Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
File: DTr3NGYY2GMOAUanZREkQ-DCyP8.mft (raw, json)
Hash identifier: ASQFJyCPFSd5yDpbQCKyzVSXf3eWFopWYbqoGFHgjDs=
Subject key identifier: E0:9F:80:66:5C:44:BC:69:19:85:53:12:AC:21:5A:CA:7E:A0:53:AB
Authority key identifier: 0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
Certificate issuer: /CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Certificate serial: 0196B7B6019624B8B8DD7D0AD32048803924
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
Manifest number: 05C4
Signing time: Sat 10 May 2025 01:01:20 +0000
Manifest this update: Sat 10 May 2025 01:01:20 +0000
Manifest next update: Sun 11 May 2025 01:01:20 +0000
Files and hashes: 1: DTr3NGYY2GMOAUanZREkQ-DCyP8.crl (hash: Uequ/XbdBXlDtFbM9MekrzNAjkeyoUefpFHnE3UnMjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b6:01:96:24:b8:b8:dd:7d:0a:d3:20:48:80:39:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3af7346618d8630e0146a765112443e0c2c8ff
Validity
Not Before: May 10 01:01:20 2025 GMT
Not After : May 11 01:01:20 2025 GMT
Subject: CN=e09f80665c44bc6919855312ac215aca7ea053ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b1:ed:86:ca:a4:ee:35:38:c3:46:c5:d2:f3:
f8:af:84:23:50:77:ce:d8:81:76:27:ce:23:d0:b5:
f7:92:87:4f:0f:bf:61:a6:8e:a9:0c:27:02:74:8c:
dc:47:0d:25:a4:25:83:01:eb:9a:b7:66:cf:b3:e1:
fa:29:6f:12:36:e2:11:49:b9:54:9a:5f:32:3d:1c:
30:e7:68:39:48:3e:1d:19:62:f3:95:68:18:14:e6:
8b:b8:28:e5:5d:00:e3:68:8b:3a:9c:73:e4:20:a8:
53:18:d4:ee:89:4e:ca:fc:e1:d1:f5:62:67:d5:c2:
36:39:6b:9f:f4:9f:39:75:3f:78:7c:e8:e1:80:de:
e9:d1:73:f7:79:52:0f:eb:8a:4d:10:7a:10:b9:aa:
dc:35:16:84:e5:a1:82:51:68:43:40:77:2b:a0:07:
61:e0:4d:59:31:b8:dc:44:f2:4b:e6:bf:4d:77:d4:
c7:0d:66:32:4e:5c:1d:ce:8a:e1:18:cf:dd:b6:fe:
d5:99:8c:b5:b5:d3:ce:e0:75:05:cb:47:5a:e8:25:
0c:2e:a3:91:fe:22:d9:f4:91:f7:7d:3c:c3:cf:67:
14:6d:42:90:c3:1f:f5:9e:4d:df:85:d2:b0:68:19:
b4:51:10:69:6a:33:d1:ee:2d:87:d7:78:1b:e0:82:
11:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9F:80:66:5C:44:BC:69:19:85:53:12:AC:21:5A:CA:7E:A0:53:AB
X509v3 Authority Key Identifier:
keyid:0D:3A:F7:34:66:18:D8:63:0E:01:46:A7:65:11:24:43:E0:C2:C8:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTr3NGYY2GMOAUanZREkQ-DCyP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/455702-5d5d-466b-b13a-f3b9b0b8dd70/1/DTr3NGYY2GMOAUanZREkQ-DCyP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:2f:44:5d:22:67:28:51:3b:d6:e1:8b:16:a0:e4:aa:d8:6f:
d6:c2:de:96:28:c1:c8:04:17:1b:e8:68:08:e6:dc:5d:77:92:
c7:68:3e:69:6a:28:46:e4:93:6b:18:f5:39:60:4d:3c:ab:12:
ed:84:ef:5d:bc:59:44:5b:e6:cd:ef:93:ce:d5:b1:bd:f9:8b:
61:95:f0:b0:d2:ba:a4:00:ab:e2:f1:f9:fe:13:53:c3:3f:bc:
02:c5:23:30:40:50:f5:d6:2b:d8:ec:cb:e0:29:06:b4:00:b0:
f3:3d:48:ee:61:13:b1:55:68:0e:07:50:e4:ea:7a:14:d1:49:
59:fa:39:7e:f0:c2:59:7c:ea:e9:85:ce:68:1a:39:c7:f7:62:
a1:63:40:b4:f1:ec:e4:65:ab:56:4b:9a:f0:e6:60:95:0e:c3:
b9:10:10:ba:3e:a3:4d:be:45:b2:fe:45:37:ed:b8:af:ef:8d:
1a:56:70:5a:cf:90:de:53:0d:6e:97:6f:55:31:b9:e7:94:a9:
f6:a0:07:1a:1b:db:50:0c:9d:b7:3f:04:ca:99:b0:ca:a6:e7:
1a:88:44:74:28:9e:15:94:fb:78:85:9c:31:a1:b2:d8:a9:92:
0d:47:93:c6:cb:78:b5:5a:87:18:fe:f7:dc:49:04:f7:23:7f:
24:97:35:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 09:46:37 2025 by rpki-client