
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier: SRRnajLt+3kmsCN5ep3D847c+buZa9kbrfSY1WV9E3c=
Subject key identifier: E3:1E:8C:B2:5D:74:68:3A:36:84:1F:C7:9F:E3:41:FE:D4:F0:FE:61
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial: 01975948D228179DD389F3903F1B89380859
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number: 158E
Signing time: Tue 10 Jun 2025 10:00:33 +0000
Manifest this update: Tue 10 Jun 2025 10:00:33 +0000
Manifest next update: Wed 11 Jun 2025 10:00:33 +0000
Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 9r6W46VthsB60fCnZ6Ue3+xNbaXSu0GwPXg3RFDBSqU=)
2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:48:d2:28:17:9d:d3:89:f3:90:3f:1b:89:38:08:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Validity
Not Before: Jun 10 10:00:33 2025 GMT
Not After : Jun 11 10:00:33 2025 GMT
Subject: CN=e31e8cb25d74683a36841fc79fe341fed4f0fe61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:77:9b:42:89:b1:f5:36:de:cf:81:0d:3f:84:
22:42:01:2a:27:0d:28:a2:27:c9:01:b0:f5:f6:37:
53:5d:ff:8b:28:78:62:93:5b:d9:ba:97:c6:b6:3c:
d8:b8:ad:16:28:fe:56:e5:81:0c:09:74:35:dd:70:
9d:56:0b:56:fa:c4:b9:2c:05:29:7f:e3:7d:ad:88:
5c:0a:88:68:07:ba:67:41:51:3f:d8:ed:2b:93:e8:
32:b1:77:38:b1:11:76:cb:59:85:e9:13:84:2a:0a:
4c:12:fe:15:9e:87:5a:67:c3:c0:62:19:30:8d:7b:
d1:9e:62:ff:f1:81:46:15:a8:86:90:6b:13:75:2d:
ee:67:b5:66:f9:91:e1:e9:5d:99:3b:3f:e1:d7:16:
08:f8:cf:9d:a0:49:31:97:b0:c3:34:19:42:63:c1:
c1:7a:8d:25:32:b7:02:1b:cc:58:0a:ff:a7:45:29:
d4:d2:a8:8b:7f:13:d2:2a:b3:85:20:b5:29:96:dd:
69:d7:ec:7a:12:90:d1:34:29:b7:b1:cd:e9:d8:89:
e3:f9:2b:74:56:78:c0:37:88:11:82:64:29:e1:88:
fe:af:82:9f:5b:9b:ba:95:c5:8d:d0:b5:5e:53:f3:
bd:6c:ae:24:11:c8:24:e8:6b:18:1e:0d:09:ca:b6:
cc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1E:8C:B2:5D:74:68:3A:36:84:1F:C7:9F:E3:41:FE:D4:F0:FE:61
X509v3 Authority Key Identifier:
keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:bb:79:93:ad:f2:21:90:e9:0e:85:12:d2:1d:e4:8f:10:13:
3f:43:40:a5:03:8b:99:71:bd:19:5f:b6:e9:01:66:e9:f0:e7:
ef:c0:ba:c3:46:01:7f:2e:60:81:eb:47:bb:46:e9:6a:b3:50:
66:6e:4e:36:72:c1:9a:5c:e8:f5:c3:91:4a:6f:93:83:e3:7a:
8f:39:b2:ad:71:82:f8:78:39:46:89:5c:9e:be:1e:91:64:e0:
98:20:28:88:9b:8d:d8:74:6f:4e:d6:90:8c:00:cf:09:c2:b8:
d5:d9:1d:74:80:27:e7:13:de:0b:92:00:3f:a1:4e:5d:7d:83:
90:64:8e:de:cd:88:16:6b:1b:b3:b4:67:d2:68:d7:6b:37:10:
82:e2:a9:9f:bf:24:cd:02:bd:4f:7b:8e:24:30:34:7c:fb:2a:
d8:11:7e:29:f0:9d:0e:00:2f:6e:23:75:88:46:d6:2d:57:15:
a5:d2:d5:22:82:1f:bf:10:4c:37:cc:2d:78:70:aa:86:c8:ac:
ab:5e:4a:7f:db:3b:f0:4a:3f:90:63:ab:a7:6e:7f:7f:46:f8:
3a:4e:cd:2b:38:8b:10:06:d2:fc:ae:3e:a5:66:fa:ba:44:1d:
4b:57:91:da:fa:9b:8c:64:7d:fb:bc:13:17:da:bf:fb:fa:ae:
78:11:57:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:22:03 2025 by rpki-client