Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
File: dt0D59chnX68HyMPcGMtyRNvNBM.mft (raw, json)
Hash identifier: 4gb9/IQKvEC0GnCm6MUVSGgTuyYem6+KE0YVRZqqltE=
Subject key identifier: 02:D5:EB:A1:5F:6F:3B:0D:E5:1E:6C:F1:B5:9E:4F:04:E9:E7:69:A5
Authority key identifier: 76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
Certificate issuer: /CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Certificate serial: 01992255CD0A4CE817B94C399A173E04730B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
Manifest number: 057D
Signing time: Sun 07 Sep 2025 04:01:12 +0000
Manifest this update: Sun 07 Sep 2025 04:01:12 +0000
Manifest next update: Mon 08 Sep 2025 04:01:12 +0000
Files and hashes: 1: dt0D59chnX68HyMPcGMtyRNvNBM.crl (hash: RAEcNOobUg+K3o1/9pQgdjryyb7FXgi9woGAwsbj0Wc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:cd:0a:4c:e8:17:b9:4c:39:9a:17:3e:04:73:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Validity
Not Before: Sep 7 04:01:12 2025 GMT
Not After : Sep 8 04:01:12 2025 GMT
Subject: CN=02d5eba15f6f3b0de51e6cf1b59e4f04e9e769a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4f:e4:c4:72:1c:9f:f8:03:6f:c1:92:06:98:
b2:94:77:85:45:e7:21:0d:37:f9:3e:f6:50:e0:cb:
cc:20:38:f9:41:b3:0e:db:08:f0:54:de:f3:b6:ac:
96:58:dc:e5:45:ff:c2:d4:68:93:09:00:d7:7e:e7:
c2:9b:de:a4:d9:76:89:19:5e:6f:88:b0:7a:c7:7e:
93:2e:1a:80:37:e9:e5:a3:70:23:c5:a9:4a:b3:ba:
80:d9:18:e4:fc:d9:ce:81:b5:71:06:01:a2:ef:6f:
d4:36:51:ea:0d:b0:11:37:db:d7:8f:ca:60:6d:03:
c2:cf:4d:25:84:e5:1f:5a:a7:16:52:a2:2e:a6:8f:
66:9b:39:69:a8:1f:ca:d0:69:dc:a7:02:31:28:4d:
00:02:bf:ef:34:03:87:23:60:a9:d1:33:11:30:8f:
6b:55:cf:19:45:b6:f9:37:01:c8:ac:aa:9a:a5:03:
bd:3d:98:66:b2:ce:c2:19:97:28:b2:4c:ec:6d:9d:
41:78:05:99:bd:b1:41:ed:4a:c7:07:3a:f0:7b:3a:
25:d3:64:81:0f:a5:1f:e4:1f:03:67:20:fa:17:80:
a0:b3:df:c6:c3:0a:0f:0d:7f:f7:f7:f5:43:1e:a7:
85:e8:5b:88:0d:3a:91:e4:0f:29:eb:46:c5:63:95:
29:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D5:EB:A1:5F:6F:3B:0D:E5:1E:6C:F1:B5:9E:4F:04:E9:E7:69:A5
X509v3 Authority Key Identifier:
keyid:76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:6d:83:69:4b:10:6f:92:6a:09:b1:e5:c3:0b:fe:70:f2:b4:
6b:23:02:bb:87:cb:b6:6b:9d:aa:7c:bf:f8:d4:18:08:49:03:
27:ce:09:75:fb:1b:aa:5c:ef:d9:88:51:23:4c:d9:0d:75:b8:
09:7d:22:10:52:f2:7f:78:de:4e:dc:98:e9:66:4c:97:35:b9:
41:80:1c:13:db:b5:15:3b:a8:aa:14:d7:5d:e9:d9:35:19:3f:
59:f6:02:c3:05:fd:8e:d0:55:eb:bf:82:d2:2c:f7:0b:8c:08:
4c:3c:d5:69:2e:ea:31:11:ea:e9:ee:dd:da:ef:7d:40:cc:1a:
25:31:4d:6d:10:3c:6d:e2:50:3e:9c:49:20:c3:49:c1:52:69:
9e:b0:4c:b9:be:a7:bd:e4:81:51:90:ee:a7:64:75:ca:6c:28:
4f:8d:fe:83:8e:9c:3a:01:c9:36:4f:d5:56:23:b2:0f:3f:4f:
29:d0:56:3d:c5:a1:c0:84:b5:4a:80:a1:3d:2d:2c:93:3f:51:
4e:df:dd:33:a1:c7:66:0d:49:7f:8e:29:79:74:24:db:6a:d9:
cf:3c:ba:10:85:66:05:99:6f:31:b1:45:be:e2:7b:6d:40:e6:
9f:05:f2:67:fb:9a:d5:22:8e:09:6d:4c:03:4a:31:5e:ec:e3:
ea:bc:1f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:36 2025 by rpki-client