Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
File: 3VShBsGZ81M-VritvPpLGsPmkJ8.mft (raw, json)
Hash identifier: Qw9cpTYFHyoKHNtQPxlNI+VYc0T58r2ZAA2Fmgv6n44=
Subject key identifier: B9:5F:AD:D8:9F:09:E8:1E:10:00:A3:8E:FB:D7:8C:1C:61:43:D7:A7
Authority key identifier: DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
Certificate issuer: /CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Certificate serial: 0197B6A0798475BE8FBECD3DFC75038FA336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
Manifest number: 0881
Signing time: Sat 28 Jun 2025 13:00:59 +0000
Manifest this update: Sat 28 Jun 2025 13:00:59 +0000
Manifest next update: Sun 29 Jun 2025 13:00:59 +0000
Files and hashes: 1: 3VShBsGZ81M-VritvPpLGsPmkJ8.crl (hash: 14VUGSY6fSfcBMfz01VQbyIOPMu12n5QGFHGecG4zow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:79:84:75:be:8f:be:cd:3d:fc:75:03:8f:a3:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd54a106c199f3533e56b8adbcfa4b1ac3e6909f
Validity
Not Before: Jun 28 13:00:59 2025 GMT
Not After : Jun 29 13:00:59 2025 GMT
Subject: CN=b95fadd89f09e81e1000a38efbd78c1c6143d7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c8:b7:e0:a6:94:a1:97:c9:8c:e9:c4:b6:91:
e8:b3:0d:00:71:e0:0d:13:cc:48:ab:4d:0b:d4:7d:
b3:5d:57:6c:48:79:03:1c:2e:c8:f5:d6:23:4c:9b:
53:d9:84:77:6a:10:70:ce:b7:dc:b6:b4:d1:e7:0a:
e4:23:99:30:cb:ed:19:12:c5:24:a3:cb:6c:38:e5:
57:1a:3b:68:b1:66:be:6b:61:3a:fc:61:7e:87:41:
c4:ea:b6:ac:ba:6b:34:62:d3:70:c3:a9:f1:45:e5:
8d:09:91:42:5a:f2:7d:f9:43:79:b6:2c:95:ca:5f:
7f:1a:43:9e:b6:cf:03:1b:86:f1:5b:64:a8:2f:2a:
b0:8e:31:c2:72:bd:71:23:df:4b:c5:c6:fb:c7:4c:
71:ab:c1:d0:cc:ce:15:2d:87:1e:eb:3b:fc:06:b8:
67:9b:c9:db:0b:42:7e:22:e5:59:82:d9:67:cb:4c:
05:ed:9d:45:26:79:94:47:0d:15:00:73:ed:ab:56:
8e:f8:f7:ef:ac:88:93:89:f2:c2:7e:36:4e:f8:c4:
43:96:37:d5:2d:85:a2:75:38:39:c1:cb:0c:3f:7b:
73:9a:0e:44:e6:45:93:c6:0d:fb:68:c1:60:d1:6a:
99:1d:19:41:53:b7:a0:55:24:8a:e2:bd:d4:71:c8:
dd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5F:AD:D8:9F:09:E8:1E:10:00:A3:8E:FB:D7:8C:1C:61:43:D7:A7
X509v3 Authority Key Identifier:
keyid:DD:54:A1:06:C1:99:F3:53:3E:56:B8:AD:BC:FA:4B:1A:C3:E6:90:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VShBsGZ81M-VritvPpLGsPmkJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c8f26c-b262-487f-ad47-341af1f0769b/1/3VShBsGZ81M-VritvPpLGsPmkJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:a1:c9:35:79:6c:c5:c7:66:7e:01:3e:63:d4:7e:3a:ba:cd:
a1:00:4a:1a:0f:76:cc:f9:86:66:55:c4:0f:23:c3:37:a7:d5:
b7:01:7d:0d:58:5a:cb:db:ef:09:51:5c:6f:9a:bb:ea:07:a2:
37:6c:85:ef:63:43:bc:64:b0:3a:b8:fa:2f:80:80:b7:64:1c:
c2:e4:57:d0:b1:b8:b3:38:76:dc:85:b5:5d:06:52:af:96:a0:
b7:f4:e6:42:00:bd:6d:8d:ea:45:e3:70:27:22:fe:fc:5a:1e:
c0:c9:dc:9b:88:e8:3c:87:3e:80:27:59:4b:9d:6d:a5:4a:81:
f2:9d:0b:77:0c:64:7f:05:39:b5:64:2e:99:cb:79:47:71:05:
f2:c7:cf:85:d9:09:34:41:e0:5b:c3:07:0c:ea:b5:75:77:ac:
3f:73:92:10:72:e1:ed:f1:19:b4:ac:d5:79:80:ce:fd:a0:8d:
ae:4a:a9:c4:69:3b:e6:4c:19:80:5a:d4:5c:cf:f8:09:72:d6:
20:c8:89:90:70:a9:b0:de:4e:bd:6b:7b:b6:29:10:9f:d5:ff:
f6:d1:10:d6:bc:e1:b0:d0:24:f9:de:f1:84:7b:15:d3:37:54:
e0:b8:58:5c:28:3e:9f:be:6f:17:36:2e:74:c2:f9:99:f7:31:
6f:7b:c1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:00:33 2025 by rpki-client