Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
File: DZHf1FaDQonB_QOg_vG1Kl79HZE.mft (raw, json)
Hash identifier: Cq9xwrgl2fypppjoEiW8OtpdA4RoH0wbPaj2/hmNH8M=
Subject key identifier: 7D:BA:96:62:16:51:2D:60:AC:0D:AD:F7:14:30:E6:F6:43:5B:8A:18
Authority key identifier: 0D:91:DF:D4:56:83:42:89:C1:FD:03:A0:FE:F1:B5:2A:5E:FD:1D:91
Certificate issuer: /CN=0d91dfd456834289c1fd03a0fef1b52a5efd1d91
Certificate serial: 0199228C675D2157E02795DD09E9CCE6335A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZHf1FaDQonB_QOg_vG1Kl79HZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
Manifest number: 0ED9
Signing time: Sun 07 Sep 2025 05:00:50 +0000
Manifest this update: Sun 07 Sep 2025 05:00:50 +0000
Manifest next update: Mon 08 Sep 2025 05:00:50 +0000
Files and hashes: 1: DZHf1FaDQonB_QOg_vG1Kl79HZE.crl (hash: /dJIybNKdtPPE9ONsQBgS2A2W7zfhpkf3usMPma5BiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZHf1FaDQonB_QOg_vG1Kl79HZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:67:5d:21:57:e0:27:95:dd:09:e9:cc:e6:33:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d91dfd456834289c1fd03a0fef1b52a5efd1d91
Validity
Not Before: Sep 7 05:00:50 2025 GMT
Not After : Sep 8 05:00:50 2025 GMT
Subject: CN=7dba966216512d60ac0dadf71430e6f6435b8a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e5:0e:e8:a4:e3:82:f0:35:6e:b6:a5:f5:59:
52:9f:5f:80:33:7c:da:b2:db:1c:73:6c:1e:a3:91:
18:9d:c7:93:0a:04:53:8a:21:68:bb:09:4d:2c:04:
2a:6b:ad:5b:cd:2e:3b:19:b0:8d:fc:89:49:3b:d7:
29:97:b7:f5:75:b4:89:93:0b:ac:c3:c5:96:34:67:
14:c3:de:5b:a7:0d:bc:fa:85:fc:b9:85:bb:eb:22:
d9:7a:2d:f0:54:4f:75:c8:0c:28:89:ee:d0:22:1f:
c7:79:41:72:bd:71:25:f7:b9:44:5d:af:bb:a1:65:
11:26:67:39:86:39:36:fa:6b:3f:77:8a:5a:38:51:
60:59:ab:a7:2a:ab:4d:3a:c0:76:dc:e6:e4:00:7e:
17:12:95:2f:06:06:da:b9:1e:9e:af:32:19:c8:ff:
39:24:7a:eb:4a:08:08:dd:5e:90:8f:81:26:d4:45:
96:66:a3:26:cd:c9:a6:f4:ed:8c:72:31:f6:14:d1:
08:a5:60:de:5f:3b:c1:cc:24:14:4f:9b:df:08:67:
2b:c2:23:22:bf:a6:a5:a8:94:3a:82:83:04:78:0a:
ac:7d:ec:03:99:32:7e:fa:c5:6e:c0:d8:11:e0:ed:
50:88:55:dd:9f:9c:96:e0:6b:4d:94:a4:e7:89:65:
c9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:BA:96:62:16:51:2D:60:AC:0D:AD:F7:14:30:E6:F6:43:5B:8A:18
X509v3 Authority Key Identifier:
keyid:0D:91:DF:D4:56:83:42:89:C1:FD:03:A0:FE:F1:B5:2A:5E:FD:1D:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZHf1FaDQonB_QOg_vG1Kl79HZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fbbe41-15b7-4f6e-9e07-8bcce303b919/1/DZHf1FaDQonB_QOg_vG1Kl79HZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:50:e4:2b:bb:19:6f:ca:d0:4a:77:03:c9:ef:af:75:d5:56:
38:8e:74:6b:f1:48:2b:b9:26:61:a1:50:6a:64:f0:07:0a:a1:
6d:41:c7:fa:76:d9:44:ce:11:f6:8b:ad:6d:63:f0:eb:fd:3d:
da:24:c7:7f:1b:1b:46:b3:c2:b7:f1:ff:25:8c:5a:bd:a2:41:
8a:2f:65:04:6f:1e:b5:5c:d0:a0:6e:25:b6:60:31:9d:8d:af:
e7:ca:22:db:39:54:63:ba:d0:38:47:79:f1:30:c1:01:a6:77:
94:a7:d3:f8:c7:07:f8:3b:2d:9d:52:78:4a:e3:45:67:ce:bd:
78:5e:bd:a4:3f:b2:59:63:90:cd:23:c2:89:7f:cb:e8:ce:ee:
42:83:6d:ce:8f:77:a9:48:61:16:5a:a6:c6:c6:c0:c1:cb:1b:
9f:74:2a:f9:f0:9a:1f:8c:28:a1:84:91:1c:b4:1b:11:24:6a:
06:dc:c2:49:3b:b3:52:e2:d6:9a:c4:23:1d:e5:e2:9a:ea:0d:
ed:a0:d6:1b:10:f4:82:3d:58:d6:e7:6a:35:67:bb:f4:5f:d6:
78:21:15:7c:06:78:c1:ea:ab:0d:8c:57:6d:0d:0e:47:bb:51:
b9:28:5c:cb:10:32:14:17:30:53:bc:57:b9:e3:26:e7:c1:64:
1f:f9:2d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:15 2025 by rpki-client