Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
File: dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft (raw, json)
Hash identifier: m1+bHX1eV4jf71W/GAVAQwes+iw0/IezOQKQAlfq8IM=
Subject key identifier: DC:68:F2:D1:25:47:B5:B8:4B:9F:8C:C6:34:E7:00:DD:86:42:F7:65
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 0197B7EA62BDA0EA75A3B9E9B3EB9AE92F00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
Manifest number: 0D53
Signing time: Sat 28 Jun 2025 19:01:20 +0000
Manifest this update: Sat 28 Jun 2025 19:01:20 +0000
Manifest next update: Sun 29 Jun 2025 19:01:20 +0000
Files and hashes: 1: aRphps94ueev9_cb0Fbr1t6EWos.roa (hash: qY/6yr4D72wfd0je0UgbA5pXBnLSwy4IbEDXkYKHi6c=)
2: dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl (hash: hzkviyRZDWPboliw/Y3pBLQzRNbjD2rzdc3HK9ZuPSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:62:bd:a0:ea:75:a3:b9:e9:b3:eb:9a:e9:2f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: Jun 28 19:01:20 2025 GMT
Not After : Jun 29 19:01:20 2025 GMT
Subject: CN=dc68f2d12547b5b84b9f8cc634e700dd8642f765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0e:24:ac:b6:90:7e:62:30:7c:65:c9:fe:a1:
6a:90:76:bc:ee:e1:64:03:86:09:69:d5:cf:4c:74:
e6:50:61:53:2f:0c:b6:c7:b0:ff:b6:ac:a4:8c:5d:
6d:df:60:b0:70:7f:7b:6c:e9:63:13:0e:6f:5a:b6:
1f:a0:ec:be:c8:24:04:74:58:b1:2e:29:15:88:86:
e6:42:4b:d5:2b:e8:42:19:19:6c:ce:ec:aa:61:31:
86:38:f7:f1:49:ee:0e:e9:46:b1:3b:7c:ac:e5:14:
27:aa:ff:ca:06:9a:16:0b:74:ea:d3:4f:55:0e:76:
b6:5e:61:5d:ea:ab:8f:78:7e:e1:ac:79:b5:4d:3e:
ab:e8:56:d3:b8:69:06:7c:01:02:d3:72:a0:ce:6d:
4d:54:60:6d:2d:05:db:a8:44:4f:ce:c9:59:3e:75:
a9:d0:af:19:d9:4b:37:1e:54:31:7d:a7:97:2f:4a:
5c:c5:0e:6d:b7:49:fd:84:e1:6a:8d:93:53:16:0d:
50:cf:ca:0c:80:40:39:0c:a6:54:51:84:63:e1:b1:
d1:21:ec:0e:46:e9:d8:e9:a1:46:e2:4e:fb:17:b7:
dc:46:96:86:13:38:9b:d8:34:95:3a:a0:61:aa:57:
e6:e0:8e:a5:f5:5f:f3:78:37:ca:1b:26:51:2e:b5:
1f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:68:F2:D1:25:47:B5:B8:4B:9F:8C:C6:34:E7:00:DD:86:42:F7:65
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:34:b8:a0:45:32:c3:21:19:cc:e9:e3:e7:b1:27:c4:23:a2:
63:47:33:7c:ee:4b:b8:9b:c7:38:68:d9:74:ea:6f:15:15:9e:
fd:50:85:a3:41:ab:91:2f:f7:e9:67:b5:0a:84:a3:cd:5b:47:
09:0b:05:ce:e4:a8:62:4f:94:5a:f3:91:f0:b8:41:d5:ef:c3:
54:45:14:f2:ec:9f:d3:92:87:09:34:b4:0e:da:5c:c2:f0:ee:
89:24:b7:b7:00:cc:05:79:19:c6:4e:ce:ac:de:33:41:64:d3:
b2:42:d5:68:9d:c4:aa:0f:df:ac:16:aa:c9:c8:c3:7d:62:12:
99:00:c4:6f:91:70:a5:f4:6a:3f:39:6b:c2:9e:39:99:c5:85:
87:b3:ae:e8:10:dd:5a:1d:a7:20:d8:8e:0f:7e:13:86:6c:9d:
67:d0:8d:03:aa:bc:93:09:5e:4f:61:7c:a5:bc:6d:b9:d1:0f:
db:3e:ec:86:f4:11:7f:80:5d:53:8b:e4:32:8c:e1:2a:aa:70:
e1:67:a8:a9:8f:39:fd:c2:75:d7:92:fd:51:08:bd:9c:9f:bb:
fc:76:13:10:0e:b6:19:c1:10:3b:7e:13:de:ec:20:f9:a1:0b:
43:4d:f9:9d:36:7d:67:f6:45:33:8c:29:49:37:f3:82:59:42:
73:61:55:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:35 2025 by rpki-client