Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json)
Hash identifier: kZrgU1esz2BFASMiw6JLsW41iSjuoV/aGfcuA3jW3OE=
Subject key identifier: C6:BC:4C:E2:6E:1C:13:74:96:8B:97:0B:F1:FB:03:D1:4A:C2:DF:A9
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 0197CC8399FF1336AFE8233760F635369047
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
Manifest number: 118A
Signing time: Wed 02 Jul 2025 19:01:06 +0000
Manifest this update: Wed 02 Jul 2025 19:01:06 +0000
Manifest next update: Thu 03 Jul 2025 19:01:06 +0000
Files and hashes: 1: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: 2Nm/2ARHVOAxjZ7pJ3TClqvnY6Gl7GCZup0rAxjV/aM=)
2: I5wQnrgvMCaYn9C8yDvoLQWI0Fs.roa (hash: LLp7jSaPRxKkmfQPCgmC3oWPlWcodXukIf+OL2Y6Xy4=)
3: h62oWk5e6sS8zDCwC47t23u4hGk.roa (hash: KIOG5EX7T8Dsm3c4MU4hyZU5pek+PylPfC7rdsiyJoY=)
4: jGoTTL_48yWV-ohs_hgmOjEwT4E.roa (hash: Q0KSsruo9YLV5d/ARziN3CSGqP5OR6gQhOox+XP9FnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 19:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:83:99:ff:13:36:af:e8:23:37:60:f6:35:36:90:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Jul 2 19:01:06 2025 GMT
Not After : Jul 3 19:01:06 2025 GMT
Subject: CN=c6bc4ce26e1c1374968b970bf1fb03d14ac2dfa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:56:58:b3:f9:3b:17:5e:d5:ef:e6:1b:7d:91:
98:4f:d5:2d:05:47:e1:53:57:ab:c0:d2:d8:75:da:
93:fc:08:44:64:84:be:13:79:a9:2b:59:da:85:94:
ff:cb:c3:92:ea:b9:46:14:3e:08:2b:13:ab:ce:fe:
3a:a2:e3:05:2d:25:ab:c0:12:bf:1f:d6:0b:ae:c2:
c9:14:c3:fc:92:7e:74:a0:1b:5b:f4:e0:d9:fa:da:
ce:ee:78:89:a2:47:dc:e2:09:09:bd:c3:43:8d:34:
63:e7:94:6c:84:29:c4:2b:4e:10:ad:b4:77:5c:55:
9e:45:bb:3a:25:1b:44:51:72:43:b6:a9:08:cc:f1:
93:a2:c9:49:ba:ba:76:6d:ed:ff:2b:d1:ba:e8:b4:
1c:b1:06:93:9e:ee:85:02:be:27:bb:97:44:50:0f:
cc:93:a6:37:ad:51:33:9e:a7:fe:9a:5d:f5:9a:42:
93:17:9e:5a:7b:cb:af:bf:d5:04:61:68:ce:2c:fb:
d8:4b:4d:ef:15:cc:7c:4b:2f:cd:fa:db:ee:d0:ee:
88:7b:5a:37:c4:e6:70:54:a3:3a:b2:f0:d5:6c:3f:
61:08:7a:b4:52:34:54:f3:2d:94:ad:0f:75:4f:1f:
49:21:13:4e:03:a2:23:47:8e:2b:c3:06:c5:e3:65:
19:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BC:4C:E2:6E:1C:13:74:96:8B:97:0B:F1:FB:03:D1:4A:C2:DF:A9
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:4c:de:4c:b7:77:f2:08:87:11:7b:1b:88:cc:08:b1:50:a9:
aa:82:47:29:dc:57:88:2a:35:90:f5:7c:e0:d1:63:a1:f9:de:
21:9a:48:a3:27:26:c4:45:8d:97:63:25:75:8e:86:c0:6a:76:
ff:9d:61:c3:e3:91:f2:34:c7:a3:49:99:7e:a6:1a:63:47:36:
1e:5f:61:75:47:38:ac:7c:4b:e1:31:8d:27:df:bf:42:e7:70:
3a:83:4e:eb:ac:66:a6:9e:30:b3:fe:c8:78:ec:d9:ae:04:e7:
90:ef:65:ee:04:2d:88:4d:1a:a7:fe:45:91:23:56:6a:29:42:
7c:83:f8:54:e1:eb:7b:79:f7:2b:48:41:3c:d9:93:c1:74:9c:
7b:00:3c:ba:74:55:4c:1d:e2:80:48:9d:26:4e:98:65:ab:5f:
b7:3d:bc:f7:e3:8f:d8:9c:3b:c8:e9:f6:ab:b0:de:9b:81:35:
f9:f1:69:2a:01:f8:7f:9c:57:31:0a:96:7e:d8:e1:6e:05:27:
97:b7:91:98:38:f2:01:42:36:41:26:ae:c9:2b:61:55:53:11:
27:45:a1:3e:d5:fb:f1:6f:42:c2:96:21:4f:24:87:f1:6d:9f:
77:58:a7:b6:b2:8b:6f:53:5d:65:d6:ce:7b:35:48:b9:16:85:
05:20:df:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 04:27:32 2025 by rpki-client