Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json)
Hash identifier: vmgHQ+yrWz0P5Pw+Iiki8jfDdAD6NqYUVJzzt98wEmA=
Subject key identifier: 82:BE:94:A2:C5:1A:4C:4A:8D:48:C6:C8:34:42:23:3F:65:95:15:ED
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 019860941F26C87C6A287B97D5222B848EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
Manifest number: 0E74
Signing time: Thu 31 Jul 2025 13:02:56 +0000
Manifest this update: Thu 31 Jul 2025 13:02:56 +0000
Manifest next update: Fri 01 Aug 2025 13:02:56 +0000
Files and hashes: 1: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: z4FGtbZKP7iFqJ7g0NVKXwy2+QLyXOM2KfwbsTTd2Oo=)
2: fU3MlRUECyf8Mob8gpdjGa0WFt0.roa (hash: 1bRjiSyIpRcT6gpZZI2DT+oOrLLRlf7RVwqkDF08rbw=)
3: fzU99qCGkV_CIT5aPe-FRXxnYbQ.roa (hash: vzw9SWyMsFCc6IE8QjYq1it7590sCq4Ux6IdTNIF19M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 Aug 2025 13:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:60:94:1f:26:c8:7c:6a:28:7b:97:d5:22:2b:84:8e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Jul 31 13:02:56 2025 GMT
Not After : Aug 1 13:02:56 2025 GMT
Subject: CN=82be94a2c51a4c4a8d48c6c83442233f659515ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2b:53:8b:9f:81:bd:7a:c0:48:db:81:67:4a:
84:cd:fc:13:b5:7f:d9:63:79:f5:6e:06:b2:f2:80:
88:07:97:b2:38:80:53:16:2a:50:9f:8f:c7:ff:9b:
77:b0:14:17:6c:94:2f:e6:b4:63:6d:81:ad:7c:5e:
1a:4d:f0:a0:da:d9:f1:47:b2:ba:10:50:69:f3:ec:
18:a5:80:60:b0:47:81:b7:96:be:7e:0b:c9:b3:dc:
b5:3e:e8:c2:d9:18:9d:bb:15:f0:01:7b:0c:e9:e1:
93:bf:ec:7a:67:cb:ce:a4:12:3f:fb:88:aa:db:6d:
2e:a6:76:a0:ac:7d:19:5c:5d:07:6a:68:5a:89:3e:
bc:1a:f8:63:25:61:b5:9d:88:d6:0d:2a:f4:2f:3b:
48:1d:d2:b7:67:8f:62:ea:07:6b:a7:3a:79:ea:f1:
d4:25:7d:56:ff:5f:64:ea:bd:8d:0e:eb:2e:c7:81:
93:98:73:e3:e8:21:6c:c3:38:f8:a0:2e:47:72:f7:
e1:1f:b6:06:c3:34:66:ac:85:8b:2b:07:63:5a:90:
d4:ba:67:31:ae:71:09:0b:27:4f:a0:af:f8:78:5b:
fd:41:85:44:e0:6c:b1:96:17:c6:18:3f:f0:fb:78:
a5:83:de:be:e2:ec:48:d9:fa:c5:2f:07:e1:50:a7:
d9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BE:94:A2:C5:1A:4C:4A:8D:48:C6:C8:34:42:23:3F:65:95:15:ED
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:89:fc:73:13:8c:2a:89:68:24:a6:1b:cf:23:ea:67:93:30:
a2:ea:42:65:c3:6e:9a:34:64:f8:49:b3:82:ad:6b:75:4b:01:
1c:d5:57:1f:9a:cf:1f:c4:d5:b7:4e:a3:d2:83:3e:4d:b1:59:
19:bc:48:73:b7:a1:aa:ad:eb:83:bd:ec:e7:e4:4a:bb:d8:0f:
e3:50:68:e9:59:52:15:ad:fc:ea:ae:47:8d:7b:ed:72:75:f0:
ff:fc:51:c8:8e:b7:4e:b7:68:ee:b3:c1:e9:6e:3e:58:27:7e:
f9:95:49:dc:66:19:1c:c7:4b:92:5e:b2:64:8a:4d:e9:f2:d8:
ce:07:46:d3:a9:14:12:7e:79:f0:29:95:ee:c6:19:fd:66:e7:
73:c0:11:0c:a3:5f:8c:51:a4:86:92:28:23:64:eb:32:e0:10:
c3:9f:85:84:87:07:92:d2:4d:f3:0a:76:02:55:7e:19:f3:5d:
4d:66:a8:05:50:45:09:58:c9:8b:68:cc:69:f7:41:ad:cb:42:
29:70:d2:52:fc:12:72:28:24:ef:d3:23:e3:81:3d:32:46:1b:
9a:16:15:9e:f7:bc:54:7b:20:cf:d4:49:25:ef:bd:de:6b:1c:
41:b9:26:7b:96:ba:68:95:33:aa:83:2d:72:cf:7e:64:6f:60:
03:38:39:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 20:29:27 2025 by rpki-client