Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
File: dGNy_s6bo5ZuFegFXAWHxQPAOas.mft (raw, json)
Hash identifier: RCYyfub9E1iin7hIQvBjn06VsWcVbB0GSM1QO1/nAwU=
Subject key identifier: 2A:EC:93:F9:AD:3B:9B:AF:D7:8C:49:51:68:E7:A9:04:8F:43:65:E6
Authority key identifier: 74:63:72:FE:CE:9B:A3:96:6E:15:E8:05:5C:05:87:C5:03:C0:39:AB
Certificate issuer: /CN=746372fece9ba3966e15e8055c0587c503c039ab
Certificate serial: 01974C694599E2E75336A02BF11B8AC3E498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
Manifest number: 1025
Signing time: Sat 07 Jun 2025 22:00:56 +0000
Manifest this update: Sat 07 Jun 2025 22:00:56 +0000
Manifest next update: Sun 08 Jun 2025 22:00:56 +0000
Files and hashes: 1: dGNy_s6bo5ZuFegFXAWHxQPAOas.crl (hash: alZhO+8uAJZxmRwWqZfONsauIcZRVMJEGdS6qVTFReI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:45:99:e2:e7:53:36:a0:2b:f1:1b:8a:c3:e4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746372fece9ba3966e15e8055c0587c503c039ab
Validity
Not Before: Jun 7 22:00:56 2025 GMT
Not After : Jun 8 22:00:56 2025 GMT
Subject: CN=2aec93f9ad3b9bafd78c495168e7a9048f4365e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f3:14:b9:35:3c:cc:e9:2c:d6:58:37:44:10:
9c:e9:8b:13:2d:6b:e6:28:e8:ea:07:59:8c:61:76:
5b:11:27:ae:04:18:5c:15:ad:2f:a4:c5:fd:4a:14:
73:cc:06:5b:3d:af:05:56:76:d9:fc:79:f1:5a:d3:
49:57:60:54:50:3d:ed:1d:cb:21:f1:19:1d:54:3f:
df:06:f7:67:2c:d7:b4:10:6f:76:9a:d4:d2:14:03:
f1:3f:c3:7e:40:88:34:aa:cd:d2:68:66:3e:74:97:
39:17:fc:ba:b4:92:d2:70:99:14:86:f2:d9:11:2a:
28:c8:dc:fa:fb:31:8c:07:8c:e3:b8:e6:30:6f:1d:
1e:5b:64:ed:d9:bd:8a:af:ac:21:90:e3:2b:11:ac:
41:49:13:0b:3c:9d:5e:26:6a:24:16:7b:2e:d9:bd:
47:e0:d3:46:63:b7:07:36:8b:43:b9:8d:5e:44:86:
15:a5:44:80:62:b6:98:86:51:17:8c:49:19:ed:95:
e2:ce:37:0b:0c:78:5d:f7:97:7a:c4:e1:ed:8a:4d:
61:f9:a7:4a:e4:4d:f0:9a:77:98:90:25:26:f8:0a:
4b:ab:fd:e4:22:01:b7:f9:5d:fe:9b:53:8e:9c:ce:
99:53:94:f5:11:70:84:f4:2a:4f:b6:f5:e0:c5:45:
c8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EC:93:F9:AD:3B:9B:AF:D7:8C:49:51:68:E7:A9:04:8F:43:65:E6
X509v3 Authority Key Identifier:
keyid:74:63:72:FE:CE:9B:A3:96:6E:15:E8:05:5C:05:87:C5:03:C0:39:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNy_s6bo5ZuFegFXAWHxQPAOas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3cbb1b-6927-45c9-b1d4-1d7d55b22cc9/1/dGNy_s6bo5ZuFegFXAWHxQPAOas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:43:e6:d8:64:b9:14:e9:e1:53:27:0c:34:5a:86:4b:0e:38:
d5:f0:5a:aa:67:96:77:ad:c4:03:0f:c4:79:32:7b:44:8e:f5:
f0:50:54:dc:23:5c:6c:9f:6c:9e:b3:4b:51:ce:42:fe:da:18:
4a:3b:40:d4:04:b8:3f:7d:74:2c:47:dc:5b:d7:a1:86:d2:e8:
ad:b5:4e:00:da:4b:93:9d:17:dd:51:dd:d3:90:47:d3:ae:d6:
1e:93:94:7a:4a:7a:3e:7a:97:54:10:e8:ac:ae:e2:b4:cd:30:
ba:35:68:52:8f:46:b0:1c:b4:27:a8:9d:ea:dd:47:44:37:e4:
8d:51:c9:64:dd:33:a4:0f:8c:c3:12:d6:59:a9:24:93:77:d6:
9d:e4:ce:bf:62:f0:91:e2:4f:69:23:90:16:2e:cf:32:32:c8:
83:e4:90:41:12:7a:65:9a:e1:fc:aa:25:3a:6a:da:b9:cc:b9:
86:21:13:52:6c:38:17:0e:81:07:69:97:ba:83:90:da:ed:00:
dc:52:3e:46:d0:84:57:b8:b4:7a:7c:51:6c:ec:bb:5c:de:cb:
2b:e6:8c:b4:00:52:78:79:7a:71:11:09:7f:cb:93:27:81:ef:
ed:4a:b0:4c:0a:38:bc:a5:19:76:f6:18:ee:26:70:ee:3a:5f:
b8:68:5e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:19:21 2025 by rpki-client