Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File: Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier: hkHyta8qSt6JgnRu1bhidREwL4kF/Ih2Ytq6qehY5fc=
Subject key identifier: A1:21:35:72:24:42:80:CE:AB:0E:F8:1D:90:C0:98:3A:F9:BF:1D:F5
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer: /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial: 0197499EEB38BAC36D3F4F2449D63C6FFAAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number: 0B78
Signing time: Sat 07 Jun 2025 09:00:40 +0000
Manifest this update: Sat 07 Jun 2025 09:00:40 +0000
Manifest next update: Sun 08 Jun 2025 09:00:40 +0000
Files and hashes: 1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: KoG6sZE2kq/x3BVdYAAAiByWPRgaIuWAH75E9BvPrXI=)
2: kzypufx1A54QL9RnefA55meWSPM.roa (hash: cK+sc1FxI2UgckK1YuVxFsSFuYcOk8chhmHAVw1PhQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:eb:38:ba:c3:6d:3f:4f:24:49:d6:3c:6f:fa:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Validity
Not Before: Jun 7 09:00:40 2025 GMT
Not After : Jun 8 09:00:40 2025 GMT
Subject: CN=a1213572244280ceab0ef81d90c0983af9bf1df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:42:4a:45:57:00:20:33:f1:ef:39:13:4c:cd:
e0:6e:1e:4a:c7:e8:f2:32:ca:dd:14:ce:5e:59:e2:
24:e2:9c:c1:c6:8b:54:c6:37:b0:83:36:8d:ff:f2:
fb:b1:56:d0:9a:d5:66:c8:4d:00:23:bc:d7:f4:1d:
92:bd:4f:aa:34:14:df:de:87:98:ed:9b:e0:1e:f5:
bf:ca:cf:61:96:22:3d:21:1f:18:12:26:e8:d3:13:
58:25:8f:66:d4:0d:7e:cc:2b:77:75:11:24:a5:c7:
d7:30:82:90:7a:4d:5f:6b:63:6d:d6:f4:57:68:c6:
85:8d:e2:c0:10:85:38:53:17:bc:d5:19:e1:76:bc:
66:bb:2d:25:a2:db:c3:fd:ae:6e:c0:12:3b:1a:c6:
fb:fb:4f:42:fa:f4:ad:99:1a:57:e7:1d:dc:b7:de:
4c:e6:66:7a:64:ae:76:ea:40:b8:b1:98:4e:42:0c:
a0:e7:cd:1e:bd:16:04:74:c4:28:97:66:4c:33:d7:
43:d8:0e:95:4c:65:5e:16:0c:3b:b2:8f:05:ba:1c:
fd:a9:88:fd:95:1c:37:fb:3c:95:5e:6c:5a:07:72:
67:9d:d5:a0:42:89:a5:2a:fa:54:21:03:68:69:19:
9c:46:fc:dd:c4:07:5a:66:c3:c5:b0:ff:dc:4e:93:
bd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:21:35:72:24:42:80:CE:AB:0E:F8:1D:90:C0:98:3A:F9:BF:1D:F5
X509v3 Authority Key Identifier:
keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:3f:9e:f2:38:55:01:bf:ab:d7:54:d0:b9:25:c7:87:87:8d:
5e:99:3e:e5:93:bf:5c:29:13:ac:84:a2:f0:03:33:8a:47:c5:
0b:b4:97:6b:cd:31:e5:b3:83:57:1d:1b:53:cd:9a:76:41:6b:
7f:5e:a1:48:7c:05:22:6d:cb:80:20:c8:d2:60:c9:92:3b:ca:
6d:a7:36:39:9a:ef:09:1b:87:08:26:95:d3:a1:8d:6a:5d:a0:
ed:6e:ef:40:cb:57:d3:27:5f:74:55:72:b7:59:d4:05:5b:0c:
07:e5:26:ef:d5:5d:38:93:a9:ce:fe:80:2b:e8:f5:3f:ca:2f:
63:70:74:fc:af:7b:7b:20:0a:2d:e9:e4:23:26:09:f1:30:66:
5c:bf:ae:e6:2f:4a:bc:67:68:11:74:e0:89:d3:fe:ee:cf:ce:
ce:60:32:58:a2:3a:34:35:f4:74:0f:a9:49:64:d7:cf:c8:3a:
89:b2:bd:7c:e6:d8:7b:cd:fd:4b:d7:c5:43:36:ae:00:0d:5c:
00:ee:05:95:77:9c:98:f9:4a:89:e2:23:16:d3:aa:08:83:2c:
f9:0c:10:c8:1d:c1:7d:40:18:2d:d9:65:78:93:e7:9a:78:be:
74:14:dd:e5:38:9d:26:08:67:5d:43:4f:6a:ef:08:d1:f8:c3:
c2:b9:24:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:31:01 2025 by rpki-client