Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File: dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier: XDE2CtCiDBKeB7txtmrmFFUiyxATrx9T4dxh47wD0/A=
Subject key identifier: 7E:03:F4:7D:45:14:B7:32:F8:BB:D9:7B:B3:3C:D1:3B:19:52:A2:6C
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer: /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial: 01976929DF19B2CF6EE25154585FEC67C145
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number: 1227
Signing time: Fri 13 Jun 2025 12:00:41 +0000
Manifest this update: Fri 13 Jun 2025 12:00:41 +0000
Manifest next update: Sat 14 Jun 2025 12:00:41 +0000
Files and hashes: 1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: h06EUgDvlwW+vJxVrsalbrCcYCQazVxSSFJ/RWz/afA=)
2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:df:19:b2:cf:6e:e2:51:54:58:5f:ec:67:c1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
Validity
Not Before: Jun 13 12:00:41 2025 GMT
Not After : Jun 14 12:00:41 2025 GMT
Subject: CN=7e03f47d4514b732f8bbd97bb33cd13b1952a26c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:33:12:b4:62:e7:fa:5d:92:16:39:28:e4:
8e:85:e6:53:5b:4d:d2:a2:02:c5:e8:9e:bb:64:10:
e3:0d:b4:10:b1:00:9b:af:72:0d:3e:0e:cc:9e:de:
d4:55:b1:84:50:11:ae:e9:8d:88:a7:f9:00:78:a8:
61:c3:6f:73:46:1b:03:99:92:54:af:b1:96:ca:24:
99:27:62:60:a3:41:0d:d8:bd:14:c1:e1:66:71:7f:
94:c9:b1:55:94:b3:a3:25:05:a8:49:6a:fd:0b:b1:
c9:b4:48:07:de:eb:89:cd:2d:89:9b:0b:9c:bf:d9:
97:4c:dd:d3:75:94:e3:6e:2f:be:0d:85:8e:b9:08:
5c:95:00:40:db:32:77:c2:28:ab:07:75:ed:65:7b:
c0:e3:86:e7:b8:be:91:6c:e3:f0:b4:06:53:4f:32:
af:9e:c3:93:bc:67:03:d8:b1:d3:59:68:e7:25:c6:
31:f1:e4:88:53:d7:c2:9c:15:ef:58:dc:a1:bd:ca:
3a:76:f3:21:2c:b5:d0:b7:e7:9c:e6:7b:83:d3:32:
4d:92:08:ec:a1:d4:64:30:d2:a3:f0:3d:36:65:e2:
f3:20:1a:de:d8:c9:aa:e8:03:38:27:e6:c5:1b:26:
f3:69:c4:0b:6f:c2:9a:e0:c3:4a:24:d5:34:a4:e7:
c9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:03:F4:7D:45:14:B7:32:F8:BB:D9:7B:B3:3C:D1:3B:19:52:A2:6C
X509v3 Authority Key Identifier:
keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:f5:1d:8f:73:89:3d:80:b0:91:e1:67:21:cd:ec:1e:46:06:
33:8f:d2:bf:39:ff:9d:0b:c9:6d:9d:ab:c0:92:8c:14:34:c5:
8b:4f:51:dd:fc:be:ba:d8:9e:ce:f7:62:b1:8a:5e:d7:8e:34:
0b:ba:b2:07:29:1e:34:5e:38:4c:71:d7:8a:36:e9:df:f3:0e:
c1:8b:ba:59:23:dc:7a:c5:64:29:1d:72:74:2e:19:b5:b0:18:
e4:6e:3c:ac:98:2b:f4:4d:5f:52:b0:6a:b2:33:17:05:2b:70:
8a:78:8d:0f:4a:ab:ff:05:49:42:f8:6f:c0:84:70:2b:3b:76:
30:af:cd:03:e0:67:12:e2:6d:66:2a:1b:dd:95:bb:26:ef:b5:
64:dc:03:f3:7f:28:84:36:ca:61:07:ba:e8:bf:1d:0d:c5:8a:
95:fa:9c:ed:1a:70:cc:55:1a:71:b5:7a:06:44:c4:9c:c0:9c:
7b:c6:c5:97:20:06:62:66:82:0e:22:91:11:84:b4:66:a1:37:
00:94:d5:e5:a8:25:8c:bb:5c:55:e1:a7:d0:92:7b:fe:69:3e:
08:e4:74:93:fb:d9:9a:0b:f8:b2:72:70:33:31:da:11:73:c3:
96:82:27:48:6b:69:e9:4a:99:7f:19:08:01:27:d6:15:d9:e3:
d6:d5:b2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:35:21 2025 by rpki-client