
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier: z00tcKr/Wy2XdpzGR9+SkTxr/vej5BFjFfzn0fZ9i8I=
Subject key identifier: 68:96:D6:E1:D5:56:4E:9C:36:06:4B:0A:80:BC:16:0C:F9:14:03:7F
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 01975E38B974DC66E8F699DC679974918731
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number: 0416
Signing time: Wed 11 Jun 2025 09:01:05 +0000
Manifest this update: Wed 11 Jun 2025 09:01:05 +0000
Manifest next update: Thu 12 Jun 2025 09:01:05 +0000
Files and hashes: 1: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: 0Yfyg3WAtbeOfZHcxEd/J0BVCxQP1MP7Rw6jd4KU25c=)
2: VDPfxaZNYgN6f0mgtDD2wmc6NUg.roa (hash: 0dxJ0L7unUdYddqR9bLGYECF59D15vEhelIex1V/ecQ=)
3: sllzpkHFh9mOLjlCML4tbQK0pwU.roa (hash: E6feljoCdpMR0hz/J2bpGEFeQDlLz1z/a780M0tQTGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:38:b9:74:dc:66:e8:f6:99:dc:67:99:74:91:87:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: Jun 11 09:01:05 2025 GMT
Not After : Jun 12 09:01:05 2025 GMT
Subject: CN=6896d6e1d5564e9c36064b0a80bc160cf914037f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:8c:ff:05:0c:af:5b:0e:9d:f6:75:d5:2f:74:
cc:65:2f:f4:d2:95:63:5f:1a:7d:eb:46:a6:79:cc:
07:2c:f5:2f:ce:2c:96:68:38:3e:eb:0b:32:51:5f:
e5:7a:b0:77:9e:fb:0c:e6:d1:6c:98:42:50:6e:00:
24:6d:ca:5f:0a:22:2d:b7:0b:82:3b:d7:66:cb:07:
84:9a:de:aa:a8:da:3a:f5:c3:62:ee:76:74:f8:e7:
00:11:c5:30:87:30:aa:46:d5:ef:06:01:50:77:f8:
ca:15:0d:7a:2b:f5:2a:1b:e5:4b:7d:4f:b1:46:4d:
0a:c2:95:48:52:4c:3a:23:a1:24:a0:85:5e:e8:db:
c0:ba:68:07:d2:4e:23:8e:8c:93:8b:9d:7c:22:73:
23:29:90:6f:25:51:c6:24:a5:9f:f4:6c:49:ab:d8:
fa:a9:5d:0f:33:bc:32:bf:fa:a8:ad:1c:dc:d7:d2:
9f:7d:71:fd:a4:86:7e:42:63:89:54:d5:45:a6:da:
1d:64:99:6b:40:56:8a:9a:29:d5:c3:19:06:8f:1a:
05:9a:53:7c:5b:fd:be:7d:1e:16:c7:f8:99:26:9a:
eb:94:c0:ac:4c:f1:81:26:e6:b6:f2:ab:0a:60:5f:
3f:16:58:e9:df:18:b4:d1:05:06:53:8a:a3:b1:3b:
81:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:96:D6:E1:D5:56:4E:9C:36:06:4B:0A:80:BC:16:0C:F9:14:03:7F
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:82:79:39:97:5c:73:50:54:81:3a:2e:80:54:be:0d:dc:9d:
ee:6c:e6:6e:13:90:81:c4:2a:94:2b:db:2c:69:c6:c5:9f:5e:
bc:14:c8:af:36:52:e3:2f:6f:59:89:2d:92:5b:9e:17:f8:c6:
7e:d2:20:e0:ff:52:d6:d6:4d:63:2b:c2:07:eb:3a:b7:67:37:
39:f3:2e:1e:f0:fc:98:a8:cd:86:9a:a3:45:93:3e:43:6d:66:
73:9e:64:96:72:8a:e4:2d:ba:94:c4:ae:1e:0d:86:7c:d1:f3:
d2:da:63:29:0e:84:a5:1f:56:e4:ae:91:df:09:8a:07:ed:e7:
b7:bd:7f:55:de:1c:30:cf:a7:f2:6e:a3:74:8e:5f:f4:7f:8d:
76:62:fb:7e:c9:17:7c:a4:e4:26:f0:5c:ae:79:86:10:84:32:
67:5d:3e:3d:fd:36:36:ad:6b:b7:63:ec:27:47:e1:06:18:41:
5d:fb:0b:85:f2:16:b8:4d:bc:93:c6:f8:a9:e0:e9:8d:d6:21:
31:7f:fe:fc:26:a5:ea:d1:0d:b6:95:6b:f4:26:08:36:f1:ba:
5e:bf:77:f4:39:eb:d8:e6:52:f9:b8:fb:9d:65:2f:e6:a6:a4:
5e:07:ec:59:88:4c:dc:d4:cc:1e:f1:16:f1:2e:64:c6:2d:2b:
e3:c1:49:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:01:22 2025 by rpki-client