Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: cRSyJS6uz+uMzJJy5h7petWwN60GQ+VLP+ekjZs8bHM=
Subject key identifier: CF:E1:CA:5E:72:5D:64:0B:29:38:93:A1:E2:C5:98:99:0D:C2:88:9C
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 019921B16572BE847A65C4CB25221D04424C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 049C
Signing time: Sun 07 Sep 2025 01:01:37 +0000
Manifest this update: Sun 07 Sep 2025 01:01:37 +0000
Manifest next update: Mon 08 Sep 2025 01:01:37 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: Ldp5MPxPsk/0vuiBPJlV8D7F7aSbxQf1wPP3fzI8XJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:65:72:be:84:7a:65:c4:cb:25:22:1d:04:42:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: Sep 7 01:01:37 2025 GMT
Not After : Sep 8 01:01:37 2025 GMT
Subject: CN=cfe1ca5e725d640b293893a1e2c598990dc2889c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:d4:d8:99:5d:6c:1e:4d:1f:b3:3e:53:2c:
3d:a2:f3:51:11:a1:77:02:f7:25:e9:f5:90:4a:bf:
4b:50:10:86:81:5f:02:43:0a:c3:a4:8a:95:00:bf:
c8:2f:de:ac:6e:0d:3a:2e:3c:f1:41:2d:42:b6:4d:
73:ed:7f:4d:55:5f:c5:87:89:9d:ff:65:f6:f3:6c:
d6:ff:45:d5:8b:e2:0c:54:af:e8:0d:78:e4:22:57:
51:f5:c8:d7:6d:0f:76:af:e9:4b:51:4d:b2:99:09:
af:c3:2c:69:fa:90:21:e6:8a:79:69:75:75:21:8b:
33:3a:2d:27:37:30:05:da:ad:4a:8c:87:ae:19:72:
d0:07:d1:5f:7c:b1:08:27:57:2d:55:f0:d8:d5:81:
2b:bf:f0:6a:bb:c3:e2:8e:82:41:62:44:13:37:2d:
31:d6:1d:73:ce:a5:69:e9:94:53:7f:e9:6a:07:e8:
36:b2:5f:b4:3f:12:a1:8d:a8:d6:29:95:f0:a1:98:
e6:0e:35:15:b0:08:79:b7:43:d1:fb:05:cd:2f:c1:
c7:26:8a:40:ce:00:63:b5:a9:f3:2e:64:f9:b3:78:
22:62:46:0b:73:77:6c:2e:9d:18:e7:00:bf:a9:4d:
ed:c1:34:3a:a7:a1:56:c1:de:0c:79:62:05:f7:b5:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E1:CA:5E:72:5D:64:0B:29:38:93:A1:E2:C5:98:99:0D:C2:88:9C
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:3e:e1:7a:1f:98:9d:06:11:ed:f0:f6:6c:f3:de:9e:d1:fc:
76:13:db:ba:5a:60:e7:39:b3:de:4c:b4:c7:79:54:3e:36:4f:
62:35:ae:a5:61:50:1c:07:b0:bb:cd:f8:92:fe:fa:bd:2f:6d:
bd:9e:ca:06:9e:6c:9a:ed:74:22:a6:99:17:c4:3e:6b:52:9c:
94:98:32:44:07:3f:fa:b0:b0:46:e7:3c:b5:91:b5:a2:7c:c9:
f9:5e:6a:bc:57:09:e7:33:f4:42:97:c8:43:d5:71:dc:ea:cc:
c8:32:c6:a2:c5:1b:4d:6a:51:99:18:54:01:29:31:98:5c:f1:
6a:ae:7b:54:66:bf:99:cd:74:f3:da:6f:fe:9c:93:7a:8f:09:
00:05:fe:85:9c:36:7f:04:84:3e:26:d8:dd:af:82:2f:62:ae:
a9:af:87:c0:4e:14:88:31:89:7a:3e:09:c8:c0:46:68:7e:e0:
d7:59:09:da:68:75:82:8d:cd:e3:b3:ee:24:5d:92:7f:ad:ab:
03:f4:5c:9e:8e:96:d9:2a:d3:f4:78:14:83:84:6b:66:7b:2b:
ba:9c:27:67:b1:88:08:be:cf:66:a5:ad:52:04:b0:1e:70:61:
2f:fa:71:8b:84:98:15:82:39:4e:63:a1:96:c7:22:06:0f:16:
ec:3f:1b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:05 2025 by rpki-client