Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json)
Hash identifier: hIYuLPMWK7/4Po+5TRDgeZCpyRoe4k+SD1068zUPaLQ=
Subject key identifier: 4A:04:E6:E5:A9:0F:4D:34:00:46:8F:1B:2F:F3:D9:24:DE:5C:01:82
Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Certificate serial: 0197B6A13FDC88D6133B5B33B544C06A1C6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 13:01:50 +0000
Manifest this update: Sat 28 Jun 2025 13:01:50 +0000
Manifest next update: Sun 29 Jun 2025 13:01:50 +0000
Files and hashes: 1: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: obgf0Jj/nis3d/H1+mbXFRZ65Ik4Nd7QJZ4PwZ5AO4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:3f:dc:88:d6:13:3b:5b:33:b5:44:c0:6a:1c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1
Validity
Not Before: Jun 28 13:01:50 2025 GMT
Not After : Jun 29 13:01:50 2025 GMT
Subject: CN=4a04e6e5a90f4d3400468f1b2ff3d924de5c0182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:7a:c3:55:53:e3:92:13:b6:04:82:32:91:
33:a9:91:64:34:2e:7e:1a:e2:8a:87:24:04:69:8d:
86:c9:cf:fa:46:df:58:c6:0f:09:6e:2e:90:dc:2e:
69:07:96:89:6c:54:83:4e:1d:c3:4d:2f:65:ae:17:
00:c9:5d:a5:90:71:b4:02:82:48:11:a4:af:b9:e2:
b0:a5:60:17:83:fb:e5:da:03:d7:b3:1e:2e:13:ed:
6c:b7:f8:94:9c:cf:38:ce:92:5c:76:50:89:5b:02:
35:fa:71:7e:bd:21:20:ba:a5:27:e9:ae:ad:ee:fe:
9a:f9:74:f0:ea:fb:09:7c:97:c4:9f:bb:e2:bc:10:
d0:1a:c6:96:bb:32:95:20:d3:6e:f4:6a:e3:c6:6f:
f0:b1:01:d7:ad:ec:18:e2:5f:08:7a:89:31:5d:ae:
a2:14:46:3f:a7:76:35:fa:76:24:da:dd:29:a0:17:
fd:c9:e5:6f:ef:d7:f8:b0:40:ce:d6:c6:de:83:37:
93:cf:42:6f:15:8d:59:33:a1:fc:c7:35:3c:01:1b:
77:44:f8:35:0c:3f:95:04:e9:c1:ad:51:ae:0d:17:
fb:a5:46:03:b4:b5:34:37:70:96:fd:7a:8e:dd:0f:
78:be:98:33:39:c8:13:4f:c2:12:1c:d4:4f:97:70:
1c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:04:E6:E5:A9:0F:4D:34:00:46:8F:1B:2F:F3:D9:24:DE:5C:01:82
X509v3 Authority Key Identifier:
keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:b5:10:59:6a:61:c8:fc:f8:d7:60:d8:c6:c3:6e:c6:84:3a:
f8:c0:6a:cc:d8:12:8b:b3:8e:64:35:08:6d:ee:f9:cd:47:a7:
bf:79:6d:32:a9:cb:d3:19:f8:ca:57:a5:7c:6e:47:64:0a:38:
7c:44:b2:0b:20:b7:a4:1f:b4:e5:fb:c3:28:63:20:4b:ea:53:
c8:9c:ed:87:40:79:79:56:e7:85:1d:b3:0e:1d:19:6f:f8:72:
d1:99:17:3e:6f:3c:e5:b2:0a:41:bb:16:56:f4:49:0a:07:21:
28:4c:fb:66:40:b9:d1:3b:c2:6f:9b:73:b3:10:b1:fa:53:63:
b6:80:e0:31:76:2d:3e:13:45:ca:6f:de:07:6b:cc:70:0b:dd:
cd:1a:7c:05:fd:18:20:f5:3f:ed:cd:35:76:e9:0d:9e:42:39:
a8:b6:56:4c:d3:0a:96:bf:32:b3:c6:74:18:6f:84:10:be:ed:
e5:30:64:80:ec:1f:82:7c:67:b1:0f:c9:53:8b:71:1e:32:45:
d4:e4:cf:18:d2:72:23:77:ea:10:15:3b:e9:b8:7c:f1:b4:f1:
93:bd:83:2b:42:58:a4:7c:b4:b2:24:82:c8:21:f8:f0:16:80:
96:e5:5c:6e:5c:c1:d3:f1:aa:6f:79:af:f1:d9:eb:28:71:2b:
38:ae:56:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:46:06 2025 by rpki-client