Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
File: DlNS2UQbZcIBbtjrfi8jWVRDT10.mft (raw, json)
Hash identifier: MpFh3AQ3zGu+i61bhdidpjso0Bc4nE7H5hznbuNr6xQ=
Subject key identifier: 27:C3:3B:FC:1D:99:55:86:BD:A2:3F:A5:85:FC:31:D9:A9:F7:2F:47
Authority key identifier: 0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
Certificate issuer: /CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Certificate serial: 01974EC4FA9CA26EE7D0E2A48A514F75BC57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
Manifest number: 0126
Signing time: Sun 08 Jun 2025 09:00:21 +0000
Manifest this update: Sun 08 Jun 2025 09:00:21 +0000
Manifest next update: Mon 09 Jun 2025 09:00:21 +0000
Files and hashes: 1: DlNS2UQbZcIBbtjrfi8jWVRDT10.crl (hash: xbWq6yF7NzyO3J5e+lBFrCSXpnqm830EnhPOgoVyq+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c4:fa:9c:a2:6e:e7:d0:e2:a4:8a:51:4f:75:bc:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e5352d9441b65c2016ed8eb7e2f235954434f5d
Validity
Not Before: Jun 8 09:00:21 2025 GMT
Not After : Jun 9 09:00:21 2025 GMT
Subject: CN=27c33bfc1d995586bda23fa585fc31d9a9f72f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e0:23:9d:40:89:fa:29:a1:8c:ff:9a:6e:e3:
ef:80:1e:5e:cc:0b:bf:0c:04:7c:3b:cf:fa:21:9f:
4e:29:6e:65:7d:7b:4a:da:e6:43:17:2d:99:a6:86:
1f:82:c0:45:ba:77:44:bc:f6:3d:e9:8d:0e:c8:25:
c6:3c:a6:48:6c:96:b2:87:ce:e2:87:06:e5:24:59:
3e:27:f1:9a:69:65:56:31:7b:b3:f4:8c:86:60:85:
48:2f:f4:8e:77:00:02:2c:fb:f5:d3:60:d8:df:7e:
47:4d:ad:0d:bd:d2:67:62:ee:0a:ea:3b:a1:21:a7:
75:e8:cb:23:66:15:cf:8b:94:21:6a:92:51:3f:0f:
98:58:a7:b4:82:7e:a0:38:bd:76:07:e5:a0:38:23:
fe:a8:1e:99:0c:b4:9a:0c:be:5a:bd:c2:91:5a:12:
9c:d9:4e:94:9b:a3:db:3f:a9:e5:61:ba:64:8c:02:
5c:33:a6:b3:37:24:ba:93:d3:ce:5c:d9:93:8a:c9:
cd:60:ab:4b:e2:6d:e9:4e:cf:b8:6a:12:b3:0c:e3:
bf:cf:42:7a:95:e0:f1:89:b6:33:ce:ba:0b:3b:ed:
a8:e0:fe:41:c0:b2:c5:8e:d3:cb:24:df:e0:4a:6a:
57:71:51:aa:3e:e0:3e:94:73:d6:47:fe:6e:9b:9c:
ad:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C3:3B:FC:1D:99:55:86:BD:A2:3F:A5:85:FC:31:D9:A9:F7:2F:47
X509v3 Authority Key Identifier:
keyid:0E:53:52:D9:44:1B:65:C2:01:6E:D8:EB:7E:2F:23:59:54:43:4F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlNS2UQbZcIBbtjrfi8jWVRDT10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/1f5681-b105-4ff1-9bf4-adc56d43e0c4/1/DlNS2UQbZcIBbtjrfi8jWVRDT10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:0f:39:72:e8:0e:4b:51:1b:ab:2a:b4:24:9f:93:c5:de:98:
09:c6:f0:8d:6c:09:ec:c6:48:73:85:8c:38:2c:c1:5f:ea:4d:
f2:62:cd:b7:f6:c9:88:b5:66:16:9e:7b:e3:52:f4:3b:38:82:
6b:e4:27:de:da:f8:10:5b:c5:a8:81:28:0c:3b:5f:3f:70:54:
cb:c2:8f:f6:4a:c5:51:f1:f8:db:f2:eb:21:df:4c:a6:8b:f7:
ec:f2:b2:aa:ff:65:86:49:22:6c:b8:c7:cc:44:9d:75:c0:54:
49:2f:d2:bf:57:f2:99:dd:37:ba:0c:4e:4e:b1:a7:64:07:ad:
22:51:3f:16:f5:9f:db:a0:80:0f:93:c0:e8:8e:74:f3:cc:41:
94:89:09:ca:4f:2c:df:6b:03:03:44:d2:85:a4:21:88:66:17:
9e:5a:3c:dd:2f:4b:5b:81:44:83:8f:31:6c:20:66:f0:31:9a:
42:ac:7f:46:60:14:65:84:e8:c5:db:ea:db:57:cc:9b:19:89:
6f:ad:fd:c4:c3:4e:c4:14:36:08:39:94:3a:7f:3c:e1:17:f7:
44:7a:61:08:b7:ca:6d:1d:8a:07:06:e4:57:63:52:4e:2b:16:
10:fe:30:79:1c:3d:a4:a6:50:4f:46:2b:bb:ee:a2:5c:1c:38:
53:4b:ff:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:48:30 2025 by rpki-client