Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
File: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft (raw, json)
Hash identifier: /x/eOYO2H3+qb7sDeClhS50ahFYmV/fkpieWFn58nYU=
Subject key identifier: DB:A3:E3:36:3D:89:D8:69:1E:74:5C:80:06:A1:6D:04:06:E3:F1:73
Authority key identifier: 0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
Certificate issuer: /CN=0d333f72d9e294543825be63729f8034a4517090
Certificate serial: 0196A6F851FB779559026CC90BDE0F8AF696
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
Manifest number: 091E
Signing time: Tue 06 May 2025 19:00:13 +0000
Manifest this update: Tue 06 May 2025 19:00:13 +0000
Manifest next update: Wed 07 May 2025 19:00:13 +0000
Files and hashes: 1: DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl (hash: MFnIsvWV/o0PEQw0mC8rLMIP9rhYEoRZnY6IPly79/s=)
2: IoDHlDbNXO3jlcqfipIcULBON5A.roa (hash: KOgCTDaSahbElR1Ol4oBVrEjOtYhS4W0VzXtKth8BeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a6:f8:51:fb:77:95:59:02:6c:c9:0b:de:0f:8a:f6:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d333f72d9e294543825be63729f8034a4517090
Validity
Not Before: May 6 19:00:13 2025 GMT
Not After : May 7 19:00:13 2025 GMT
Subject: CN=dba3e3363d89d8691e745c8006a16d0406e3f173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:84:ed:29:a5:71:8c:a4:b3:b0:c4:fa:6a:df:
4e:73:6c:ba:8b:b4:92:5b:6d:8c:d0:b7:5c:54:a3:
d0:65:e3:5c:dc:ae:5a:11:6d:85:17:36:45:70:2f:
40:13:4f:e8:89:bc:ed:2b:d6:5e:8a:92:a9:cb:0b:
cc:6c:c8:ca:84:6f:e3:b1:1d:52:fd:36:00:3f:13:
b0:5e:9a:3a:f9:7e:9a:f4:62:a3:4d:f0:20:18:64:
68:7d:b9:6d:33:9d:76:0f:ae:e7:66:46:1f:39:d6:
59:3d:50:bd:93:9e:cb:db:3a:9d:57:16:92:bd:e8:
eb:a9:75:63:0d:74:bf:46:fd:2b:39:ab:81:b5:9c:
09:f6:0f:0c:c8:67:35:1a:a2:aa:91:d4:55:fa:db:
b6:df:2d:eb:b0:7c:54:df:85:b1:17:7a:f7:19:95:
90:5f:b7:0f:02:dc:6d:bd:6f:cd:a0:37:70:1c:9a:
17:db:2e:a8:7d:0f:8a:cf:80:80:a5:af:2d:d0:f9:
33:08:bc:0f:d3:52:f9:c0:d2:cd:cb:d3:22:ea:0e:
00:e4:cc:83:ef:79:24:a8:97:74:24:03:a3:73:7e:
f9:9f:6f:24:a8:54:c2:55:d9:fb:22:89:88:bd:93:
85:57:f0:a7:bc:5c:61:0c:d5:ff:4d:52:53:df:cf:
a0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A3:E3:36:3D:89:D8:69:1E:74:5C:80:06:A1:6D:04:06:E3:F1:73
X509v3 Authority Key Identifier:
keyid:0D:33:3F:72:D9:E2:94:54:38:25:BE:63:72:9F:80:34:A4:51:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/65fea2-a3d9-492f-8e44-894dfa5df017/1/DTM_ctnilFQ4Jb5jcp-ANKRRcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:a6:bc:83:27:3f:1d:9d:48:8d:68:73:4a:d5:0b:d0:2e:e9:
77:e6:5c:09:28:69:8a:aa:ca:45:dc:e6:c4:35:e9:ba:34:de:
a3:55:de:b3:ee:49:dc:1b:62:23:dc:13:96:91:fd:2a:4d:e6:
82:b5:30:20:ad:98:ca:65:b4:cf:25:c4:0a:98:24:77:dc:f3:
d5:e1:68:0e:c4:59:6c:39:19:03:11:18:41:5e:7c:88:bb:a2:
67:cb:f9:7b:2d:1d:06:50:9b:08:f3:26:ee:80:fb:78:12:9b:
3f:ff:9b:7b:ca:b8:c3:ae:3a:d1:b8:12:ad:46:f1:18:8b:ea:
bc:5a:66:df:e1:1a:e9:c8:82:8b:23:fa:65:b7:3a:b9:22:40:
20:2f:ab:df:d2:95:81:52:86:db:aa:96:b6:81:b6:97:4f:08:
9e:88:06:ce:d1:be:1d:c2:55:39:a7:fb:f1:35:90:9f:93:e0:
5d:67:c1:ec:16:24:89:53:63:8d:19:32:78:78:5f:fe:ca:e3:
e5:6a:9b:3d:37:29:4a:63:f5:c3:34:c6:4f:e0:dc:da:f6:cf:
90:bd:4e:8d:e7:cd:6f:a1:22:ff:b9:e6:5f:00:8b:7f:c8:ec:
dc:0c:6f:b6:94:f4:e3:8c:fe:08:b3:40:24:98:ea:da:96:05:
62:51:78:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 23:41:38 2025 by rpki-client