Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
File: 03h3GhBvaw0FSld4U1aSLK8C40M.mft (raw, json)
Hash identifier: QFdzqrjeku7uUzWy+t5L5+7qP4vCnCQTFngP2CtI65s=
Subject key identifier: 33:C8:0A:2F:EA:B8:58:53:C4:58:F0:BE:BC:DB:59:1D:6A:6F:0A:4C
Authority key identifier: D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43
Certificate issuer: /CN=d378771a106f6b0d054a57785356922caf02e343
Certificate serial: 0197B70F619E4D44F2586AEAE3F74D2C0D0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
Manifest number: 095F
Signing time: Sat 28 Jun 2025 15:02:07 +0000
Manifest this update: Sat 28 Jun 2025 15:02:07 +0000
Manifest next update: Sun 29 Jun 2025 15:02:07 +0000
Files and hashes: 1: 03h3GhBvaw0FSld4U1aSLK8C40M.crl (hash: lGspAWBMc8PGFHBRj4B+Hysyk77aMtNhP72PiWkDYJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:61:9e:4d:44:f2:58:6a:ea:e3:f7:4d:2c:0d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d378771a106f6b0d054a57785356922caf02e343
Validity
Not Before: Jun 28 15:02:07 2025 GMT
Not After : Jun 29 15:02:07 2025 GMT
Subject: CN=33c80a2feab85853c458f0bebcdb591d6a6f0a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:73:b1:ee:ef:44:21:da:98:8e:18:3a:a9:
5d:72:97:0b:be:85:95:2f:b4:e2:2e:af:25:0d:23:
9a:e9:f2:b4:f8:ce:a8:65:02:15:1e:cd:e8:be:c9:
e4:b3:2d:3a:93:d0:ff:9b:bc:35:e8:0c:74:bb:3d:
30:87:b2:5e:f0:4a:3e:57:b7:b0:49:50:ac:1e:da:
83:d9:6b:37:54:ea:46:0c:9f:af:8d:ec:d4:7b:25:
db:e2:bc:81:31:27:ad:2a:bf:32:5b:f4:2b:dd:84:
7f:11:2f:75:73:51:e4:42:ca:57:5a:8a:4b:eb:8f:
69:3d:94:07:d1:f1:75:94:2c:1a:6c:ae:f0:b7:14:
72:55:3b:40:58:98:e4:92:c7:82:96:08:dc:e0:c6:
b5:52:06:ac:40:b6:13:fd:e8:a0:c4:57:9d:e1:36:
72:fb:3b:f1:9b:fc:2d:11:d7:37:0d:16:05:b6:50:
ec:e0:90:d9:32:f0:b6:ff:9b:c9:d6:52:d5:96:75:
62:af:de:1d:e2:04:98:4f:90:51:95:5c:47:ee:a4:
8a:e3:a0:c7:0a:92:b4:ef:89:15:28:e2:13:e8:08:
97:5e:88:89:3e:1b:96:55:87:2c:ac:09:a0:60:5b:
fe:df:fa:ab:ac:8b:a3:ef:d5:ea:36:51:87:c5:8c:
a2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C8:0A:2F:EA:B8:58:53:C4:58:F0:BE:BC:DB:59:1D:6A:6F:0A:4C
X509v3 Authority Key Identifier:
keyid:D3:78:77:1A:10:6F:6B:0D:05:4A:57:78:53:56:92:2C:AF:02:E3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/03h3GhBvaw0FSld4U1aSLK8C40M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/3a5423-6b92-40f4-878a-54717f72ca59/1/03h3GhBvaw0FSld4U1aSLK8C40M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:82:99:d5:d3:58:35:48:be:c2:b0:f3:5d:1e:a7:15:d2:a4:
8f:a4:07:96:4a:3d:57:6b:e6:c7:c0:51:66:2c:6d:97:ee:6f:
bb:a6:58:81:43:9b:9a:35:1f:ee:7f:e1:8e:92:e5:42:ca:c0:
bb:b8:11:e2:45:88:46:f3:58:6a:92:65:af:d6:5b:ea:43:fe:
aa:06:8a:ea:8c:24:05:5b:37:a0:8b:cb:6d:93:3e:2d:29:9a:
43:bd:08:d1:60:e0:17:92:32:c9:93:fc:d4:3d:65:ca:cc:cd:
7d:b4:66:53:19:11:63:24:3e:0c:55:b8:12:a3:ea:e6:84:1e:
b9:cd:fd:be:ec:03:5d:ea:58:3f:c9:97:db:05:36:03:8e:d4:
6b:2e:91:a9:78:03:06:a1:4f:dc:b3:da:9b:c5:4b:0e:91:09:
62:ee:ce:a9:c7:57:04:ed:a3:31:56:d6:da:54:8b:38:f4:6c:
6b:19:b3:a1:9a:17:67:16:44:76:b1:dc:8b:d4:0b:78:08:43:
6f:da:e8:d8:b7:5b:3d:4c:b9:b7:be:ac:47:ab:14:f9:55:46:
31:df:ef:fa:5b:4f:3d:90:2a:b3:f0:cb:91:0e:76:8e:9b:88:
3f:8c:f6:99:e5:6e:1a:8f:83:40:f3:cb:b5:28:5b:9d:45:63:
bb:76:ff:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:43:14 2025 by rpki-client