Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: gXoducRTx4Y5d46+ONgnbp4r99YmlRv8cZzFppfX2cg=
Subject key identifier: 9F:DC:30:8F:74:8A:05:59:EE:4C:C8:0E:17:58:05:00:B9:98:B4:E6
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 01974E57D96DBE44CDDC09C5A2217193CE9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0A4B
Signing time: Sun 08 Jun 2025 07:01:09 +0000
Manifest this update: Sun 08 Jun 2025 07:01:09 +0000
Manifest next update: Mon 09 Jun 2025 07:01:09 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: x8uK+nxeOhINAmfC8SsFcgzCPg0M0Y+WkubW9N65MMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:d9:6d:be:44:cd:dc:09:c5:a2:21:71:93:ce:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Jun 8 07:01:09 2025 GMT
Not After : Jun 9 07:01:09 2025 GMT
Subject: CN=9fdc308f748a0559ee4cc80e17580500b998b4e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:be:ca:de:59:f4:7c:11:d1:bc:14:18:80:53:
92:a9:cc:51:41:fc:2f:82:29:6c:8e:20:0b:59:39:
13:a4:fa:1e:0f:4b:12:76:d2:54:08:95:48:e5:f2:
91:df:9a:00:d6:8f:87:24:c3:16:85:43:ad:57:04:
65:e6:64:9d:25:21:b6:1d:98:e4:5a:3c:d4:a2:99:
17:be:c7:c4:d3:29:97:a1:79:d1:e5:e3:a2:1f:66:
08:1e:70:da:bf:48:91:80:24:87:84:ed:fd:8d:10:
ca:06:8c:be:06:b1:a2:8c:17:16:2c:05:ec:ae:4d:
6c:69:5b:47:44:63:bf:95:e9:eb:1f:4f:1b:42:ef:
1d:2a:ae:f3:10:22:e3:9a:7b:16:22:d3:57:ef:a2:
16:b2:e5:da:93:ce:29:0c:49:f8:d9:cc:8a:2d:40:
db:58:ad:2b:38:c6:9b:70:6c:01:52:82:35:dc:59:
b7:4e:c1:1a:89:56:51:9b:8b:b5:70:2f:4b:e6:7f:
9a:98:88:56:5e:e8:ea:5c:6b:08:e9:e0:a2:b2:d2:
c4:93:48:df:ca:65:20:d5:94:9a:7d:06:8a:e1:7f:
d5:00:1f:b1:74:09:65:0a:ec:ff:09:b1:02:a1:21:
67:75:c9:30:07:22:9f:5e:b7:dd:2f:7e:7b:95:7e:
34:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DC:30:8F:74:8A:05:59:EE:4C:C8:0E:17:58:05:00:B9:98:B4:E6
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:8a:fd:09:36:4c:8a:8d:ff:a5:13:22:11:2e:6b:12:50:6b:
51:9f:9b:e1:5a:e3:35:bd:5c:0a:2c:e1:7b:43:b2:77:fd:ce:
6e:37:48:87:91:f1:24:a1:34:51:7e:31:b3:1c:31:fd:ce:b7:
83:e6:f9:56:4a:21:8a:9f:9d:a9:b6:99:4a:88:03:1a:55:26:
17:c5:35:70:3a:b3:c0:71:ae:e3:0f:2e:3c:41:e9:2c:4a:ad:
d9:bc:f0:52:ab:4b:45:2a:1b:20:65:2c:2e:4f:f2:38:ee:79:
d9:20:98:16:8a:4b:55:19:d3:96:fd:09:88:fd:a1:af:3a:1a:
b6:74:8e:7d:0b:0a:24:51:25:9e:26:c8:3c:b4:05:d9:b9:cd:
25:84:08:a9:2b:d0:5d:48:67:31:6a:8d:8d:41:31:6b:65:1a:
87:29:e8:4f:46:8f:4e:c7:7f:4e:ef:8a:93:c6:62:35:6e:39:
1e:94:7b:67:4f:d1:1c:07:f9:65:fe:75:c0:5e:b4:93:77:a4:
64:59:80:da:ba:20:9c:73:de:51:a2:09:46:05:5e:67:01:14:
d7:2c:90:6a:ed:2e:1e:ef:de:6a:b7:84:1b:b2:c2:11:c8:de:
20:99:ad:b9:c8:0d:c3:5c:38:c3:3d:dd:73:94:77:56:87:07:
ab:ed:05:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:32:32 2025 by rpki-client