Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
File: Dri8RONvrhbTcQL9DVGfKE1mPZA.mft (raw, json)
Hash identifier: Et7RTWbKKEJQXrjy3ds07j9KSu5O5VPMaFeMYkc3fPA=
Subject key identifier: E2:64:51:F5:82:FA:9C:4E:87:A1:03:3E:EF:DF:8B:81:8D:47:44:E4
Authority key identifier: 0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
Certificate issuer: /CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Certificate serial: 019749684F8B44961E413DD76D6E495B4D57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
Manifest number: 14C7
Signing time: Sat 07 Jun 2025 08:01:02 +0000
Manifest this update: Sat 07 Jun 2025 08:01:02 +0000
Manifest next update: Sun 08 Jun 2025 08:01:02 +0000
Files and hashes: 1: Dri8RONvrhbTcQL9DVGfKE1mPZA.crl (hash: 34Y6yxoQJcdDaNnKOHSyGD9UBgMQIUMAaxE9M1Et7/4=)
2: EnQM4_whnPJeaxWRQxPEz7dH7rY.roa (hash: anAGsxZMEMPM7WeK+BVeddK3oakg7+TLd3wIh7D05ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:4f:8b:44:96:1e:41:3d:d7:6d:6e:49:5b:4d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Validity
Not Before: Jun 7 08:01:02 2025 GMT
Not After : Jun 8 08:01:02 2025 GMT
Subject: CN=e26451f582fa9c4e87a1033eefdf8b818d4744e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ed:0c:88:da:38:1d:16:94:99:74:ef:ad:9d:
49:ad:91:5a:92:d2:49:14:e5:2c:38:3d:20:bc:28:
46:20:b2:f7:c7:ed:ca:7d:78:4b:81:40:ad:c9:74:
ba:45:9d:85:d1:48:87:5a:5a:c2:fe:b9:7e:16:b9:
fd:b9:ae:f8:0b:38:73:eb:02:5a:fc:4f:37:09:8b:
73:4e:65:88:7f:79:f2:ef:79:de:2d:ed:8e:5e:6e:
5a:5b:66:9e:6c:0f:33:6c:b9:bd:f5:67:7b:b6:f3:
8b:71:29:9a:9f:d2:73:91:fc:48:87:49:e1:93:93:
46:72:90:7b:31:1f:c7:4d:1f:89:7d:ba:2f:db:bc:
18:70:59:1f:49:8d:e7:4a:25:cf:dc:14:b6:2f:fc:
5e:aa:71:80:f2:9b:af:b0:8a:c4:fe:70:cb:d0:e5:
03:fe:ec:54:0c:df:f2:16:02:1c:37:9f:84:80:e6:
a1:1b:84:7b:88:99:84:33:4b:c5:7c:9a:89:7c:cf:
9f:92:6d:92:10:7d:56:d0:01:d3:3e:e0:32:b0:33:
11:18:be:96:2c:93:17:70:9f:61:26:9f:39:f4:05:
d6:e5:90:d0:ef:1f:0b:75:60:cb:7b:88:07:f6:00:
09:bc:5b:11:3e:96:83:ce:32:67:a9:bd:0f:94:26:
ae:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:64:51:F5:82:FA:9C:4E:87:A1:03:3E:EF:DF:8B:81:8D:47:44:E4
X509v3 Authority Key Identifier:
keyid:0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:37:32:80:5f:1c:69:2a:8a:b1:9e:6d:d1:42:73:f5:09:23:
5b:f6:12:05:75:d7:c8:38:6c:54:80:41:55:d2:e4:d0:15:94:
93:65:95:e2:63:56:97:8a:60:78:af:60:62:18:2b:ac:91:c4:
9e:e7:f8:bb:b6:55:7b:c8:d7:3b:c4:fe:86:12:4d:a4:be:58:
2a:26:5e:16:3c:4c:6c:fe:9d:fe:93:d5:71:50:07:fb:12:58:
d7:0d:d5:8b:64:eb:68:77:a1:72:08:8d:12:e7:7a:a6:a1:88:
dd:b7:3d:cf:d9:90:ed:28:a7:c1:1a:90:fc:a8:98:ac:c1:99:
7e:d6:09:32:9a:2e:be:00:05:e7:7e:a7:ae:1c:9f:8f:9d:8c:
09:66:5f:02:39:a5:6f:88:76:d8:bc:d7:30:2c:65:41:44:2c:
89:b2:5b:74:2b:5c:40:b7:58:d8:18:f6:1c:35:8a:09:0c:45:
d6:0f:35:8e:1a:4e:fb:84:fa:bf:d9:fa:ce:d7:7b:e0:6d:2a:
65:77:c9:9f:f4:cb:3d:d7:a1:8c:cb:f6:5c:c0:a9:40:ae:83:
d2:6d:37:2f:bb:a8:96:4d:3c:87:d4:b9:d0:28:b1:fd:fd:9f:
b4:3d:ae:c0:58:2e:1a:ea:02:17:c9:e3:c1:66:25:37:25:b3:
39:66:94:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:36:54 2025 by rpki-client