Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
File: 3EviU3WUInayZECX3D1ah1r7ivE.mft (raw, json)
Hash identifier: nwIXBMndUqmIlj7zkaXeLNJnvJCsIzlsdETAthXEtmg=
Subject key identifier: DB:3F:8C:34:5A:06:22:D6:E3:E0:27:4D:B5:AF:7A:A0:AA:DC:3F:0E
Authority key identifier: DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1
Certificate issuer: /CN=dc4be25375942276b2644097dc3d5a875afb8af1
Certificate serial: 0197B8903CFB9B4D9C20CBACD38CA1EA7157
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
Manifest number: 086A
Signing time: Sat 28 Jun 2025 22:02:29 +0000
Manifest this update: Sat 28 Jun 2025 22:02:29 +0000
Manifest next update: Sun 29 Jun 2025 22:02:29 +0000
Files and hashes: 1: 3EviU3WUInayZECX3D1ah1r7ivE.crl (hash: mn9ntOxRdmHxLAAM3N90gFJgliWXYUV1gWkclrf0dg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:3c:fb:9b:4d:9c:20:cb:ac:d3:8c:a1:ea:71:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4be25375942276b2644097dc3d5a875afb8af1
Validity
Not Before: Jun 28 22:02:29 2025 GMT
Not After : Jun 29 22:02:29 2025 GMT
Subject: CN=db3f8c345a0622d6e3e0274db5af7aa0aadc3f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ff:60:3f:c7:bb:e2:e6:3c:00:f3:b7:f5:79:
e6:d8:91:0a:65:eb:bd:b7:c0:e4:7a:15:16:53:cc:
92:d8:2a:ff:18:4d:15:2e:e9:f0:db:a8:fc:ec:fb:
cc:0f:0d:1b:c4:fe:de:ea:07:a0:74:55:66:8c:81:
32:5b:03:4b:66:14:da:73:df:52:93:0c:bf:ba:64:
60:48:a5:f1:99:6a:5c:88:d4:e9:c0:a8:3a:9a:79:
c2:be:52:08:73:96:50:34:ce:0f:f2:6c:3b:4d:29:
d4:0b:b9:d8:de:16:e6:a3:b1:e7:31:ec:86:ca:34:
ae:b8:9e:7d:bb:a7:b5:11:49:9d:93:77:8e:cb:28:
1f:3d:41:4a:8d:2a:44:01:fd:70:ad:cb:12:e8:5d:
8e:1f:cb:33:41:a9:aa:82:5e:52:1b:cf:3f:a9:1f:
70:2c:f7:4e:c9:ee:fb:f5:e3:b9:3a:8a:91:94:af:
f0:05:ce:97:35:92:78:2a:80:8b:21:19:51:98:7c:
98:36:78:d9:76:51:97:4d:26:3c:7a:d1:1b:b3:6a:
b0:12:57:d8:57:43:77:ad:b5:a8:e2:e8:a9:ad:57:
ca:08:9b:2f:e1:f9:db:11:4b:b2:03:31:6b:08:2a:
46:a6:94:82:da:c9:a0:57:6b:9d:ca:65:42:57:9f:
8c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3F:8C:34:5A:06:22:D6:E3:E0:27:4D:B5:AF:7A:A0:AA:DC:3F:0E
X509v3 Authority Key Identifier:
keyid:DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:aa:33:e7:cf:2f:2a:29:cf:21:fa:ba:a1:9d:6c:56:a9:ba:
28:6a:1d:eb:47:e0:d3:27:59:f5:5a:67:95:2d:77:9a:5c:39:
bc:6b:06:9c:96:c3:1d:2c:5c:fc:2c:5a:45:f1:03:92:81:ab:
e5:45:9d:13:e7:96:43:dd:29:28:d8:64:42:2f:dc:18:11:da:
56:cd:23:79:c9:1e:49:9d:1c:89:17:3e:d0:3b:e6:0d:8e:94:
73:74:83:17:78:8b:6f:8b:b1:53:83:dd:27:af:6d:43:42:c2:
ac:13:e6:cb:33:a4:d4:fb:37:bb:7d:0a:ab:45:0a:90:25:ef:
a3:93:26:c9:9e:de:ac:a2:75:25:01:1c:c6:90:a7:9f:de:eb:
d4:4a:2e:dc:6f:bc:03:89:96:ef:89:88:f8:5f:57:11:35:ae:
05:fb:36:b7:98:a9:df:30:9a:40:38:b3:1c:e3:92:9b:d9:19:
9b:aa:76:be:89:5f:3c:c0:aa:5b:8e:73:22:27:ce:df:9d:ce:
bc:3b:dc:c8:ca:12:48:9a:42:cd:49:25:0f:9b:3e:58:2c:b1:
76:7b:ea:1b:1b:58:76:f2:d2:2a:1a:90:5c:f7:36:98:37:06:
dc:2c:e2:6f:ec:1e:b4:b2:ae:d3:83:b5:a7:9c:b7:1e:07:33:
1c:ae:90:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:10:55 2025 by rpki-client