Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
File: dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft (raw, json)
Hash identifier: cyLi0Wjwv1Xtxa9HG8aJMWwD+KRiUH6UsIZ29Q8jE5U=
Subject key identifier: 34:D1:06:9E:C5:9D:33:55:63:CE:C9:E9:71:93:0C:69:87:A9:2B:54
Authority key identifier: 75:FA:CB:07:F2:CC:B9:2E:EB:A8:78:54:C9:42:40:E4:F5:AC:8F:52
Certificate issuer: /CN=75facb07f2ccb92eeba87854c94240e4f5ac8f52
Certificate serial: 019848F741B7911196ED6B3605E0893A946C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfrLB_LMuS7rqHhUyUJA5PWsj1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
Manifest number: 1602
Signing time: Sat 26 Jul 2025 23:00:20 +0000
Manifest this update: Sat 26 Jul 2025 23:00:20 +0000
Manifest next update: Sun 27 Jul 2025 23:00:20 +0000
Files and hashes: 1: dfrLB_LMuS7rqHhUyUJA5PWsj1I.crl (hash: RwnipjCi+yxhN7d0aAox63d6EDmUFW8+BW6kikjp2l8=)
2: wUNIEVtYpwrG63HG0eeD7I7tvcM.roa (hash: oXVfh0sTirB6aA53rQRtUtH/R5Wu4DiNaIy7B2RuTkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/dfrLB_LMuS7rqHhUyUJA5PWsj1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:f7:41:b7:91:11:96:ed:6b:36:05:e0:89:3a:94:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75facb07f2ccb92eeba87854c94240e4f5ac8f52
Validity
Not Before: Jul 26 23:00:20 2025 GMT
Not After : Jul 27 23:00:20 2025 GMT
Subject: CN=34d1069ec59d335563cec9e971930c6987a92b54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:63:3f:be:7b:97:cf:be:bd:1b:af:22:0f:0c:
48:8b:7e:2b:12:7d:25:1c:4f:8e:2f:25:77:ed:7d:
d5:be:54:b8:74:16:d5:61:4d:c4:d0:c8:5d:e5:cd:
08:5d:c7:c9:88:91:7f:dd:37:56:21:17:45:63:12:
02:e8:50:96:6e:e5:b3:b1:96:1b:3a:f7:62:a9:b1:
80:4d:7c:5c:e8:53:ea:28:38:0e:4e:5f:3a:7c:f8:
4f:31:00:d1:50:e2:d6:52:07:25:b5:59:50:e8:ce:
c6:af:ca:b9:c3:e4:40:b3:a7:cb:69:ed:5e:be:c7:
8f:a9:05:b4:11:e0:1e:8d:4b:1a:e8:f1:59:b6:50:
72:60:9e:93:ac:11:fd:b8:51:22:a1:5c:b8:6c:9f:
de:19:89:bf:a5:a9:66:a7:5c:3c:23:46:b1:b9:f6:
26:a0:c7:f2:7e:c5:f8:cd:b2:96:a2:82:dd:2a:b1:
a8:b6:a2:23:2f:2d:17:ce:64:0f:40:22:7c:91:cc:
2e:37:05:8e:fc:01:84:c3:0c:8d:08:d1:8b:bd:f5:
33:18:a0:f2:0c:ca:92:47:ea:09:68:af:b1:f7:1a:
03:52:da:5f:f6:86:05:22:2e:6d:d4:a8:78:dc:3d:
5e:fe:9a:7a:89:26:24:b2:7b:19:cb:d3:39:8f:c7:
1f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D1:06:9E:C5:9D:33:55:63:CE:C9:E9:71:93:0C:69:87:A9:2B:54
X509v3 Authority Key Identifier:
keyid:75:FA:CB:07:F2:CC:B9:2E:EB:A8:78:54:C9:42:40:E4:F5:AC:8F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfrLB_LMuS7rqHhUyUJA5PWsj1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:96:92:89:11:1b:be:24:a2:67:ac:f9:0d:bc:49:05:1a:c2:
02:c9:cf:92:7d:8c:f3:b2:ba:26:cf:bb:b3:84:48:a8:6a:57:
93:a2:80:2e:26:03:3a:3b:d7:2f:f1:3f:c3:22:82:14:c2:ea:
5b:36:9b:d1:30:3f:32:e9:1f:01:a4:df:cf:89:7b:53:c5:66:
35:3b:bc:7d:bc:d7:8f:08:cd:b4:d1:e7:7f:8f:7d:76:e5:56:
b4:4c:a4:77:08:32:4d:64:93:55:ed:6a:b3:da:66:36:a6:0a:
cf:0b:80:81:29:96:8e:0b:da:02:fa:93:ab:39:16:df:3b:81:
0b:ae:b0:21:31:c3:b2:0f:45:33:51:10:fb:fe:91:f8:36:29:
f9:8d:c1:1a:37:f8:a2:20:21:d7:a1:b2:bd:85:16:ce:b4:e9:
5b:79:98:a9:72:fa:ed:8f:1a:07:c8:45:03:b0:09:82:16:df:
31:eb:2d:c8:e5:20:69:61:0b:72:7d:07:31:e8:6e:3b:b9:10:
8b:d8:36:ed:d5:0d:19:90:c1:bc:b3:41:e7:bb:0a:bd:73:4b:
02:7f:e9:b7:66:c3:7b:3d:52:62:95:6c:dd:15:74:aa:83:13:
12:83:a9:7b:44:02:b9:92:5e:44:5f:dc:51:01:9d:fd:fd:8a:
34:b4:78:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 01:53:15 2025 by rpki-client