Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: UDc0Z1Yiy9abHyjG4EXb6Seke2/Vv8RltDA7TPfcN4Q=
Subject key identifier: CF:5A:81:A7:75:5B:B4:04:1F:DE:CD:40:B4:CD:15:52:92:D4:09:74
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 0197481E3262C8C9864F03BD48DB21B5FA89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: 0155
Signing time: Sat 07 Jun 2025 02:00:27 +0000
Manifest this update: Sat 07 Jun 2025 02:00:27 +0000
Manifest next update: Sun 08 Jun 2025 02:00:27 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: J2hz+j9FHWu9zVMNtH2RvmKrXoB0rnbOEi2dUYpnNFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:32:62:c8:c9:86:4f:03:bd:48:db:21:b5:fa:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Jun 7 02:00:27 2025 GMT
Not After : Jun 8 02:00:27 2025 GMT
Subject: CN=cf5a81a7755bb4041fdecd40b4cd155292d40974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b7:21:80:cb:b3:dd:ac:42:ed:95:a7:f8:70:
7f:01:ac:72:d1:08:1a:69:17:e4:83:ef:cf:11:94:
96:ed:4f:16:97:b8:d9:ee:40:e9:62:6e:72:00:63:
be:0d:69:76:0a:0d:8b:c4:e0:d5:4f:7d:32:63:07:
64:d7:b6:32:73:18:fe:9f:f2:23:4d:9c:75:a9:fa:
e5:09:39:fc:b7:29:c9:cb:cd:5d:72:b2:8a:b6:99:
37:8a:19:e4:4c:21:80:a9:6b:d1:a2:b6:dd:be:78:
40:4a:69:c2:2c:22:f1:68:82:ec:d7:70:dc:10:ae:
30:da:54:f5:52:2f:d8:b4:9e:ef:c5:fd:74:5c:0a:
24:bf:5e:ec:d4:b5:f9:57:40:69:8a:cd:87:31:16:
3e:da:d8:b6:53:42:2d:3d:1c:36:38:c4:c3:b5:44:
74:10:02:e1:8c:93:fd:45:93:ad:62:f4:87:8b:8c:
e8:ae:d2:df:76:99:34:19:05:2e:8d:37:06:7f:36:
47:dd:2e:dd:df:4d:6f:65:0f:c9:e3:49:fa:95:15:
12:bf:54:31:06:58:29:59:7e:07:a5:9f:6f:37:92:
6d:fe:bc:c6:bb:bb:2c:d5:1a:6a:6f:2a:27:6a:68:
47:57:e6:d6:ea:af:9c:7c:95:0b:f3:5d:07:1c:bf:
95:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5A:81:A7:75:5B:B4:04:1F:DE:CD:40:B4:CD:15:52:92:D4:09:74
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e1:65:da:56:68:5b:34:5b:1f:3c:4b:89:5b:bd:7a:85:4c:
65:3f:79:04:02:bf:6e:91:1a:bb:96:8a:c9:44:75:0d:ac:33:
4f:93:a6:5a:9a:20:eb:7e:f5:1c:4f:b1:aa:39:05:ba:ed:ac:
bf:cd:ec:d8:33:81:00:7a:80:6b:84:90:bc:9e:9c:e2:23:14:
33:0d:25:3f:52:68:dc:96:06:14:eb:ea:ab:0c:49:93:c6:2b:
b1:d5:bd:95:e8:b7:6a:e7:97:0c:73:b3:0d:ce:fa:07:34:85:
56:3b:b7:de:19:45:f2:89:e8:30:38:1e:80:01:0e:7e:91:a9:
97:cc:88:11:63:2c:5c:44:bc:42:f1:43:03:3d:a1:76:55:0d:
d6:d3:99:c4:11:f2:7d:2b:77:48:55:4f:8f:c6:69:49:3f:68:
cd:e4:f0:90:45:d3:7b:85:25:3e:63:b1:c8:8b:dd:da:36:e8:
7f:a2:44:b3:f7:a1:31:0e:ff:3a:38:71:cc:da:88:d4:5b:ee:
bc:a7:1d:74:24:aa:7e:8a:ca:cd:d7:3e:5e:d6:67:85:63:16:
d2:b2:81:b1:35:ab:2f:85:71:3c:8b:29:98:3b:b4:57:6d:b2:
e8:61:11:61:61:7a:6c:b8:84:a6:43:52:3a:2e:4f:02:49:fb:
ef:7b:f9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:27:19 2025 by rpki-client