Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
File: DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json)
Hash identifier: GQ63GqnV/VCEzdO0RIlbEty57H+HzujFGnEklIzT/Qk=
Subject key identifier: D9:CD:DE:D8:E8:7A:DD:0D:95:EF:F4:64:42:8E:7F:FB:AF:ED:BA:6B
Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
Certificate issuer: /CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Certificate serial: 0197B6A169B24D90392DC5503D3FA95BB244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
Manifest number: 0648
Signing time: Sat 28 Jun 2025 13:02:00 +0000
Manifest this update: Sat 28 Jun 2025 13:02:00 +0000
Manifest next update: Sun 29 Jun 2025 13:02:00 +0000
Files and hashes: 1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: l2DTGcKRTYT0Dxs+j3aD3W5ccu9Kndrt4OJ2+fy/1fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:69:b2:4d:90:39:2d:c5:50:3d:3f:a9:5b:b2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Validity
Not Before: Jun 28 13:02:00 2025 GMT
Not After : Jun 29 13:02:00 2025 GMT
Subject: CN=d9cdded8e87add0d95eff464428e7ffbafedba6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:c5:47:60:6f:5e:19:f1:c3:8c:13:81:54:
88:03:21:ff:c8:d7:27:4f:08:43:83:6b:8d:89:b8:
cd:c3:35:26:ab:0d:8f:7e:f4:13:5c:3f:26:4f:2f:
17:55:61:c3:d9:21:c6:d8:be:56:28:b9:7b:88:4f:
bd:fb:b9:04:9f:62:f9:74:cb:ca:89:87:77:af:34:
cb:3f:e0:a3:e0:6e:eb:b2:5a:11:d0:49:79:72:fe:
38:da:3c:d3:3a:32:48:49:3a:96:55:9b:0d:01:bb:
2c:2a:aa:f7:d8:44:41:c5:35:86:c8:15:33:1e:23:
29:d2:16:99:1f:9d:4d:ee:d2:61:64:58:8b:c9:7f:
75:1b:99:84:1f:71:cc:77:66:94:58:9f:8d:58:b2:
62:32:64:53:8f:37:b4:57:c6:16:ee:06:de:5c:af:
2f:a5:b9:34:e6:01:b5:1d:df:33:7b:87:b4:01:10:
f7:a1:12:9a:60:2d:bc:2b:4c:e1:18:df:97:6e:61:
dc:7e:f6:c2:41:d5:d6:bf:1b:fc:6d:8c:9f:66:c7:
ba:f0:25:03:48:aa:72:7c:e6:70:7c:7c:56:d1:d5:
f2:35:64:8c:ca:69:0a:6c:c0:ab:fb:a8:f5:47:0f:
f5:47:6a:6a:46:e7:4e:70:6d:c4:84:4c:23:c0:14:
92:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CD:DE:D8:E8:7A:DD:0D:95:EF:F4:64:42:8E:7F:FB:AF:ED:BA:6B
X509v3 Authority Key Identifier:
keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:84:78:68:6b:4e:40:5d:6e:87:83:00:3d:5a:94:95:c8:21:
c5:21:47:ce:88:9f:0a:53:9e:17:00:08:07:ca:4a:37:f8:5f:
14:c7:d9:96:2d:c8:e0:cd:28:da:59:d4:1d:58:cd:ea:f1:b7:
f1:54:77:03:04:0e:7d:57:54:2f:61:9a:f9:83:92:aa:53:37:
a2:3e:7d:44:3c:d6:d5:53:6b:1b:98:54:bd:de:ce:7e:58:10:
06:98:3b:91:40:34:88:d8:2e:0c:e7:a5:d1:47:45:ef:40:5a:
4d:1e:11:1e:43:c2:1e:93:5f:b3:72:4c:56:0e:86:6c:16:b5:
ae:15:45:4d:1d:3d:dd:4c:3b:27:87:ea:1d:fa:8f:08:94:5d:
69:59:be:0f:b4:89:e5:22:bd:8c:41:d5:f1:92:c3:3b:b5:77:
d6:85:e6:09:c4:d1:9c:66:ce:e5:b2:de:88:75:31:fb:3d:48:
76:3c:0d:08:00:16:ff:f4:3f:ff:b6:70:8c:9c:cb:7e:4c:21:
c6:94:42:39:00:66:31:69:58:a2:c6:d6:fa:97:cd:74:aa:8c:
f4:cf:d7:29:df:de:8e:67:30:a0:65:4e:0f:d3:22:f6:60:3e:
52:b4:ee:3a:1a:07:99:0e:00:22:8c:2c:59:81:88:dd:d7:bb:
2f:42:a1:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:37:29 2025 by rpki-client