Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
File: DpgibNz3QdzIpCplmos94hmBiPk.mft (raw, json)
Hash identifier: +gt7VZBs3ITjb7iJbouMYOGDzL6ie+eqUj/ujX9vUsU=
Subject key identifier: 45:19:71:7B:F2:4A:B4:75:A2:BA:CC:DA:60:92:F7:13:A4:16:83:94
Authority key identifier: 0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9
Certificate issuer: /CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9
Certificate serial: 0196D39AB229F1CC5194680D5637010ABA12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
Manifest number: 1243
Signing time: Thu 15 May 2025 11:00:52 +0000
Manifest this update: Thu 15 May 2025 11:00:52 +0000
Manifest next update: Fri 16 May 2025 11:00:52 +0000
Files and hashes: 1: C9YabYyYTwF76KS0OdJKS7svqe8.roa (hash: OaSH1c1TCgLCLOEvTQ5fN3rE7i93/Zx2eO7IyYukR98=)
2: DpgibNz3QdzIpCplmos94hmBiPk.crl (hash: bLfLvtDBQsRpa+IVBWjJ+O9Ds0HG5OI4qvq8b06i3rM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 11:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:9a:b2:29:f1:cc:51:94:68:0d:56:37:01:0a:ba:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9
Validity
Not Before: May 15 11:00:52 2025 GMT
Not After : May 16 11:00:52 2025 GMT
Subject: CN=4519717bf24ab475a2baccda6092f713a4168394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:be:a4:83:2b:b3:b5:73:b9:24:3f:9a:1d:fe:
e4:fb:68:4c:27:ad:b2:cb:cd:2c:04:90:27:8f:fc:
fc:f3:35:4e:53:da:af:2c:e5:81:df:cb:30:52:51:
f1:06:a7:d9:8b:d1:3e:97:b4:6e:a3:af:18:44:b8:
1c:bf:4f:e4:47:06:a1:07:ab:bc:b2:9e:5d:3d:80:
a9:ef:9d:e2:08:63:a8:6e:30:fd:2c:aa:2b:ec:d5:
cc:01:ba:59:58:39:a1:8a:9b:7c:d3:65:68:9b:bc:
e4:10:27:ab:99:5d:ed:f3:f1:7b:3b:6e:df:32:3a:
40:2a:a7:c8:61:2a:4d:86:8f:6a:e6:da:ab:d9:44:
8c:fc:79:06:23:6d:8b:fe:32:70:1e:79:fe:2f:38:
95:01:0c:22:ba:e1:d0:e1:a8:c0:22:39:05:6f:cb:
31:54:bf:32:6b:33:58:21:6e:d8:fd:57:98:3c:50:
b6:09:cb:ca:02:89:18:ae:88:ba:74:ac:72:1f:00:
3c:8b:92:4b:47:cf:ee:a3:27:3b:e5:8a:6f:c6:ac:
9a:cb:f8:a7:df:4f:6a:56:88:29:27:c6:84:5b:d2:
75:c5:3f:9c:e3:f0:57:11:82:b6:ee:c4:5d:21:5d:
50:ce:b1:b2:46:3e:bf:14:bf:69:69:a7:ad:44:9b:
51:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:19:71:7B:F2:4A:B4:75:A2:BA:CC:DA:60:92:F7:13:A4:16:83:94
X509v3 Authority Key Identifier:
keyid:0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:fc:81:3f:45:34:5b:ac:cb:64:0f:1d:a8:a9:b5:63:1a:39:
00:95:5a:ce:08:60:8a:04:74:78:1a:ed:36:f9:e2:e6:73:1c:
e9:00:d2:3c:fd:16:d7:31:ab:69:eb:9f:a4:2d:4e:d3:64:c4:
ee:23:1c:a7:07:b3:c0:f5:41:43:40:c6:07:91:8d:e2:e5:36:
e9:5e:07:46:14:fe:7c:a2:9a:d5:c3:98:1f:74:55:99:ef:a7:
bf:85:b7:de:b6:6b:6f:0d:f2:05:b4:a7:28:cd:f4:ce:14:0c:
d3:05:e0:92:2a:06:49:b2:86:9f:1a:53:c2:62:54:8c:5e:4c:
18:fc:19:3b:94:37:dd:ab:39:64:7a:9c:c5:bb:e8:4c:09:f8:
ed:de:30:51:dc:90:96:fb:3e:97:38:6c:fc:05:16:2b:da:bd:
82:a9:d3:93:86:6e:cc:34:1c:56:03:ce:f0:a2:af:72:fc:4e:
64:10:6f:75:14:b2:e3:e0:2d:ae:7e:ba:29:9d:38:46:e9:c4:
93:72:2c:84:06:01:8a:57:47:57:c3:31:fa:f7:b2:bb:bc:4c:
f9:87:97:ae:ff:70:91:b7:eb:d5:ed:e7:45:66:b9:60:35:7e:
3d:8c:46:42:6c:35:d7:ce:76:e0:9b:e5:74:f8:a0:ff:21:5e:
be:cc:9b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 16:55:38 2025 by rpki-client