Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: jy3oHBgLnFYc6GvgNddXC0Ug9Rk9ELZQ490P6zVR2WE=
Subject key identifier: B4:21:2D:CD:19:8B:BF:2B:17:7B:40:42:7F:51:5F:5D:F7:18:74:1A
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 019757C8236418E2F219658885B444A40AC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 121E
Signing time: Tue 10 Jun 2025 03:00:23 +0000
Manifest this update: Tue 10 Jun 2025 03:00:23 +0000
Manifest next update: Wed 11 Jun 2025 03:00:23 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: rHihZp5xEYfnFuCLM5+7X0Uo3J0ZAjpVJyKCHGH31WQ=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 19:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:c8:23:64:18:e2:f2:19:65:88:85:b4:44:a4:0a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Jun 10 03:00:23 2025 GMT
Not After : Jun 11 03:00:23 2025 GMT
Subject: CN=b4212dcd198bbf2b177b40427f515f5df718741a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2c:15:1f:bf:e3:ec:2c:20:83:26:25:5c:17:
7d:6d:be:60:db:3c:94:86:64:6c:67:95:d7:4c:21:
d2:55:04:db:9c:ae:04:3b:2f:e0:e6:b5:2d:62:64:
26:7a:e0:af:ab:9b:9a:27:19:b1:35:ee:2a:8e:13:
65:7a:2d:e2:5d:68:74:8c:a9:03:3d:30:85:71:c6:
eb:81:47:c6:a6:28:18:d4:cf:58:0c:69:f3:0f:a0:
3d:5c:e5:f5:cc:e0:47:58:89:5c:8b:a6:b3:16:17:
bc:9a:63:76:aa:2a:9a:b1:1e:5c:48:71:a2:4b:80:
15:5a:8a:c6:59:aa:10:38:c5:17:dd:0e:89:80:5c:
f2:bd:54:c8:55:66:eb:85:2d:1b:1c:1d:50:9c:af:
c9:8f:55:7b:20:51:ba:9c:94:80:78:b8:bf:3a:a3:
2d:21:31:ce:78:e0:9b:b8:16:75:08:7b:23:25:45:
da:04:be:52:f8:75:d8:36:f5:c3:fe:c5:78:e0:69:
c1:ea:93:0b:42:fa:f3:fc:27:bc:b3:6f:dc:6a:73:
3d:2c:30:cd:25:5d:92:53:a4:b1:85:62:1b:b2:cc:
1e:06:16:07:5b:16:95:78:0b:c2:67:5d:1f:d8:a9:
fc:8b:f2:2d:0c:8f:9f:66:b1:10:62:cb:dd:65:ea:
ca:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:21:2D:CD:19:8B:BF:2B:17:7B:40:42:7F:51:5F:5D:F7:18:74:1A
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:b1:19:96:11:ae:4a:80:e2:0e:50:67:69:76:32:bf:50:30:
fd:2e:01:04:9f:73:26:61:03:3b:4e:d7:46:91:30:11:be:c2:
98:29:54:b3:fe:c6:28:57:2e:c5:73:9d:2a:83:19:ef:42:6a:
83:13:04:09:0d:34:62:f5:82:61:e6:03:ff:47:fe:73:3c:33:
73:b2:56:02:b7:21:6c:a9:c7:b7:5b:59:5d:20:f7:34:1e:dd:
ee:af:05:aa:d4:bf:37:f9:74:af:82:18:38:98:b0:0f:a3:ac:
8b:98:47:e6:ec:7c:61:6c:f9:77:2d:5d:0c:a2:13:e3:fa:c6:
42:01:38:01:7f:f4:07:2b:f6:8f:bd:93:6c:8f:69:06:8d:ba:
6d:c5:fb:e4:f8:0f:54:16:71:4b:6b:e5:88:af:71:a3:c3:77:
7c:b3:bf:d9:17:76:7b:bd:57:66:ac:e3:2e:c9:b5:8b:76:5f:
59:b6:29:a8:f5:2b:37:86:60:cf:66:2c:43:cd:f0:0d:b5:d9:
01:4d:2c:9c:31:e1:45:2d:8f:43:98:7b:d1:eb:40:4f:8a:e0:
48:66:f3:2f:72:a8:ac:47:0f:fe:15:ec:4d:5f:9a:65:43:6c:
4f:7b:4b:26:ec:17:d2:7a:05:6c:e0:c8:6d:b5:11:b7:b0:c5:
35:35:57:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 05:29:53 2025 by rpki-client