Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: 9p3R9YpmHrsp1iZqG9+grJZsCeqg7aRGq99prQlZNls=
Subject key identifier: 07:D8:D5:DA:05:96:F4:63:07:A2:A2:16:61:9B:78:DB:5E:56:46:35
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 01984CD4719984618BC22A02342172DCBEE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 01DC
Signing time: Sun 27 Jul 2025 17:00:47 +0000
Manifest this update: Sun 27 Jul 2025 17:00:47 +0000
Manifest next update: Mon 28 Jul 2025 17:00:47 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: cxZQoRd2lG5+WvlwwCLmFvioIaBGWj9GunBlra6D2+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 17:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4c:d4:71:99:84:61:8b:c2:2a:02:34:21:72:dc:be:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Jul 27 17:00:47 2025 GMT
Not After : Jul 28 17:00:47 2025 GMT
Subject: CN=07d8d5da0596f46307a2a216619b78db5e564635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:af:11:97:27:7f:ff:5a:b7:86:27:c5:c9:8c:
c2:c5:cd:65:73:fe:09:9c:bb:f9:fa:32:2b:b5:ca:
b0:6e:bc:e6:83:76:e1:cb:b8:41:03:f3:79:a8:c6:
44:12:03:42:1b:bc:7d:61:3e:2c:a4:f5:29:cb:0b:
d9:7e:0d:11:e0:e9:af:32:bb:18:7b:aa:28:8c:06:
07:de:db:b2:7e:6f:63:9f:d8:43:a9:62:5a:0c:cc:
1f:f3:f7:ad:bb:fb:5e:ae:e9:fd:ab:02:f6:1e:5d:
eb:69:a3:5e:39:87:87:ec:4f:f7:2a:10:d1:85:f0:
2e:86:7a:3e:25:54:39:71:74:07:74:28:43:a4:1e:
e2:8d:50:d3:f8:f6:e6:44:b1:9a:b9:58:3e:c4:69:
75:02:55:5b:58:69:4c:d9:97:c8:49:20:f5:8b:d5:
b9:ad:10:eb:5b:98:d3:9b:4f:dd:70:d5:08:7d:4e:
d0:91:fb:be:00:74:ed:23:ee:bd:7a:fb:fb:6d:07:
ad:9f:6c:53:07:dd:ec:db:65:80:a6:78:42:10:db:
35:34:a8:be:f6:f5:e3:70:97:7d:e1:36:ef:c0:5c:
7d:fe:94:e9:61:e5:11:df:95:91:51:bc:4a:27:05:
f1:8a:aa:1b:28:47:92:37:58:86:b3:8f:b7:2b:cc:
26:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D8:D5:DA:05:96:F4:63:07:A2:A2:16:61:9B:78:DB:5E:56:46:35
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:91:07:86:9d:47:0f:ca:96:d7:1e:d4:82:27:52:2f:40:d6:
4c:e6:77:c4:e3:94:8e:4e:c6:22:bc:3e:eb:23:a4:ab:2f:7e:
71:89:43:11:fb:4f:2a:ff:17:a4:1e:1d:6d:fc:15:ea:e0:6e:
fa:06:9d:9f:f5:80:56:a9:08:3d:f7:59:e9:0d:89:98:4b:dd:
79:45:59:fd:76:5e:13:46:22:5a:fd:d1:e6:e7:9e:43:c6:f5:
7c:65:cc:2d:b0:f2:a3:34:95:23:c4:7b:30:54:c8:ea:0b:a8:
3b:a3:eb:37:9a:2b:e1:86:71:b0:cb:2f:7f:0a:86:f2:ac:a0:
3f:84:15:e8:2c:c8:fd:1b:7f:c4:f5:f0:e7:d9:35:ad:a6:a4:
f9:9c:1f:c8:e4:1f:fe:2f:1f:99:84:bc:fb:70:f3:41:b6:44:
af:7e:22:22:1d:e8:c0:7e:90:76:7e:10:df:1d:dc:75:ea:8b:
58:ee:d3:a9:fb:da:d7:01:9d:da:cf:88:2f:16:c8:17:ea:1b:
ef:ac:7a:e9:31:e0:9a:b7:bb:69:24:ef:e3:86:55:bb:3b:4b:
18:27:90:30:a5:b2:0c:bf:7b:8b:ae:47:f4:22:34:dd:8d:ab:
d6:1b:5c:d5:75:0b:9e:5a:b8:5a:ba:09:15:12:8d:6c:c3:4b:
87:ce:48:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 28 01:56:11 2025 by rpki-client