e:bc:00:45:2b:26:33:02:e5:
9a:97:13:de:00:40:4e:31:d0:7e:11:55:b5:c1:bb:86:33:3a:
05:ef:15:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:54 2025 by rpki-client