Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json)
Hash identifier: /XyaSbw3k/weaWr0sORdW1/qvkin6lbTAqbE1qT64ZQ=
Subject key identifier: 2C:67:A3:FB:4A:B9:F8:D5:95:85:AC:94:0E:25:2B:8F:24:36:45:C8
Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Certificate serial: 0198537B2614AA5B1327725B7345E56102A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
Manifest number: 1427
Signing time: Tue 29 Jul 2025 00:00:36 +0000
Manifest this update: Tue 29 Jul 2025 00:00:36 +0000
Manifest next update: Wed 30 Jul 2025 00:00:36 +0000
Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: je9aVrkGyaMIcbBRI745x/+n8QU/Ytu0rzh5+WlmodU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:7b:26:14:aa:5b:13:27:72:5b:73:45:e5:61:02:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Validity
Not Before: Jul 29 00:00:36 2025 GMT
Not After : Jul 30 00:00:36 2025 GMT
Subject: CN=2c67a3fb4ab9f8d59585ac940e252b8f243645c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:74:5d:27:54:d2:be:e8:24:96:bf:3c:45:b2:
9b:b8:ee:0f:a1:9a:18:5a:ee:dd:eb:e4:df:f5:91:
57:4f:81:cb:66:6d:77:82:83:c5:30:d4:6c:9f:47:
68:1a:e6:96:89:5c:d3:3a:00:f8:1f:89:53:54:54:
20:4f:f6:af:42:85:ff:85:96:44:3e:2e:a3:f4:ed:
b0:25:20:73:19:cb:a3:d4:97:d6:ce:b3:d3:44:73:
8d:c9:e5:0e:b5:98:66:3b:90:6f:52:f8:3f:de:ce:
15:17:ca:d8:f1:18:91:5a:ee:c5:9b:5a:57:f7:b7:
ae:7b:e5:a8:4b:52:90:d9:92:67:ca:95:33:07:da:
59:93:1b:14:13:12:a0:41:cb:93:24:c1:c8:e6:ee:
e7:7c:0e:22:52:90:f1:ed:c7:0c:8c:a6:66:16:7b:
8b:20:d5:06:78:34:24:37:16:02:19:24:28:8b:12:
d7:91:62:12:5c:36:c7:dc:a0:3a:35:45:b4:59:43:
f0:5a:e3:8c:19:a3:78:0a:80:0e:d1:e5:cf:da:75:
3c:21:a4:6e:8a:96:c8:ab:e8:c7:cc:07:87:62:d4:
b3:7e:ba:4d:b5:49:ae:a0:f2:10:6b:96:f5:21:f2:
ae:5c:32:92:1e:66:e5:ac:22:19:35:b4:82:60:d8:
be:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:67:A3:FB:4A:B9:F8:D5:95:85:AC:94:0E:25:2B:8F:24:36:45:C8
X509v3 Authority Key Identifier:
keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:08:ab:d8:c6:7e:7d:01:09:4c:2f:fd:aa:40:ea:d0:85:d1:
8b:6f:aa:0e:65:57:6b:95:b3:7a:6c:fb:f6:ae:83:a0:76:fa:
ec:1b:bb:0f:1b:e9:de:54:85:56:07:3a:e7:75:87:70:66:55:
06:4e:5f:08:7b:7e:ce:3f:df:28:c4:c9:6c:ee:aa:af:49:e7:
28:91:ca:80:5e:e6:92:a9:05:c2:d5:80:10:4c:a4:73:65:7c:
c6:41:2a:7b:89:3e:3a:f4:5e:aa:29:5a:e0:f6:15:5e:ee:7e:
04:63:47:f2:e9:de:aa:b7:ff:4b:75:0e:67:f6:5d:b4:ca:97:
b7:cc:9b:83:d5:7e:4f:66:82:da:44:50:de:52:46:5b:8c:72:
a5:3b:a3:e6:b1:48:28:23:01:05:43:c6:6f:68:ba:ed:bf:3c:
f2:f0:ba:56:62:6d:34:88:ac:d2:be:ec:ef:13:ea:d2:f9:f0:
fd:df:8b:40:e0:03:31:02:66:2d:09:94:93:04:62:ab:41:ba:
ee:83:99:d9:6e:6f:42:b6:32:a4:9b:c3:ea:a9:b9:68:09:b6:
c2:01:be:f1:d6:2e:28:2b:c9:2f:97:89:ff:5e:71:ad:b3:c6:
88:3c:db:1e:95:6f:b8:4a:f8:90:8d:a8:c5:d2:e0:43:b5:c7:
3d:7f:fe:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:27:43 2025 by rpki-client