Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json)
Hash identifier: 2m3JHUWEmKjXF3/8mKgmy4KyeEzYd/4cmdOhhxe19Ac=
Subject key identifier: 4C:5D:03:4C:90:DB:16:84:C1:61:C6:E5:4B:16:C6:FA:2C:30:4A:71
Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Certificate serial: 0198D4E00E5E5A293E3B40025FE831C18786
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
Manifest number: 146A
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: xK6poFZCZaosA8H/Fu4j43bBAWZ4Rrvck2h9oDXl+2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:0e:5e:5a:29:3e:3b:40:02:5f:e8:31:c1:87:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=4c5d034c90db1684c161c6e54b16c6fa2c304a71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:86:60:f7:7f:d7:a4:1d:e3:cf:0f:76:10:3e:
bf:6f:d9:ff:91:1c:32:f6:e7:90:c0:97:49:2b:69:
e7:94:76:f8:e3:c9:99:6b:39:b1:5e:32:37:bf:a4:
62:25:52:ee:c7:d7:1c:0d:9e:e2:2a:1b:bc:1e:c9:
94:1f:f9:26:71:f6:43:dc:5d:f9:a0:5d:5b:83:ed:
d4:ad:bc:fe:ec:9d:d4:cb:d4:35:04:14:ce:8e:9c:
e6:e9:a7:5a:a3:f5:94:f2:a2:13:49:1d:fb:47:c0:
62:57:ee:bb:ba:4b:d2:59:d5:e3:7d:5d:9e:a0:06:
70:a3:1f:2e:c3:b3:ee:f9:58:af:da:c7:b4:c0:46:
03:2f:7b:81:2b:c3:45:3f:ec:4b:81:3f:47:4f:e7:
e2:eb:d5:84:9c:25:d3:6f:ca:4e:77:af:b5:b7:c7:
fd:7e:36:3b:89:84:46:b0:0a:b5:00:a0:ce:46:d4:
39:bf:4a:3c:01:dc:81:98:63:c8:e2:01:64:b8:3e:
60:f0:23:ae:c5:3d:2a:14:d7:1b:58:e8:18:80:c8:
b4:a3:9d:8f:60:96:26:c6:bf:c1:40:8a:8d:f3:e4:
94:49:10:1f:b3:be:ff:cc:82:89:9a:aa:aa:b3:21:
a1:ea:b2:7f:7f:82:df:34:57:3e:11:44:db:df:f4:
eb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5D:03:4C:90:DB:16:84:C1:61:C6:E5:4B:16:C6:FA:2C:30:4A:71
X509v3 Authority Key Identifier:
keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:23:78:05:15:22:a4:61:96:a7:c7:7d:b4:94:21:2d:77:08:
04:7a:ab:74:0f:e3:ba:db:b7:0f:f6:d1:a9:0e:31:60:65:1e:
ee:a6:6f:0c:70:ac:fc:a2:a4:6d:2b:8b:e1:66:d5:8f:77:7f:
20:97:41:79:b2:e6:d7:43:ab:73:0c:04:e2:02:ee:f3:f9:44:
79:8c:57:a5:ff:1a:94:a8:bb:a0:30:eb:21:76:80:fc:9a:ca:
db:21:5b:fc:16:71:0e:d8:92:9d:01:8c:54:e5:a2:9e:7c:a5:
98:cd:c0:5a:b9:ba:06:ed:17:28:ff:b0:37:69:78:5f:97:93:
83:c4:fd:e8:9a:c3:64:0d:8f:5e:77:06:e6:96:8f:4b:7c:49:
19:25:50:59:5a:11:63:7d:86:09:ef:f2:75:ed:34:55:a9:26:
40:c8:3f:cd:c2:7e:f1:eb:34:11:02:8b:2b:34:5b:4b:aa:65:
2c:ec:3f:03:5b:3f:3a:3a:5c:78:59:39:9d:23:bb:35:41:c9:
70:66:43:af:99:a3:68:e8:4f:d2:7a:21:08:dc:74:4d:6b:e5:
4c:4c:3e:cf:59:39:b1:f3:17:c3:1a:47:78:6a:b2:29:3d:d3:
0f:a5:a4:ea:13:c2:1c:2b:bb:b3:6d:f6:26:6a:6d:c9:f9:c7:
1f:17:06:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:44:03 2025 by rpki-client