Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: d5Yr/AmjI6xqvLt5wQKdKVY4WMIGo8vP5nVCux+q8QI=
Subject key identifier: 00:B2:00:01:56:35:A8:C2:23:E7:D0:51:7C:EF:1A:D8:C8:7C:43:2F
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 01976D0670F9378E04B3BED926701510DE4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 1229
Signing time: Sat 14 Jun 2025 06:00:28 +0000
Manifest this update: Sat 14 Jun 2025 06:00:28 +0000
Manifest next update: Sun 15 Jun 2025 06:00:28 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: U9XjSD+oMntZ3aQHMtUaA+iHauUsXzFI/1w5FBHX6iU=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:70:f9:37:8e:04:b3:be:d9:26:70:15:10:de:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Jun 14 06:00:28 2025 GMT
Not After : Jun 15 06:00:28 2025 GMT
Subject: CN=00b200015635a8c223e7d0517cef1ad8c87c432f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ad:42:b2:a4:d4:66:5f:3b:0d:dd:62:d3:21:
e8:87:56:6b:b6:5b:10:8d:71:17:d7:81:83:d2:12:
0e:e2:4f:33:b8:34:92:61:3e:dd:51:6f:2f:39:72:
7a:54:ff:e3:a6:0f:a7:6a:09:26:ee:e9:c5:01:2e:
6c:9a:7a:e8:58:d4:d2:04:e2:91:3e:7c:c7:58:41:
c3:ea:92:9a:05:6f:0c:73:3f:fc:32:c7:2c:7a:f4:
1c:7f:2b:e3:e8:bc:9c:63:dd:f7:c9:4d:27:88:17:
96:c5:ac:7c:5e:08:ff:de:bb:84:8d:ab:be:38:ac:
d1:ba:58:b6:77:a4:08:0b:e6:7f:3e:84:68:2d:29:
54:35:43:21:5e:5d:50:3d:54:29:a6:a4:2b:85:96:
e8:12:73:fe:a7:f5:a2:d6:3e:b7:fa:d9:28:65:ae:
de:c0:67:11:b0:10:42:e9:a0:e2:16:59:38:a2:7f:
f6:d8:51:14:ec:ca:2d:e2:81:e5:d9:b6:43:36:b3:
fb:6d:6d:22:a8:01:a2:e2:ee:5e:07:ab:34:d2:f7:
70:6e:0f:13:dd:93:cc:ad:9b:a4:ab:f2:75:b4:fe:
e2:15:9f:d2:84:56:10:9f:ab:e0:f9:e0:b6:5b:6d:
fa:00:e5:62:27:ef:09:b7:19:a7:83:59:c1:3d:71:
87:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B2:00:01:56:35:A8:C2:23:E7:D0:51:7C:EF:1A:D8:C8:7C:43:2F
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:cf:31:38:26:66:43:96:a1:c8:9b:de:2e:9f:91:3b:a2:b8:
3e:52:0b:d9:0e:e0:20:93:0e:17:22:4f:5a:90:f9:8d:60:93:
fd:b2:9a:c8:b1:33:31:a7:d6:86:81:1d:62:1c:66:a7:60:84:
03:d6:e1:66:c2:11:67:2d:9b:9d:55:81:8d:cb:1c:63:47:ea:
d4:30:8c:86:cf:70:a5:1a:0e:b9:23:a0:e3:be:80:dd:28:cf:
d3:6a:1d:9f:40:30:ee:77:9b:0b:2c:d8:f1:65:68:cd:77:7f:
e1:38:f4:d9:55:ef:fc:dc:54:02:a9:b2:e8:f2:c3:13:2b:c3:
c4:9b:b7:1b:95:46:dc:25:76:4d:5c:52:b6:59:4c:dc:6b:d8:
aa:06:37:fb:13:28:13:85:d9:a6:06:31:82:12:d4:33:77:62:
d8:8f:9d:9c:90:d3:4b:7c:d9:92:c4:52:a9:f8:82:2d:bc:9c:
25:52:f3:ff:b2:1c:dc:f4:7a:1f:69:da:30:70:56:af:04:07:
9f:13:0f:dc:7e:60:ea:f1:83:52:b8:f4:6d:20:ec:5c:05:02:
3d:2c:5a:0e:ff:56:0f:b4:d7:f4:a6:eb:9f:5e:9b:85:66:6a:
5e:7d:40:01:6a:a7:d5:5c:e1:b7:59:fd:fa:56:e7:41:16:e1:
02:07:1b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:56:42 2025 by rpki-client