Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
File: 3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft (raw, json)
Hash identifier: 4Szn1dM/YiQNClrX5f0PaCL0E/sNUcvfODB71DC/1Hk=
Subject key identifier: E8:84:1D:8A:D8:AA:7B:4B:AE:CA:30:F2:8A:49:A2:3A:BE:70:40:F0
Authority key identifier: DD:0B:83:6F:D7:00:3F:83:16:04:A0:3F:23:44:7A:7F:2F:49:07:B3
Certificate issuer: /CN=dd0b836fd7003f831604a03f23447a7f2f4907b3
Certificate serial: 0198D472C2B5E35C5451E7987BA7140C68FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
Manifest number: 076F
Signing time: Sat 23 Aug 2025 01:02:27 +0000
Manifest this update: Sat 23 Aug 2025 01:02:27 +0000
Manifest next update: Sun 24 Aug 2025 01:02:27 +0000
Files and hashes: 1: 3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl (hash: KALnKq+/2DzUyQljmdu93ugOlAMQIaon5cY8lLQdT5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:c2:b5:e3:5c:54:51:e7:98:7b:a7:14:0c:68:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0b836fd7003f831604a03f23447a7f2f4907b3
Validity
Not Before: Aug 23 01:02:27 2025 GMT
Not After : Aug 24 01:02:27 2025 GMT
Subject: CN=e8841d8ad8aa7b4baeca30f28a49a23abe7040f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:95:42:f3:87:2e:35:54:1e:f9:3d:7c:4d:f2:
72:d7:53:b1:76:91:fe:b5:37:f6:5c:34:15:e3:81:
68:98:b5:ad:73:19:c5:b4:ce:cb:37:12:9e:7d:84:
83:a4:8d:2e:36:55:a6:57:b8:15:c6:9e:9f:c3:76:
66:71:4e:29:d0:c5:cd:f7:e4:1d:0c:91:33:56:83:
90:c0:76:1c:fa:98:38:80:44:0b:ad:72:f3:e4:8c:
73:e8:2a:eb:9f:f7:4d:fa:b2:08:91:99:80:a4:91:
4e:28:5c:c6:e4:68:9c:1e:05:c8:bb:cd:ed:a7:07:
21:a5:d7:b6:4a:6c:fb:dd:d3:a6:48:57:2e:3c:34:
c3:e6:68:a8:84:4b:70:c9:00:f4:cb:8d:eb:f4:82:
36:70:68:d3:fd:de:c0:ce:51:9d:ce:e8:78:7c:2b:
55:7f:76:74:00:2f:2e:8d:3d:ff:8f:35:a1:a6:88:
19:08:78:20:2b:91:99:04:01:f9:b7:b9:18:0b:40:
4b:98:2a:54:9c:12:30:9d:5e:74:3c:c7:ef:2f:67:
d3:34:8d:e7:56:07:49:19:37:6c:1c:fa:aa:fe:40:
4e:71:b8:9e:db:bd:8e:2d:d8:e1:db:92:24:2f:6f:
41:fb:04:d1:7d:b5:a9:17:0a:6e:a2:85:28:e5:b6:
fb:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:84:1D:8A:D8:AA:7B:4B:AE:CA:30:F2:8A:49:A2:3A:BE:70:40:F0
X509v3 Authority Key Identifier:
keyid:DD:0B:83:6F:D7:00:3F:83:16:04:A0:3F:23:44:7A:7F:2F:49:07:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QuDb9cAP4MWBKA_I0R6fy9JB7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/963c2c-0993-4621-8b20-da032353b79f/1/3QuDb9cAP4MWBKA_I0R6fy9JB7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:fd:2f:d8:9b:60:8f:d3:21:e0:06:31:21:cd:0d:2e:29:7b:
9e:05:b4:17:4a:23:3a:14:03:4e:5b:ca:e5:ec:1c:e7:cf:d1:
55:4f:a0:9b:ff:34:71:db:02:5f:ad:f3:8e:05:19:07:a3:4c:
27:5c:f3:43:31:6f:be:2b:4c:57:76:15:69:b0:55:45:fe:2d:
f8:c6:aa:cf:67:f1:1b:8d:80:c2:c2:9d:59:37:f2:ee:47:06:
12:b7:bf:0f:9f:4c:14:f3:69:c3:be:3a:87:ef:86:83:a1:ed:
21:79:16:aa:33:a5:2b:ef:47:ed:ed:39:cf:0a:fd:b1:fb:8b:
09:e6:36:00:7f:b4:90:01:16:c6:d9:b4:e3:5b:77:f7:88:da:
eb:fb:2b:1c:82:91:44:b8:8f:52:78:d6:fd:9f:9f:52:b2:bb:
d2:f7:27:2b:55:13:bd:c0:96:aa:56:b4:20:aa:a1:df:17:7c:
de:bf:55:31:02:28:ff:e1:fa:b8:15:cd:27:83:75:4e:e8:95:
4b:1b:2e:30:e0:52:27:d8:49:4b:af:53:71:ee:71:3d:ea:57:
b0:ae:79:87:a4:48:5d:8a:8b:ff:dd:24:e5:b6:88:ad:5d:a0:
5e:d3:4d:6e:a9:3d:99:e2:cc:b7:53:0a:7e:9e:e7:20:ea:08:
9b:3e:d6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:36 2025 by rpki-client