Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
File: DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft (raw, json)
Hash identifier: GaCk79kT9uyihJ7/5tj28m0f2rqWHYBWpDglG2M8+4E=
Subject key identifier: 55:FF:50:CE:32:2C:F8:D4:75:F1:63:2B:46:D9:11:3A:57:7B:43:3B
Authority key identifier: 0C:87:4A:5F:52:73:4E:26:0E:7B:FA:4D:45:11:4A:DD:92:77:E3:53
Certificate issuer: /CN=0c874a5f52734e260e7bfa4d45114add9277e353
Certificate serial: 0198D472D0D713591FB4D5209819B6A9289D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
Manifest number: 0835
Signing time: Sat 23 Aug 2025 01:02:31 +0000
Manifest this update: Sat 23 Aug 2025 01:02:31 +0000
Manifest next update: Sun 24 Aug 2025 01:02:31 +0000
Files and hashes: 1: DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl (hash: 6KSM4kY1uTi0Kp8W6sWCf+Vq76kifrdOTWj3QfF03KE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:d0:d7:13:59:1f:b4:d5:20:98:19:b6:a9:28:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c874a5f52734e260e7bfa4d45114add9277e353
Validity
Not Before: Aug 23 01:02:31 2025 GMT
Not After : Aug 24 01:02:31 2025 GMT
Subject: CN=55ff50ce322cf8d475f1632b46d9113a577b433b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:74:ab:f5:af:13:15:20:66:8a:38:2b:cf:d6:
57:4c:1f:7d:fa:69:5f:37:b4:a3:fd:c8:a3:91:91:
33:05:2c:ed:3f:d2:e0:43:a7:5a:f7:e2:90:00:7c:
3e:2f:43:02:32:a8:8b:99:83:41:38:47:11:f7:d3:
ff:35:24:13:30:01:f6:c6:b1:d4:2a:ba:ab:4f:25:
68:7b:b2:45:ad:49:b9:30:a1:67:c6:ff:2f:ca:11:
75:4e:9a:7f:c3:b7:d9:cb:82:aa:19:e5:d8:05:8f:
12:bf:ce:7f:64:3e:68:2b:3f:66:b4:e1:e3:5b:f1:
d1:50:8d:55:54:66:eb:b3:e0:57:92:dd:5b:9a:12:
b7:ea:86:ad:de:56:36:d0:5d:31:21:09:f6:89:c3:
8e:9f:55:fc:c7:82:6d:35:88:a8:7c:28:fd:45:f3:
32:e0:d0:a8:13:76:83:7b:c9:16:58:3c:93:81:d7:
c5:2c:29:ea:f1:6d:06:c2:72:a0:69:61:34:96:e8:
09:97:79:d1:af:fe:ac:7c:43:7d:10:85:ea:47:0c:
d9:4c:ad:2f:d0:fc:9b:9c:7e:70:e5:3d:f6:d7:b7:
0a:6a:6b:7f:6b:50:bb:0b:9d:e3:a2:85:dd:bc:19:
c7:5d:80:a5:ee:a1:53:74:fa:e2:14:3e:a4:a9:e6:
7a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FF:50:CE:32:2C:F8:D4:75:F1:63:2B:46:D9:11:3A:57:7B:43:3B
X509v3 Authority Key Identifier:
keyid:0C:87:4A:5F:52:73:4E:26:0E:7B:FA:4D:45:11:4A:DD:92:77:E3:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:47:bd:57:ef:ee:b4:07:e6:b4:6f:5e:5c:2f:70:23:84:7c:
7d:de:c8:91:ed:11:6b:3e:6f:70:9a:68:40:c0:b3:14:61:d6:
2b:e5:ba:06:71:b3:4c:a0:4e:44:f1:5d:62:2f:7e:57:dc:61:
fc:6b:0e:fa:7d:a8:9d:d3:f2:39:c5:02:fa:ec:25:f3:ef:ea:
1c:f6:35:53:ce:a6:0f:97:4c:f6:ae:cc:b8:33:c3:58:a9:82:
c5:13:94:5c:57:8f:87:30:00:93:52:0b:15:61:59:32:61:90:
05:16:63:40:4b:a7:65:f7:7e:e1:d5:1e:ee:6d:ca:9c:b4:ed:
9b:b6:b3:ed:f6:a0:43:e7:d1:09:19:f5:90:7e:10:f5:15:8c:
69:25:f0:80:bc:53:54:50:e9:84:6b:9e:52:a4:64:25:06:8d:
1d:96:a1:1f:93:3f:07:dc:2c:a1:94:f2:dc:7b:5d:b3:e9:e1:
34:27:de:27:38:a2:7e:2e:91:30:d6:27:86:bd:b7:41:5f:4f:
03:66:0b:65:70:7b:2c:82:9f:8c:f5:ca:d7:df:e8:67:8a:44:
a3:37:d6:21:d9:d0:91:08:69:f0:3d:23:74:41:2a:70:24:35:
43:9b:f0:30:8d:fe:d0:3d:5a:81:47:f3:9a:ec:92:ff:c8:e7:
f1:5a:e1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:29 2025 by rpki-client