Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
File: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft (raw, json)
Hash identifier: YAPIN70wS5QjTEdXBNFyZ/THeVwVkV5jBI0oZowimE0=
Subject key identifier: 43:07:9C:49:BD:9E:90:B0:F4:DC:80:88:E4:58:1C:8A:31:35:A6:17
Authority key identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E
Certificate issuer: /CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
Certificate serial: 01987298D43DCF82D41AA0DB51CCF8E80BE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
Manifest number: 0D7E
Signing time: Mon 04 Aug 2025 01:01:15 +0000
Manifest this update: Mon 04 Aug 2025 01:01:15 +0000
Manifest next update: Tue 05 Aug 2025 01:01:15 +0000
Files and hashes: 1: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl (hash: hCxJ42+QvfHG71Igj9xXQovKA0Feh4FhX3jcVSRWRjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:d4:3d:cf:82:d4:1a:a0:db:51:cc:f8:e8:0b:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
Validity
Not Before: Aug 4 01:01:15 2025 GMT
Not After : Aug 5 01:01:15 2025 GMT
Subject: CN=43079c49bd9e90b0f4dc8088e4581c8a3135a617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dd:a2:f2:9b:53:ee:85:db:30:04:38:82:40:
4f:6b:7d:8f:43:ba:e2:cd:a1:ac:3c:88:fd:65:0b:
97:45:11:3f:4d:f9:8c:82:d5:d1:62:59:9c:8f:75:
4a:13:0d:e5:f1:a5:7b:43:15:1a:71:0a:5f:18:f1:
6d:02:b7:a8:7b:92:9c:fe:4d:3f:b1:91:51:a6:f4:
bb:e2:4b:e2:09:b8:5f:03:cf:81:ab:6c:29:40:e3:
2d:dd:49:48:e4:b3:fc:07:b1:6a:f0:4a:6a:54:e7:
65:1a:83:dd:b1:c9:2d:e2:59:9b:63:cb:4f:9d:0f:
e3:65:dc:25:87:16:20:41:68:bc:fd:7f:34:43:9a:
64:73:8f:69:96:a7:f2:5c:39:c6:ca:fd:1d:f1:df:
bd:b2:b4:66:7c:92:24:07:22:d1:06:2a:c2:4d:fe:
e6:71:44:eb:30:aa:59:7a:2b:1b:20:4e:dc:a2:fe:
63:6f:03:c8:c1:a9:10:b2:9d:c3:6c:a8:a5:72:1d:
77:5a:26:78:31:79:81:d0:74:a2:da:0e:08:b0:ff:
7a:61:90:4b:7a:8f:2f:48:5e:44:9c:3b:02:47:80:
12:a4:9f:1e:2e:14:8a:ff:bb:bb:2a:56:86:53:ce:
c0:28:c0:76:90:67:f0:15:85:e2:88:3f:50:d6:28:
de:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:07:9C:49:BD:9E:90:B0:F4:DC:80:88:E4:58:1C:8A:31:35:A6:17
X509v3 Authority Key Identifier:
keyid:DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:1c:06:06:b2:08:e9:7f:52:96:53:14:07:87:fc:85:29:70:
35:fe:03:8a:ca:5b:b0:f8:6e:25:42:3a:14:77:3c:8c:0f:b2:
da:1c:d1:89:9e:fa:1a:1c:08:0a:59:a8:2a:96:2d:78:f8:ca:
78:ba:06:99:a2:d5:26:bf:80:ad:09:1c:cc:d2:49:51:d2:93:
69:c2:90:90:3b:9e:cb:bc:02:13:0d:f8:28:a0:3d:16:06:d4:
0b:11:3a:e2:ac:44:d3:ab:6e:06:32:4f:bf:67:21:06:23:f3:
1f:f2:d0:e6:5c:d8:d8:ea:42:c6:96:72:8b:5f:23:07:66:f1:
f1:5a:99:d3:09:3e:04:80:ff:a3:21:20:d0:19:f2:2a:21:e7:
0f:14:d0:2c:ab:5c:7f:34:0f:03:b8:18:88:09:11:67:39:ba:
7d:0d:98:a5:d7:9b:22:aa:c5:23:2f:e4:2d:d8:96:b8:81:73:
99:36:60:51:45:9a:fe:d9:3a:d0:04:1b:c1:84:77:91:0a:96:
2c:90:f5:b0:da:a8:63:f1:1f:e7:84:63:c5:a8:71:b4:07:6d:
1b:fd:7f:73:b9:e4:d3:3b:e7:d8:0c:ef:20:69:e8:51:74:c1:
12:b3:a8:62:c8:33:8f:4d:72:f7:93:97:ac:fc:a8:46:5c:6f:
e7:29:54:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:26 2025 by rpki-client