Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
File: dvLzQc-Yuei0bt04mkgGTHuub5o.mft (raw, json)
Hash identifier: 5URI7N/KCx98sVE3DYBCx/KsConAvOWDCwUlONu7cwM=
Subject key identifier: 1D:CF:13:44:E2:9B:67:7C:8A:F6:6D:FA:1A:3B:9C:A7:0B:23:79:77
Authority key identifier: 76:F2:F3:41:CF:98:B9:E8:B4:6E:DD:38:9A:48:06:4C:7B:AE:6F:9A
Certificate issuer: /CN=76f2f341cf98b9e8b46edd389a48064c7bae6f9a
Certificate serial: 0197D398E73AA755C46246594C7E2F235D18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dvLzQc-Yuei0bt04mkgGTHuub5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
Manifest number: 0DA7
Signing time: Fri 04 Jul 2025 04:01:42 +0000
Manifest this update: Fri 04 Jul 2025 04:01:42 +0000
Manifest next update: Sat 05 Jul 2025 04:01:42 +0000
Files and hashes: 1: dvLzQc-Yuei0bt04mkgGTHuub5o.crl (hash: PgcP7KtGiVXRE8O9/pfbTAme1KHuNtXe3XQ6FhbLjUk=)
2: pLFGIGuwO6p3VXl7848DpqUCykE.roa (hash: cQnY5M6yFrvUehgYlIPw55V4Prm/y9EByLYSiv2JqLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dvLzQc-Yuei0bt04mkgGTHuub5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 04:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d3:98:e7:3a:a7:55:c4:62:46:59:4c:7e:2f:23:5d:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76f2f341cf98b9e8b46edd389a48064c7bae6f9a
Validity
Not Before: Jul 4 04:01:42 2025 GMT
Not After : Jul 5 04:01:42 2025 GMT
Subject: CN=1dcf1344e29b677c8af66dfa1a3b9ca70b237977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:08:f4:b5:d3:a5:42:12:cc:17:aa:60:eb:4e:
f3:4d:dc:a2:0e:d6:a0:52:0c:41:f3:2f:0f:09:a6:
4d:cf:a3:b2:aa:9e:b8:07:3f:00:8a:8f:03:da:6b:
fd:f4:73:b9:d7:08:60:75:57:88:6f:f0:35:fc:f2:
eb:4a:81:c4:d2:2e:89:b1:74:4f:44:6c:8b:b4:69:
58:64:e4:12:89:db:3c:17:60:57:d2:41:d8:b9:60:
f4:6e:5f:94:fc:db:be:e7:76:2c:64:e4:0d:7c:34:
eb:ad:06:85:0e:34:d2:4c:c4:33:da:2f:d1:8a:5d:
0f:52:ac:84:85:e3:d5:22:59:66:80:35:5d:b8:51:
84:88:f5:77:2d:e7:1d:54:22:28:28:9c:0e:de:78:
e5:fc:81:31:8f:93:09:4f:cb:3e:c9:25:5e:e5:c1:
db:81:f7:da:e5:80:2a:ec:87:de:91:54:cf:65:9c:
92:a3:d6:e5:c0:8f:6a:65:02:12:ea:d8:a5:51:e1:
02:fa:f9:22:72:c8:fb:b8:7f:7a:cb:20:da:e2:da:
d4:29:a2:6e:ca:46:f6:50:73:0f:af:f0:aa:74:77:
ac:1e:07:5f:5f:4e:82:f3:7b:c8:15:7e:b5:41:60:
75:bf:07:dd:65:2f:a9:11:81:cb:cf:2c:7f:98:ec:
73:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CF:13:44:E2:9B:67:7C:8A:F6:6D:FA:1A:3B:9C:A7:0B:23:79:77
X509v3 Authority Key Identifier:
keyid:76:F2:F3:41:CF:98:B9:E8:B4:6E:DD:38:9A:48:06:4C:7B:AE:6F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dvLzQc-Yuei0bt04mkgGTHuub5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/1e334d-98b5-47b9-b4fd-29f71ee1791d/1/dvLzQc-Yuei0bt04mkgGTHuub5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:87:05:9e:03:d4:84:0c:af:0a:73:c0:f0:91:11:95:77:55:
bd:6f:7e:b1:90:c1:cb:12:98:c8:33:02:7a:cf:72:d9:73:b8:
6b:fa:a4:4c:44:95:c6:ce:63:53:38:51:78:47:9e:94:d0:f5:
97:af:ce:03:e6:90:da:38:b2:c9:17:25:ee:1c:4c:cd:f0:fe:
1d:03:58:4e:6f:4a:73:3f:58:52:37:3c:38:1f:1c:9d:18:19:
f7:d0:85:7e:fe:77:59:96:31:d3:12:fb:dd:90:c1:17:3e:27:
1a:36:54:4f:39:9b:ad:5b:60:93:84:73:df:27:f3:6c:3d:f6:
79:14:12:7f:6b:8f:83:8e:72:e9:a5:de:46:87:81:9a:f5:d9:
d6:31:77:5c:cb:34:71:6d:3a:e1:1c:53:70:5d:60:8b:c9:8b:
9d:8f:b3:c6:4f:52:3f:e1:67:e2:ab:ed:a5:ef:94:36:31:31:
eb:87:c6:41:0c:a2:24:ca:bc:bf:a4:37:80:16:73:37:ad:3b:
72:df:9c:ac:73:07:46:98:64:e4:00:39:eb:ad:b8:ea:dc:7c:
a8:cc:d5:6a:a1:3a:11:a6:ca:13:79:61:21:a8:7f:1d:f4:b7:
87:b0:a9:0b:02:6b:e4:29:99:e8:07:3e:68:b7:25:ef:0a:2c:
2b:2a:75:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 13:38:12 2025 by rpki-client