Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
File: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft (raw, json)
Hash identifier: M+sakSWLQC6BmaV1VtQo8dsiuKnCG2fblL6g0I89z00=
Subject key identifier: 54:77:BC:E4:47:9E:81:35:92:24:65:28:A0:CF:A3:F1:89:9A:04:A0
Authority key identifier: DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
Certificate issuer: /CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Certificate serial: 0197B6A04AC15B118E32CFFCFD46B6CA48B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
Manifest number: 0CA7
Signing time: Sat 28 Jun 2025 13:00:47 +0000
Manifest this update: Sat 28 Jun 2025 13:00:47 +0000
Manifest next update: Sun 29 Jun 2025 13:00:47 +0000
Files and hashes: 1: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl (hash: mpGeuD/I2rPmcMAa3hHgjXID9YoqBc8U+Ndfjy7RUFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:4a:c1:5b:11:8e:32:cf:fc:fd:46:b6:ca:48:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Validity
Not Before: Jun 28 13:00:47 2025 GMT
Not After : Jun 29 13:00:47 2025 GMT
Subject: CN=5477bce4479e813592246528a0cfa3f1899a04a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0c:5b:29:5d:0c:cf:5f:83:82:fc:e0:10:74:
d1:27:3b:82:86:2e:b3:a1:b6:ba:b7:54:db:6a:0c:
d4:0b:64:31:d9:2d:35:87:51:b7:d6:82:33:fc:ab:
34:3a:ff:e2:2c:8b:67:cc:7e:ca:6f:2e:7a:bc:c1:
8c:80:c8:94:94:d5:64:0f:82:f3:5f:e8:d6:4b:1e:
c3:83:39:38:18:ff:19:1e:79:04:8e:48:52:99:0d:
d5:2e:23:ba:58:b6:d2:a6:80:1a:27:8d:d1:6c:12:
0a:bd:45:93:12:ff:69:d3:76:72:01:63:b2:7b:15:
54:9c:54:b0:5e:cd:b3:78:14:5f:4c:76:c7:80:a7:
2f:b8:fc:70:80:45:bf:b1:d6:91:c4:50:f9:5c:6d:
c5:34:90:4a:48:6e:f2:60:e9:c9:32:3e:5f:d9:4c:
ed:ca:ad:1e:c1:0d:60:ca:a1:b7:ff:06:11:f0:7f:
dc:a3:27:a2:78:16:fe:0d:37:c4:c7:13:31:5f:1a:
d7:be:e1:64:11:73:af:96:08:cc:a6:a4:08:40:8d:
e6:d9:22:16:4c:b3:45:ac:ff:d5:44:f4:6f:c2:87:
dc:25:dc:e8:3d:3e:08:69:b3:fb:6b:9a:ff:98:04:
f0:1a:68:21:8b:21:24:68:c1:dc:d9:77:d4:9b:22:
d8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:77:BC:E4:47:9E:81:35:92:24:65:28:A0:CF:A3:F1:89:9A:04:A0
X509v3 Authority Key Identifier:
keyid:DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:49:54:9a:b3:5d:9e:9d:1e:74:fb:fd:fe:c2:5f:61:f9:c7:
4d:9a:d5:49:41:6e:d0:e3:db:94:8e:1b:77:bd:53:d7:6b:5d:
9f:62:79:d0:77:bd:2a:fb:bd:c2:96:12:00:d0:3b:29:3f:52:
e7:37:49:f1:34:71:3c:c3:5d:7c:93:f1:50:9e:b9:8a:99:d1:
49:f4:c2:18:8c:7e:bb:53:08:0d:35:b6:d9:2a:a9:aa:02:99:
00:eb:39:9f:7c:b7:49:35:72:0e:0e:81:d5:fe:32:dd:72:0f:
8a:30:ac:f7:62:1f:86:1b:75:d1:30:4a:c8:93:1d:9f:ac:b4:
d5:7d:ae:0f:d9:34:4f:fb:d1:11:6f:63:33:06:e0:04:1d:28:
e4:59:b4:d6:dd:c4:78:63:39:a9:9d:81:5d:e4:e7:2a:9e:9f:
fe:33:49:9a:08:82:d0:5e:33:04:54:ca:d2:76:08:f7:c5:b2:
9d:3a:f0:18:96:f3:9e:37:0d:d2:a7:de:1e:6c:2b:fe:11:e4:
c0:e1:d3:50:8d:67:85:83:6b:e1:d8:ac:d1:44:19:6e:a7:dc:
8c:b1:4a:52:ff:80:09:e4:85:23:6d:56:62:04:ea:5f:c4:62:
4f:ed:d1:f7:c6:40:29:cd:44:f9:06:4f:09:c3:ee:93:04:e7:
bb:c7:75:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:33:08 2025 by rpki-client