
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier: 2GbxvjbcKn8lcACpqLMq70tXY+wnLiZAiAqO6KsslzY=
Subject key identifier: 15:D2:48:C4:FA:CD:11:EC:C6:43:99:21:6F:9B:4A:CD:F2:BB:04:1C
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 01976DAB9519829269A4C33D2CFE382CFC6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number: 041E
Signing time: Sat 14 Jun 2025 09:00:50 +0000
Manifest this update: Sat 14 Jun 2025 09:00:50 +0000
Manifest next update: Sun 15 Jun 2025 09:00:50 +0000
Files and hashes: 1: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: UhVo/JzGvqkUYg7jMXBWgLbiu69hBlOd5uKExOBr1H8=)
2: VDPfxaZNYgN6f0mgtDD2wmc6NUg.roa (hash: 0dxJ0L7unUdYddqR9bLGYECF59D15vEhelIex1V/ecQ=)
3: sllzpkHFh9mOLjlCML4tbQK0pwU.roa (hash: E6feljoCdpMR0hz/J2bpGEFeQDlLz1z/a780M0tQTGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 09:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:95:19:82:92:69:a4:c3:3d:2c:fe:38:2c:fc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: Jun 14 09:00:50 2025 GMT
Not After : Jun 15 09:00:50 2025 GMT
Subject: CN=15d248c4facd11ecc64399216f9b4acdf2bb041c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e7:56:1c:ea:0c:24:7d:ae:28:81:52:11:00:
05:bb:00:89:07:94:48:40:b7:73:36:d4:fb:88:59:
10:54:ed:8b:f1:36:f9:61:27:c5:e7:c0:eb:6c:b9:
d2:6d:56:0a:be:f9:9d:db:b6:b1:61:ba:a0:75:03:
17:fd:25:b1:5b:80:b3:e7:e9:a8:55:1b:a0:34:68:
05:bc:f8:d5:39:19:04:2d:e7:06:f2:35:1e:71:fd:
87:2d:dc:d1:ab:3b:23:12:59:8c:86:e6:28:58:b7:
8c:1c:3a:c4:82:87:7c:de:a2:35:b1:c6:4b:32:99:
51:55:8b:71:2d:7e:3e:a9:02:10:e4:36:bc:6b:54:
8c:0a:e8:54:51:05:60:97:79:d3:58:c3:ca:64:0f:
cb:d5:99:ce:ed:3f:a6:02:81:83:fd:5f:5c:60:fd:
57:34:1d:17:0b:8e:50:b6:1e:c4:f6:d8:bb:50:11:
d6:85:da:f4:4f:11:b5:f7:42:13:ed:d1:13:bb:05:
1d:10:50:05:67:94:05:4f:93:d6:a3:9a:43:b0:a7:
d7:44:3c:1d:64:26:5e:f8:b1:08:e5:cc:dc:f5:0b:
b1:b6:02:d2:e2:fa:d6:80:61:b6:e5:af:7f:68:b5:
63:a4:eb:15:4e:3a:cb:b6:7f:66:bc:22:7d:0c:53:
b8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D2:48:C4:FA:CD:11:EC:C6:43:99:21:6F:9B:4A:CD:F2:BB:04:1C
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:a8:0c:fc:c7:31:b0:84:b3:32:dc:f1:37:5a:b2:9e:d3:db:
0b:3f:2b:74:f3:3a:af:a9:25:56:44:85:1e:ce:38:7b:32:13:
9e:74:b5:3a:1a:f6:91:99:65:d2:5b:d5:48:8e:99:3b:86:ca:
1e:42:dd:90:33:91:5c:f8:38:8f:a9:25:a2:f5:26:98:17:03:
fd:fc:7a:aa:9f:16:05:f6:45:67:7d:7d:d5:68:2b:c7:e2:87:
64:2d:92:80:55:d5:02:5d:93:cf:f3:99:c5:88:0f:0f:ea:7f:
56:7a:26:9c:aa:65:c6:55:49:0f:25:a0:4f:77:6a:84:b5:42:
10:ca:1f:ca:11:b6:93:d1:f4:e2:8a:a9:44:9b:ba:51:2c:7d:
6c:99:8d:8b:06:64:d5:a8:e0:7e:22:e1:27:7e:cd:ef:b4:1f:
7d:a3:23:74:9d:d6:10:84:8b:47:93:1a:02:4c:13:86:8d:f6:
0d:18:7f:8d:70:8d:67:e8:87:35:53:f0:6e:56:76:10:fb:f3:
8b:7c:e6:ee:cd:50:69:43:3d:82:10:74:3e:df:e8:e8:60:9b:
42:e7:c5:ee:ec:f0:e9:6c:8d:76:f6:66:7c:ed:7c:09:04:6a:
b1:1e:71:fe:fb:19:31:de:54:0f:e9:aa:2b:1a:61:83:44:2f:
4c:87:16:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 17:52:00 2025 by rpki-client