Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: YEwjhohZ3ycrWjZgQSCTFCGOfnRFS/PEvCkTCMNucFk=
Subject key identifier: 7B:36:FB:BE:69:97:BC:48:38:CF:94:77:EF:34:23:EE:A5:E4:7C:DB
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019766CDDA23A133D6E56750F84A9E6F3FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 02A7
Signing time: Fri 13 Jun 2025 01:00:56 +0000
Manifest this update: Fri 13 Jun 2025 01:00:56 +0000
Manifest next update: Sat 14 Jun 2025 01:00:56 +0000
Files and hashes: 1: 9jS2v21J95xARBtQOtdTT0EtYBQ.roa (hash: BeiYvaVP67aUM+eVkzjpflxlaHwkNmiJmUTQZAVqkOQ=)
2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: QmmSUtQuKk8LGOy+ESCBxM413hJSs3UkFvq7n5vMY8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:cd:da:23:a1:33:d6:e5:67:50:f8:4a:9e:6f:3f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Jun 13 01:00:56 2025 GMT
Not After : Jun 14 01:00:56 2025 GMT
Subject: CN=7b36fbbe6997bc4838cf9477ef3423eea5e47cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:f8:07:ea:2d:0b:21:01:e7:8a:41:59:a8:b1:
b9:6a:8d:f2:7c:5c:d7:16:ee:f2:0d:77:46:87:44:
39:ad:82:77:ca:ce:8b:ec:1a:24:12:f2:30:33:24:
15:c4:5a:d8:42:7f:ed:e1:c2:3c:1e:fe:9f:a7:7f:
4e:90:47:d3:47:0d:86:38:59:29:ca:d5:ab:b4:ea:
83:cd:77:7c:eb:77:e0:c8:6c:4b:10:05:2d:db:57:
d2:9f:a5:aa:37:4b:e7:1e:91:29:b4:70:23:00:48:
49:e7:db:bc:31:30:63:1a:64:92:d5:4b:fe:66:0c:
02:41:04:89:5d:93:01:ec:68:fd:62:77:09:63:19:
b4:1d:47:85:7f:7b:45:ee:ab:d1:76:c1:55:34:c1:
51:66:c6:c7:78:a7:fd:19:b7:a1:5f:23:de:40:15:
a4:56:4d:1c:6e:d9:e1:c5:3d:69:b6:74:90:f1:18:
38:15:a0:9f:93:59:85:aa:5a:a5:b7:77:27:1e:09:
17:d6:4c:9c:c5:4a:ee:08:8a:39:1e:73:e2:10:67:
5d:c4:06:2e:51:99:b0:a6:30:ff:81:35:7e:09:97:
d4:1d:6a:a7:36:8c:5f:d0:11:17:b4:0d:2c:cf:43:
32:6a:80:61:c5:22:db:3e:9e:57:4e:d7:0d:e2:0c:
68:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:36:FB:BE:69:97:BC:48:38:CF:94:77:EF:34:23:EE:A5:E4:7C:DB
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:09:3c:1f:81:cf:9e:c8:99:3b:7b:9d:54:22:52:cd:2c:53:
05:a0:e7:f3:72:d5:32:4c:ab:65:11:2c:11:52:53:03:3b:ef:
ed:83:d8:56:57:57:f8:84:53:ed:f3:11:63:63:ba:9d:af:c2:
f8:fc:dd:f7:9d:73:c2:90:2b:e3:a6:9f:36:73:91:de:ec:96:
a6:01:06:d8:43:93:b0:b0:97:fc:1e:03:88:df:af:b6:db:78:
c1:d1:a3:67:ae:1c:8f:e9:af:84:ca:7e:5f:45:d9:a3:c8:f8:
46:8d:35:ac:b3:a9:35:5f:db:20:06:a4:a4:55:c3:88:6e:dd:
98:f5:db:da:3a:29:39:63:04:ea:52:35:02:b9:98:2a:1f:4c:
47:a6:46:1a:97:db:c4:fb:56:e5:ae:f1:85:18:ba:01:f1:5a:
a9:5b:e8:ed:7d:3f:5d:76:c4:7a:db:bf:de:f0:07:e2:3c:f3:
1a:b6:82:5f:95:4a:fc:c0:3f:02:a8:6b:f3:81:2e:a1:8d:65:
5c:88:ab:bc:f9:54:52:53:2a:94:ff:d7:b6:a1:19:c4:6d:d1:
e2:22:15:6b:d1:13:80:fc:c7:83:6b:0e:9f:16:26:e4:c2:dd:
80:d1:38:b7:d7:1b:d9:96:ed:a3:28:8c:6c:82:2f:4f:c0:0f:
39:88:55:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 08:35:19 2025 by rpki-client