Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
File: dGMyObqiEDEGpiYN39fni4CUNVw.mft (raw, json)
Hash identifier: wtf/wuv+WD4DhQ3zYcFhdNJBZ05PFdyaTDg/hhC2NnQ=
Subject key identifier: 3E:4F:40:57:0B:E0:33:07:AB:E4:54:CA:2B:0B:A3:F8:9E:CA:7C:41
Authority key identifier: 74:63:32:39:BA:A2:10:31:06:A6:26:0D:DF:D7:E7:8B:80:94:35:5C
Certificate issuer: /CN=74633239baa2103106a6260ddfd7e78b8094355c
Certificate serial: 01974DB28E51318C32411AB634358762D884
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
Manifest number: 0C53
Signing time: Sun 08 Jun 2025 04:00:36 +0000
Manifest this update: Sun 08 Jun 2025 04:00:36 +0000
Manifest next update: Mon 09 Jun 2025 04:00:36 +0000
Files and hashes: 1: GndNIt9G7qZhnR5IIBXP3kbyL_4.roa (hash: SBp7dhTz+pfIJxl9syItY+Kj164I5JLZ7F2dz4iFPso=)
2: dGMyObqiEDEGpiYN39fni4CUNVw.crl (hash: 4k6By6XuzKVtZW1hW1kpSFUL6Kyz1uY9zpUyeMh7gl4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:8e:51:31:8c:32:41:1a:b6:34:35:87:62:d8:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74633239baa2103106a6260ddfd7e78b8094355c
Validity
Not Before: Jun 8 04:00:36 2025 GMT
Not After : Jun 9 04:00:36 2025 GMT
Subject: CN=3e4f40570be03307abe454ca2b0ba3f89eca7c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:eb:12:1b:85:3f:bc:86:18:49:91:1c:ac:
1a:dc:fb:f2:3a:d3:e0:14:93:7b:cb:d7:9f:94:e0:
0d:f5:16:24:4c:38:f5:bf:aa:14:db:f2:3e:87:42:
4b:39:ee:1d:7e:9a:22:04:fe:ee:f8:32:31:d9:56:
9c:3b:e4:46:e3:dc:37:04:cf:61:87:88:42:f0:56:
45:c7:98:94:81:7b:ef:50:32:6f:f8:0f:c7:ff:87:
f2:75:bd:96:5b:45:21:46:17:cd:e0:55:9e:22:a0:
e4:0a:ac:93:98:1b:35:43:1d:8e:cf:f4:32:e3:8f:
37:80:a3:0d:9d:ff:15:23:85:d3:04:93:07:f1:33:
eb:48:24:f7:cc:3a:e5:cb:f2:75:0b:0b:c9:8c:24:
b9:56:f4:a2:b4:ae:d5:81:8f:b2:9e:c0:4e:25:34:
d6:c6:52:c4:79:43:23:d0:c8:72:6a:29:60:c0:ef:
99:97:86:0f:cb:51:7d:df:3a:13:5f:c6:2b:3b:b8:
b9:4e:cc:d7:69:23:55:8f:fa:e6:41:9a:77:8d:2d:
f8:d2:81:a6:21:e9:40:9d:73:c2:33:66:89:b2:e8:
1f:db:cf:d7:c9:61:64:15:d8:d5:99:55:ac:a9:73:
48:2d:bd:82:8e:5f:6d:04:8e:7f:bf:c2:2d:6b:7d:
2a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4F:40:57:0B:E0:33:07:AB:E4:54:CA:2B:0B:A3:F8:9E:CA:7C:41
X509v3 Authority Key Identifier:
keyid:74:63:32:39:BA:A2:10:31:06:A6:26:0D:DF:D7:E7:8B:80:94:35:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:64:31:0e:66:1d:89:81:09:18:c3:97:da:ad:6a:55:5d:2d:
6b:e7:90:e3:59:12:65:c9:5e:7f:26:41:f0:92:ac:b7:53:d2:
53:ee:e0:e5:3c:0b:6e:82:96:e7:cb:50:06:a7:a2:a7:d4:df:
b3:8c:23:ed:52:45:8d:6f:0b:07:69:27:26:dd:55:bf:bb:aa:
d7:1c:b5:fb:54:7e:fb:53:2d:3e:29:99:4f:fd:a8:9d:28:11:
2f:53:32:da:26:9f:6e:87:13:d6:af:2c:ea:f2:a2:37:6c:06:
f4:9c:8d:28:7e:3b:0e:4a:a7:f4:18:1a:9c:b9:6a:67:be:6b:
ec:69:8c:41:e6:29:d7:91:f7:85:d1:5d:69:4d:56:c3:b9:4c:
13:68:60:40:8c:5e:93:9a:9c:75:8e:c3:f4:7a:6a:df:d8:24:
9e:77:66:63:b3:65:e2:71:78:8b:99:0d:03:7c:88:7f:01:64:
68:3d:56:7d:76:fe:0b:c1:e9:b7:62:b1:91:01:76:b6:41:fe:
93:8a:2a:84:5f:d9:4a:0d:54:87:e1:cf:c2:95:d2:dc:04:4c:
b7:4b:56:79:af:00:08:15:83:2c:d1:32:86:0b:cb:7f:e6:7c:
43:69:71:3d:d0:66:54:23:c8:a5:33:3a:69:10:a5:2f:ca:f6:
a1:32:ca:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:13:51 2025 by rpki-client