Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
File: DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json)
Hash identifier: KObbxbmIY9fQaOXmPQmJRP24YUzHj/lqeBoG0bV4J14=
Subject key identifier: 61:65:3F:F7:9C:E4:0B:FB:84:60:6F:4E:3C:D4:74:F5:1D:BC:62:AC
Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
Certificate issuer: /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Certificate serial: 0198D66086A4EC97A61034AA684C715F0A99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 10:01:46 +0000
Manifest this update: Sat 23 Aug 2025 10:01:46 +0000
Manifest next update: Sun 24 Aug 2025 10:01:46 +0000
Files and hashes: 1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: fFyzcyGRZGX1fGXHIIquD0JkWbkHbRtJmpkPzRJzwyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:86:a4:ec:97:a6:10:34:aa:68:4c:71:5f:0a:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Validity
Not Before: Aug 23 10:01:46 2025 GMT
Not After : Aug 24 10:01:46 2025 GMT
Subject: CN=61653ff79ce40bfb84606f4e3cd474f51dbc62ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4c:91:94:5d:99:d8:e4:d2:1f:16:59:83:00:
f6:10:19:78:69:26:9a:17:f9:c2:cf:1c:01:96:f3:
8f:35:57:bb:c9:47:9e:c1:32:be:eb:be:3f:6b:92:
16:a4:22:d9:e7:f5:65:21:fe:7e:9f:07:9a:84:a8:
7b:63:d8:cd:f7:25:74:58:cc:33:ef:64:ae:51:6a:
fe:17:7e:46:19:da:78:3a:b3:f4:37:7a:69:d8:64:
c7:c7:41:43:5d:87:dc:85:1f:8b:19:64:75:d1:c8:
4a:58:b1:20:25:13:db:9e:3c:3a:3e:f5:50:a1:e3:
8a:e5:d1:69:d8:30:b6:d2:23:2b:34:a2:ae:f7:9a:
0e:bc:b5:9a:98:ef:5e:26:b3:de:c4:9a:12:30:b2:
2a:f8:ab:ab:ce:6d:4e:66:9d:50:9f:64:40:55:54:
9d:66:eb:9e:26:d8:a0:7a:ef:62:64:ad:ec:57:1a:
75:7d:21:83:95:5c:2e:b0:99:72:3f:bb:e5:07:99:
92:21:7a:00:73:1c:e5:b9:9d:03:2f:28:ef:d5:a5:
c4:9c:71:12:c2:9c:80:e4:c1:ce:e0:d7:cd:e0:00:
4a:a8:d5:7e:d6:0d:48:80:0f:c0:a9:36:82:12:9d:
d4:ad:45:ce:49:f3:8d:54:22:42:e5:8b:7d:7f:8f:
a0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:65:3F:F7:9C:E4:0B:FB:84:60:6F:4E:3C:D4:74:F5:1D:BC:62:AC
X509v3 Authority Key Identifier:
keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:fb:e5:f1:0a:b8:fc:0c:00:59:a3:3a:92:f3:a1:ab:eb:92:
fd:c3:b9:2f:f2:72:0e:82:00:b8:a6:32:b3:ea:26:c9:1d:1f:
1e:0d:a1:62:21:48:76:b4:2f:7f:57:8d:56:87:b4:b0:b1:3b:
36:d2:48:71:7b:c0:cd:cf:29:16:85:07:12:f1:99:88:25:1a:
69:cb:13:f5:13:4b:25:a2:c8:ea:04:ed:6b:32:ff:e1:b3:b8:
6d:11:c0:5f:de:cc:e4:28:86:80:c4:70:00:07:23:61:f1:87:
f6:54:f9:97:01:0c:be:9c:ec:49:8c:84:00:9a:a6:eb:98:e7:
a3:c5:ae:9d:15:7b:54:37:ef:91:db:cf:30:7a:fb:fd:a3:52:
d4:59:46:6d:48:ae:31:91:8f:88:40:3a:d3:55:2d:8e:bd:58:
65:48:1b:6f:b9:4a:9a:87:3b:68:1b:7d:6d:81:b6:59:cf:50:
ce:60:d0:14:63:65:39:1d:fe:9a:a6:89:e1:31:6b:4e:eb:ce:
2b:26:67:91:9f:dd:f6:32:5f:9b:8b:83:fd:b6:95:26:88:98:
be:7c:2b:d2:c4:5e:6c:1f:02:75:7f:6d:a9:04:7d:a8:e4:df:
84:f6:7d:5f:8d:da:e8:fe:52:3a:bf:5f:10:ee:06:67:bd:13:
c8:f5:6e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:02:52 2025 by rpki-client