Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
File: PDetizomkODPRy2ybo_isWgBkiQ.mft (raw, json)
Hash identifier: BrURfOEgLTmkk2OoXjzr0TvHyWexRdQK/+ix2uLlkEQ=
Subject key identifier: 6A:80:4C:23:3A:49:68:2A:B3:3A:A1:6B:B3:D1:A9:A6:F7:5E:20:FA
Authority key identifier: 3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
Certificate issuer: /CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Certificate serial: 0197B70ED9C9F80B8571FB2D3CEB5F50EE3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
Manifest number: 13D6
Signing time: Sat 28 Jun 2025 15:01:33 +0000
Manifest this update: Sat 28 Jun 2025 15:01:33 +0000
Manifest next update: Sun 29 Jun 2025 15:01:33 +0000
Files and hashes: 1: PDetizomkODPRy2ybo_isWgBkiQ.crl (hash: 7J3NDkUMNkCKsmDRwHXyZVcnM/YFR9y2dFIUTcCsvGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:d9:c9:f8:0b:85:71:fb:2d:3c:eb:5f:50:ee:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c37ad8b3a2690e0cf472db26e8fe2b168019224
Validity
Not Before: Jun 28 15:01:33 2025 GMT
Not After : Jun 29 15:01:33 2025 GMT
Subject: CN=6a804c233a49682ab33aa16bb3d1a9a6f75e20fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5b:ae:1b:1e:0c:f2:a7:e9:d3:da:92:c9:00:
61:65:c6:62:3c:f7:b4:bf:60:89:84:26:36:ea:a2:
5f:ad:36:4f:2d:41:17:03:f2:53:d6:e4:38:05:38:
56:a2:a5:e0:bd:0a:97:34:db:90:1d:4a:97:2f:83:
f7:fb:4e:b3:66:d2:bd:64:2b:2b:96:87:3b:e8:69:
29:7a:6c:51:a6:b5:63:61:a9:ad:d1:d6:73:23:7a:
d1:fc:cc:48:cb:da:fe:b1:26:a3:e4:84:fd:f2:e3:
4c:a5:26:83:14:cb:01:ae:6f:ea:ed:64:43:81:58:
c5:9e:81:01:8c:8c:f4:a6:42:ca:73:2f:f0:93:05:
f4:77:f8:8d:76:12:85:98:45:9b:5e:9d:67:b0:04:
86:df:6d:b1:74:13:ce:93:33:b7:ce:1c:1f:53:a1:
2d:65:71:d4:a5:2a:ce:66:b9:1c:48:12:96:2d:fe:
39:05:ec:31:42:da:d0:45:b6:27:a2:8c:1c:67:03:
54:61:f9:45:a5:83:fc:93:6e:74:35:66:f1:80:e6:
b6:0f:ec:0d:18:1d:4e:17:c4:53:89:47:1e:4f:8d:
0e:d0:4a:80:8f:f1:9e:63:f2:9c:e7:7a:c0:6f:85:
1f:7a:a9:3b:80:a7:8e:67:f9:1a:c2:0a:93:09:9e:
20:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:80:4C:23:3A:49:68:2A:B3:3A:A1:6B:B3:D1:A9:A6:F7:5E:20:FA
X509v3 Authority Key Identifier:
keyid:3C:37:AD:8B:3A:26:90:E0:CF:47:2D:B2:6E:8F:E2:B1:68:01:92:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PDetizomkODPRy2ybo_isWgBkiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/55cbef-58ec-4014-8667-2e2b56b415c1/1/PDetizomkODPRy2ybo_isWgBkiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:9e:83:7e:91:f8:01:d7:43:90:bf:ab:16:5d:21:55:a2:2e:
b7:fa:d2:72:42:54:bb:1f:95:cf:c4:9b:b2:79:09:36:e4:aa:
6b:0d:d6:e8:97:fa:a7:db:d5:ca:32:e2:d2:eb:f7:7e:fb:ef:
8a:1d:ca:5a:6a:d9:d3:ef:71:7a:2e:ca:b6:cd:45:20:fa:ef:
78:aa:b3:56:4f:c6:89:c9:96:4d:6b:b0:92:61:8b:2e:bd:4d:
7e:d1:b7:5a:a8:28:15:ba:08:98:d1:11:08:0b:93:88:59:90:
5d:e5:ad:0c:10:ee:2b:70:c1:26:b4:a2:50:9e:ba:43:1c:04:
16:4f:a4:15:ce:45:df:21:b6:0e:fa:16:10:86:67:7c:03:29:
e4:d8:c5:90:62:29:19:3d:42:ba:78:4f:08:36:b9:81:6e:35:
32:83:f3:d0:db:04:35:c3:6e:42:ab:ec:33:0a:d8:b4:40:13:
ca:5a:b0:e7:a8:03:6e:af:8d:39:8b:23:b9:22:4c:3a:03:53:
11:7f:bb:5d:57:0e:35:47:ff:b9:9a:df:6c:2f:c7:75:ab:d3:
1f:73:e2:dc:e8:69:f2:86:3e:05:92:f2:3e:05:b4:93:a0:84:
7e:a1:7a:77:a7:fb:55:bc:3b:18:35:8b:a3:b2:53:c5:b6:4f:
ff:6a:54:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:31:37 2025 by rpki-client