Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
File: DyKg7jvG4y2JLt3iV8u3mRefLNY.mft (raw, json)
Hash identifier: iBt1UPokaCzS3t2Q0P9U3jFUrrZ507eDQRI8e8LERXs=
Subject key identifier: 4C:C9:3C:A3:30:5C:FC:CC:9B:99:6C:49:81:DC:B9:20:72:E4:D9:B5
Authority key identifier: 0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6
Certificate issuer: /CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6
Certificate serial: 0197462FDB6537C279B88238536A8D90D569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
Manifest number: 06E5
Signing time: Fri 06 Jun 2025 17:00:30 +0000
Manifest this update: Fri 06 Jun 2025 17:00:30 +0000
Manifest next update: Sat 07 Jun 2025 17:00:30 +0000
Files and hashes: 1: 3ybDPKiA0wDv8fgYqqJjrGlrgZo.roa (hash: Lzgk9VM3/0+YuHabQnt8dL/9QNx4stqWd1uOafztoy0=)
2: DyKg7jvG4y2JLt3iV8u3mRefLNY.crl (hash: 0o9G4ceOIDqQRYTq1URyBay2vUd54CWAf8lB/WOxnAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:db:65:37:c2:79:b8:82:38:53:6a:8d:90:d5:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f22a0ee3bc6e32d892edde257cbb799179f2cd6
Validity
Not Before: Jun 6 17:00:30 2025 GMT
Not After : Jun 7 17:00:30 2025 GMT
Subject: CN=4cc93ca3305cfccc9b996c4981dcb92072e4d9b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b0:79:47:38:30:58:68:12:ec:e9:55:fe:f9:
c7:96:d8:aa:55:ac:da:4f:43:10:59:f6:49:48:25:
07:31:82:82:d9:59:5d:e3:44:ed:89:19:fa:0e:6e:
02:76:09:14:e8:9e:18:e4:43:d1:f2:f1:ae:5f:b6:
63:b8:ee:08:df:0a:fe:a2:7c:26:ea:f2:c3:8a:88:
ea:3e:a0:ff:21:b9:7c:e5:48:ab:8c:cf:4b:43:de:
42:87:5c:2a:d4:76:50:f0:f9:2c:5f:5f:dd:65:9d:
bf:76:89:b1:eb:f1:56:74:52:47:52:eb:71:ca:d6:
a1:69:56:fc:90:dc:7e:9e:32:e2:be:68:8f:1a:1a:
4c:ee:a2:51:99:08:94:45:0a:af:42:35:a5:51:f6:
a1:ab:a7:ba:b0:c7:1b:e4:9c:71:05:d7:f1:74:64:
fc:25:c1:b9:e0:cf:ab:3a:97:b6:87:c6:23:4a:fe:
39:e7:ae:7e:62:4a:d4:84:ad:78:86:8a:5f:86:35:
20:b9:05:50:57:0d:30:e7:4c:81:c9:5d:52:b2:90:
8a:8c:fc:c0:c5:41:9b:15:df:04:1e:21:df:0d:24:
eb:3e:19:9e:66:8c:03:9b:9c:38:0b:24:bb:ba:7f:
53:e5:6d:d8:0c:d3:bf:17:a0:19:b5:9a:5f:8f:36:
3b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C9:3C:A3:30:5C:FC:CC:9B:99:6C:49:81:DC:B9:20:72:E4:D9:B5
X509v3 Authority Key Identifier:
keyid:0F:22:A0:EE:3B:C6:E3:2D:89:2E:DD:E2:57:CB:B7:99:17:9F:2C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyKg7jvG4y2JLt3iV8u3mRefLNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/3084de-b159-4e54-9ed7-42d67840944d/1/DyKg7jvG4y2JLt3iV8u3mRefLNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ec:36:1d:8c:c9:50:a7:4d:72:da:04:88:77:27:4f:ab:16:
26:60:9f:d5:c3:12:1e:8b:58:be:29:20:de:ed:50:66:c8:82:
4e:4c:eb:5a:f6:20:96:e1:ff:3e:31:29:4c:d1:fb:d6:25:c2:
5c:de:91:7b:d2:14:c4:43:8e:ea:71:58:e7:f7:97:9d:af:da:
7f:df:c7:bb:ef:83:bb:c0:b5:47:94:58:7b:c2:d4:b3:6b:69:
28:10:5d:51:7a:d5:b4:24:dd:ca:2c:b3:bb:39:08:5a:2a:8b:
b0:45:3c:76:c1:68:44:44:d2:87:f3:ba:81:a6:c1:f9:d3:b7:
6b:a2:fd:f4:36:8f:78:62:20:d3:86:46:1e:da:43:a0:31:75:
6c:9c:3a:03:ba:3b:14:28:11:d8:ef:e3:9c:05:e4:bc:50:1b:
e7:56:1f:09:cd:0c:c6:ed:f8:9a:fc:0c:de:e2:c2:b1:23:e3:
65:65:66:87:84:42:21:f6:1e:a5:a4:42:52:69:c0:3a:88:ce:
08:03:21:6a:74:60:02:d4:5e:92:67:e8:27:cd:20:41:bd:61:
7d:36:b1:07:c4:26:5a:ba:d7:9a:2a:e0:d7:35:16:c0:06:8d:
b9:14:a6:9a:88:9d:7d:ff:9e:1f:a3:04:d2:e1:4d:4c:2d:f8:
2c:b6:f6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:20 2025 by rpki-client