Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/97d09b-e5e1-47f8-b25f-8a92e09bfe1b/1/R3BGWvTHI2RwAFnnll08iepGPNc.mft
File: R3BGWvTHI2RwAFnnll08iepGPNc.mft (raw, json)
Hash identifier: P0cSeL88TDjdgPzMh2k1zDcfamnS3Ie0Xlkk0rObhmE=
Subject key identifier: D0:04:33:24:91:00:88:28:A2:93:C8:97:E6:0A:89:FC:24:2B:DF:FA
Authority key identifier: 47:70:46:5A:F4:C7:23:64:70:00:59:E7:96:5D:3C:89:EA:46:3C:D7
Certificate issuer: /CN=4770465af4c72364700059e7965d3c89ea463cd7
Certificate serial: 01984964F10DDF3196414E527C50D0723CBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R3BGWvTHI2RwAFnnll08iepGPNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/97d09b-e5e1-47f8-b25f-8a92e09bfe1b/1/R3BGWvTHI2RwAFnnll08iepGPNc.mft
Manifest number: 0FB7
Signing time: Sun 27 Jul 2025 01:00:08 +0000
Manifest this update: Sun 27 Jul 2025 01:00:08 +0000
Manifest next update: Mon 28 Jul 2025 01:00:08 +0000
Files and hashes: 1: R3BGWvTHI2RwAFnnll08iepGPNc.crl (hash: oXPgePXCYn5eTNgtxS5THGqWWNpJ0gLaxHLL4ON4bMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/97d09b-e5e1-47f8-b25f-8a92e09bfe1b/1/R3BGWvTHI2RwAFnnll08iepGPNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/97d09b-e5e1-47f8-b25f-8a92e09bfe1b/1/R3BGWvTHI2RwAFnnll08iepGPNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/R3BGWvTHI2RwAFnnll08iepGPNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 01:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:64:f1:0d:df:31:96:41:4e:52:7c:50:d0:72:3c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4770465af4c72364700059e7965d3c89ea463cd7
Validity
Not Before: Jul 27 01:00:08 2025 GMT
Not After : Jul 28 01:00:08 2025 GMT
Subject: CN=d004332491008828a293c897e60a89fc242bdffa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ae:c0:c3:76:3b:b2:c9:a3:3b:48:47:89:2d:
9f:3c:28:80:80:9e:e5:b7:d7:41:75:8e:68:b3:6e:
45:80:43:07:dd:5b:ec:53:b1:ca:d3:7f:43:af:fa:
35:f1:7d:d3:f6:a7:a0:ba:51:62:b1:be:27:c8:a0:
b8:da:35:12:2c:f2:30:2d:83:aa:a6:d6:aa:ea:1c:
57:31:9a:6c:75:24:01:1e:52:5b:5e:3d:cb:b6:32:
7d:0f:7e:2a:d6:a6:6d:e4:57:8c:b5:e5:f9:7d:07:
8e:91:d2:3f:6b:c9:92:95:d7:ba:7e:a8:12:e7:9a:
aa:0a:17:61:48:82:6e:5c:82:57:23:6d:5c:03:84:
64:02:d3:de:43:5f:fc:53:9f:37:74:c6:9e:c5:a9:
5b:ad:90:10:c5:b5:f5:45:ae:75:1c:c2:bf:c7:4d:
af:bd:36:98:8f:71:83:7d:07:59:fc:02:e1:aa:84:
7e:da:ec:ac:1d:67:5f:6d:cd:c3:ea:83:6a:5c:5c:
11:7f:d0:8a:0b:89:db:e4:8a:db:e7:9c:5b:a5:11:
97:2c:28:04:3a:92:1e:90:7a:7e:6d:90:e3:09:7f:
ff:01:39:06:a9:6d:60:30:96:7c:52:ba:6b:bb:2a:
a2:06:07:9f:0f:b2:a8:80:e3:33:f2:1c:f1:b6:76:
38:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:04:33:24:91:00:88:28:A2:93:C8:97:E6:0A:89:FC:24:2B:DF:FA
X509v3 Authority Key Identifier:
keyid:47:70:46:5A:F4:C7:23:64:70:00:59:E7:96:5D:3C:89:EA:46:3C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R3BGWvTHI2RwAFnnll08iepGPNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/97d09b-e5e1-47f8-b25f-8a92e09bfe1b/1/R3BGWvTHI2RwAFnnll08iepGPNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/97d09b-e5e1-47f8-b25f-8a92e09bfe1b/1/R3BGWvTHI2RwAFnnll08iepGPNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:cd:5e:7f:44:e0:d7:6d:d9:ca:ad:2c:af:79:71:33:71:ad:
d2:49:1a:2b:10:99:cf:a2:33:37:e5:ab:b3:b2:e6:82:e9:5f:
65:11:4d:69:7e:4e:a0:24:76:22:39:55:fb:39:a9:a3:d7:c4:
d0:44:71:52:ca:5d:c4:63:7f:c7:31:83:78:83:b8:b6:3e:bd:
04:ad:1d:17:8a:46:40:15:ef:e5:17:2d:5b:19:ab:40:f6:06:
50:af:98:64:c5:1e:e7:6c:b5:af:07:f8:00:cb:fb:91:58:75:
30:b4:ea:54:59:4c:73:92:55:7b:76:e3:0a:70:83:c6:04:38:
f7:92:33:22:16:55:d2:fe:13:f4:43:8a:2e:15:d3:56:95:39:
9c:6b:30:b3:72:75:a3:8e:81:fb:d7:04:bb:56:22:8b:2f:f9:
9e:63:7f:a8:c6:4a:ed:4a:04:a0:2c:3a:3d:cd:a6:ff:e2:bc:
e7:2e:e6:72:17:15:36:9a:d1:11:04:b3:7c:4e:62:0a:be:23:
da:6c:03:f9:1b:56:a3:3c:21:69:31:65:e6:9a:63:83:ab:7d:
af:f4:0d:d9:a7:1d:a2:eb:1c:f5:ae:8b:25:82:ab:86:40:7a:
19:4d:7c:27:e4:c7:fa:ab:ce:c8:4f:7c:8f:94:8f:18:76:6b:
2e:71:ec:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZPEN3zGWQU5SfFDQcjy/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3NzA0NjVhZjRjNzIzNjQ3MDAwNTllNzk2NWQzYzg5ZWE0
NjNjZDcwHhcNMjUwNzI3MDEwMDA4WhcNMjUwNzI4MDEwMDA4WjAzMTEwLwYDVQQD
EyhkMDA0MzMyNDkxMDA4ODI4YTI5M2M4OTdlNjBhODlmYzI0MmJkZmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoa7Aw3Y7ssmjO0hHiS2fPCiAgJ7l
t9dBdY5os25FgEMH3VvsU7HK039Dr/o18X3T9qegulFisb4nyKC42jUSLPIwLYOq
ptaq6hxXMZpsdSQBHlJbXj3LtjJ9D34q1qZt5FeMteX5fQeOkdI/a8mSlde6fqgS
55qqChdhSIJuXIJXI21cA4RkAtPeQ1/8U583dMaexalbrZAQxbX1Ra51HMK/x02v
vTaYj3GDfQdZ/ALhqoR+2uysHWdfbc3D6oNqXFwRf9CKC4nb5Irb55xbpRGXLCgE
OpIekHp+bZDjCX//ATkGqW1gMJZ8UrpruyqiBgefD7KogOMz8hzxtnY4sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNAEMySRAIgoopPIl+YKifwkK9/6MB8GA1UdIwQY
MBaAFEdwRlr0xyNkcABZ55ZdPInqRjzXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjNCR1d2VEhJMlJ3QUZubmxsMDhpZXBHUE5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC85N2QwOWItZTVlMS00N2Y4LWIyNWYt
OGE5MmUwOWJmZTFiLzEvUjNCR1d2VEhJMlJ3QUZubmxsMDhpZXBHUE5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC85N2QwOWItZTVlMS00N2Y4LWIyNWYtOGE5MmUwOWJmZTFi
LzEvUjNCR1d2VEhJMlJ3QUZubmxsMDhpZXBHUE5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJs1ef0Tg
123Zyq0sr3lxM3Gt0kkaKxCZz6IzN+Wrs7LmgulfZRFNaX5OoCR2IjlV+zmpo9fE
0ERxUspdxGN/xzGDeIO4tj69BK0dF4pGQBXv5RctWxmrQPYGUK+YZMUe52y1rwf4
AMv7kVh1MLTqVFlMc5JVe3bjCnCDxgQ495IzIhZV0v4T9EOKLhXTVpU5nGsws3J1
o46B+9cEu1Yiiy/5nmN/qMZK7UoEoCw6Pc2m/+K85y7mchcVNprREQSzfE5iCr4j
2mwD+RtWozwhaTFl5ppjg6t9r/QN2acdousc9a6LJYKrhkB6GU18J+TH+qvOyE98
j5SPGHZrLnHsqw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 10:28:16 2025 by rpki-client