Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
File: iDyv-AezKVLWjHGq8BuRmErR6gg.mft (raw, json)
Hash identifier: l7aG5BDkRjSEZSosROUe3VJgMWTlOOapWJMlLrfuNhM=
Subject key identifier: 38:7C:42:8B:45:B0:8F:67:A9:B8:43:9C:6F:BE:C4:82:8F:CA:09:10
Authority key identifier: 88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08
Certificate issuer: /CN=883caff807b32952d68c71aaf01b91984ad1ea08
Certificate serial: 0197CC15A0E7642C7B6DA65D38584BE2FDF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
Manifest number: 03A9
Signing time: Wed 02 Jul 2025 17:00:58 +0000
Manifest this update: Wed 02 Jul 2025 17:00:58 +0000
Manifest next update: Thu 03 Jul 2025 17:00:58 +0000
Files and hashes: 1: iDyv-AezKVLWjHGq8BuRmErR6gg.crl (hash: QUBhZlsndMBvGXnqJtqJAXuthpjwU3ja2958gVb16KI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:15:a0:e7:64:2c:7b:6d:a6:5d:38:58:4b:e2:fd:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=883caff807b32952d68c71aaf01b91984ad1ea08
Validity
Not Before: Jul 2 17:00:58 2025 GMT
Not After : Jul 3 17:00:58 2025 GMT
Subject: CN=387c428b45b08f67a9b8439c6fbec4828fca0910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:34:a6:71:88:ca:74:9c:b6:e5:85:32:93:12:
a0:e8:8a:16:2b:75:58:4d:d4:d0:e7:84:df:7b:07:
76:55:a5:cf:63:da:ae:1e:12:9e:d5:b2:55:c6:47:
e7:86:b2:cf:f9:11:ab:9d:1f:e3:e5:de:30:cd:13:
9e:74:82:66:5d:66:c2:72:b4:b4:4e:96:b1:5a:31:
c3:9b:d4:95:d2:85:7f:a5:6b:45:5b:dd:0b:56:d2:
7d:d8:14:49:45:69:0c:e9:ac:0a:3f:1c:34:32:d8:
8e:80:77:1c:30:82:12:15:5e:46:e5:37:6e:d1:04:
af:1c:cc:2f:40:31:49:9f:e7:06:2a:00:dc:48:4d:
b0:0c:50:dc:85:ea:b7:11:2e:b7:de:f3:79:e0:c2:
92:3a:74:88:81:46:a3:e8:f6:1f:44:b0:b3:ea:25:
5a:3a:b6:da:c6:6f:4e:b1:fb:ab:e7:f3:53:8a:13:
fa:ee:72:8b:e4:ea:d7:23:2d:c2:1f:e3:36:5d:37:
15:93:48:7b:4e:53:3f:46:3f:0c:07:4d:8b:e0:7a:
b2:ae:fd:0d:9f:0e:a6:9f:2d:1a:7a:e4:0a:b4:bc:
7d:0e:3e:5a:ee:a0:67:7d:3e:29:f8:66:aa:23:05:
3c:2e:3a:45:ca:92:e4:e2:25:d9:5b:9d:dd:02:67:
a0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7C:42:8B:45:B0:8F:67:A9:B8:43:9C:6F:BE:C4:82:8F:CA:09:10
X509v3 Authority Key Identifier:
keyid:88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:5a:54:7c:1d:17:32:7f:3f:66:cb:68:32:3d:3f:40:2e:ee:
3d:28:8f:c0:f8:14:39:6a:9b:fe:d4:88:66:9d:f9:13:dd:cc:
37:84:ab:30:d0:14:42:e9:5e:96:b4:15:15:f2:a0:b5:cf:70:
d9:ba:2b:c7:6e:a8:c6:e1:ae:cc:d5:56:ce:7d:3f:31:1d:24:
97:01:50:d3:ab:a8:e5:29:61:d4:4e:95:25:8a:ff:4d:f9:e2:
b5:f8:3f:e6:cf:76:60:23:83:bf:92:62:fa:f2:56:c4:73:88:
99:22:51:fd:bf:5d:d6:6e:b9:ff:24:d9:06:b3:69:34:d4:bd:
b7:59:06:7d:24:7d:2a:de:58:01:15:05:17:4d:5b:c6:bf:e1:
05:4a:0e:e8:16:52:de:f8:1a:1c:4d:81:48:ea:eb:00:b4:db:
96:14:fc:83:15:cd:92:d8:4b:d8:7e:b0:65:28:5a:c3:70:c5:
11:a6:7b:a3:c5:40:a1:df:94:83:5d:7d:c2:18:de:1a:84:6f:
bb:d1:71:2c:97:d3:95:40:b7:28:3f:ce:5a:63:24:0c:4a:fc:
36:5e:e6:f4:3d:a2:f5:06:2f:4c:ff:1d:82:14:23:ef:49:2c:
6b:e0:77:a5:35:60:59:15:32:6d:2c:5a:08:33:fd:5d:34:55:
1e:23:1b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 03:18:55 2025 by rpki-client