Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
File: mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft (raw, json)
Hash identifier: n7FAWYbJJaIz4GGWYXoC9R3C9Fdsr9r4Zddf4woEx0g=
Subject key identifier: 3E:C8:D7:61:6D:0C:38:38:A1:53:87:EC:FB:C9:77:A6:DB:D3:74:A6
Authority key identifier: 99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
Certificate issuer: /CN=99f4973e524b08717582577630d33193e53b67c9
Certificate serial: 019748FA57F8EBF3859A6C2B98E5EEBD0997
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
Manifest number: 042E
Signing time: Sat 07 Jun 2025 06:00:55 +0000
Manifest this update: Sat 07 Jun 2025 06:00:55 +0000
Manifest next update: Sun 08 Jun 2025 06:00:55 +0000
Files and hashes: 1: mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl (hash: vtAG8k8X/oSG8Wo1AxK0fcEwttNpM0ZnO8mEN7g1Hn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:57:f8:eb:f3:85:9a:6c:2b:98:e5:ee:bd:09:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99f4973e524b08717582577630d33193e53b67c9
Validity
Not Before: Jun 7 06:00:55 2025 GMT
Not After : Jun 8 06:00:55 2025 GMT
Subject: CN=3ec8d7616d0c3838a15387ecfbc977a6dbd374a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1d:4d:40:25:3e:3c:3e:50:97:a3:27:91:2e:
fa:5a:b2:6a:2d:9a:78:3d:2d:61:94:56:09:5d:00:
c9:9c:3d:12:3b:29:31:6d:d4:e1:71:65:f4:dc:42:
a7:b8:0a:c5:3d:6a:4a:0f:5b:d9:b2:b1:79:a5:40:
01:81:e2:e4:0f:94:a9:1c:1b:70:11:bb:e6:ab:8a:
ad:d6:f1:20:cd:ca:a4:16:ca:b1:01:cc:a6:72:45:
59:cf:d1:68:49:55:75:83:53:0e:12:01:e1:29:29:
72:bd:5b:c5:06:37:c0:bc:a3:74:40:6d:6e:59:cb:
ca:45:b1:14:cf:c8:b3:de:3e:e6:5c:ba:05:e2:6f:
94:28:86:b4:69:7f:4b:f9:a2:db:eb:dc:d6:ec:c6:
47:e2:cf:43:1d:12:c1:c3:be:91:37:ee:09:34:8f:
73:ad:2e:18:0a:52:0a:e2:bd:5a:3d:ed:d5:02:0d:
41:6e:f8:ab:eb:05:26:20:dd:3f:4b:cf:60:e7:6c:
31:f5:01:71:c2:d5:c5:69:09:12:b6:12:e6:64:59:
0c:ab:eb:86:1b:a9:4b:69:8b:1d:8c:c2:02:cd:4d:
c9:41:0e:77:d2:c7:da:21:64:6d:13:1b:c8:dc:cb:
d9:83:4f:29:f1:16:6d:71:05:4d:86:44:94:b5:e7:
aa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C8:D7:61:6D:0C:38:38:A1:53:87:EC:FB:C9:77:A6:DB:D3:74:A6
X509v3 Authority Key Identifier:
keyid:99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:2c:7f:23:49:40:03:16:82:73:26:ea:1f:e6:6d:0a:da:26:
7b:11:3e:f5:02:c1:be:e6:a5:1c:13:23:ee:84:c1:c2:b5:de:
1f:09:db:12:b6:8e:bb:6d:e1:9e:e4:a9:d1:91:e8:56:85:ce:
40:d7:0f:eb:a0:49:2b:a1:69:0c:2e:68:04:e4:fd:43:b0:47:
8a:80:40:28:e4:57:be:9e:bf:30:2b:dd:97:23:73:49:fb:5d:
a2:9c:18:41:9e:32:a7:dc:8e:dc:d4:db:ac:67:85:73:47:75:
76:dd:37:25:a6:03:af:af:18:c1:79:01:7f:3e:8e:c7:c8:cf:
6c:9e:a1:02:be:c7:ec:65:7d:03:42:b8:bd:db:23:a8:fc:95:
32:ab:98:b7:db:a5:02:0d:bf:a6:07:7e:34:5b:d6:a2:39:6c:
fd:a3:d2:c6:92:ab:9a:fc:fc:95:dd:12:12:0f:c5:04:f7:1c:
05:66:37:86:53:d0:07:70:2e:cb:34:53:b7:ec:da:4a:4e:fb:
5d:bd:5a:8f:c3:f5:06:86:f5:33:44:08:e0:c5:2c:42:9b:b3:
08:56:25:1d:d6:59:9b:97:0e:7e:ad:b7:94:88:0d:8e:1d:35:
48:90:95:0a:b0:85:74:76:4f:6d:3d:ff:00:9b:47:ad:04:95:
d2:b5:84:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:30 2025 by rpki-client