Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
File: DpgibNz3QdzIpCplmos94hmBiPk.mft (raw, json)
Hash identifier: 5wgKNAQIFUjLwvhYFVLOxTBGJ8AGBW9JJ1Wqu2A6j00=
Subject key identifier: B7:3E:FC:6C:DC:4E:94:E7:44:86:98:C0:CA:EC:0A:F1:4C:2E:56:16
Authority key identifier: 0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9
Certificate issuer: /CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9
Certificate serial: 0197C8DE50F349B8A86774F92C3922AE6242
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
Manifest number: 12C2
Signing time: Wed 02 Jul 2025 02:01:42 +0000
Manifest this update: Wed 02 Jul 2025 02:01:42 +0000
Manifest next update: Thu 03 Jul 2025 02:01:42 +0000
Files and hashes: 1: C9YabYyYTwF76KS0OdJKS7svqe8.roa (hash: OaSH1c1TCgLCLOEvTQ5fN3rE7i93/Zx2eO7IyYukR98=)
2: DpgibNz3QdzIpCplmos94hmBiPk.crl (hash: xwKRKk/JHDIrLNIACo1Ts226CxcG2R9+ioucVU1gr6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:de:50:f3:49:b8:a8:67:74:f9:2c:39:22:ae:62:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e98226cdcf741dcc8a42a659a8b3de2198188f9
Validity
Not Before: Jul 2 02:01:42 2025 GMT
Not After : Jul 3 02:01:42 2025 GMT
Subject: CN=b73efc6cdc4e94e7448698c0caec0af14c2e5616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:44:dd:40:a8:c0:6b:a5:b5:90:d4:06:68:e5:
ce:c1:8d:7c:fe:4d:a8:fd:fc:6f:bf:de:5d:94:1e:
14:be:96:b4:3a:c1:f5:71:7e:ec:02:92:e7:b2:1f:
52:24:48:a2:46:c1:ea:02:22:ae:79:84:af:fe:a4:
76:bc:67:cc:af:e2:8d:6e:1f:77:71:ef:5c:38:42:
b4:c5:21:e8:a7:a1:4b:d2:9e:d8:ef:df:99:56:20:
35:14:f9:7b:31:75:cd:86:8c:b0:bc:64:a7:87:d3:
e8:e8:0c:0e:01:40:70:fd:f6:89:b0:de:28:3b:3d:
33:c7:8c:33:74:8f:33:71:35:d9:2d:77:7a:8c:38:
8c:89:0e:af:b1:24:7b:63:c1:2e:90:d0:ea:29:3a:
3a:13:4b:8a:73:39:2c:98:ab:c2:b2:7d:e3:86:fa:
52:17:69:d5:4c:55:a1:ac:19:3c:0b:e9:f5:56:f2:
c8:3e:ed:5d:b6:8a:da:c6:72:e2:02:10:76:15:41:
62:ce:62:c2:7c:7b:a5:62:fc:99:6c:1a:ea:16:cc:
ef:3f:b1:90:09:41:ec:f8:ce:4d:2e:70:b5:2c:40:
06:1e:5e:ce:d9:94:8c:3d:aa:9d:1f:6f:04:41:58:
42:30:b1:03:82:a6:bd:e1:af:40:6c:3b:a8:17:3d:
97:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3E:FC:6C:DC:4E:94:E7:44:86:98:C0:CA:EC:0A:F1:4C:2E:56:16
X509v3 Authority Key Identifier:
keyid:0E:98:22:6C:DC:F7:41:DC:C8:A4:2A:65:9A:8B:3D:E2:19:81:88:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpgibNz3QdzIpCplmos94hmBiPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/79024d-5b45-4ef4-b528-e9c7b5506e55/1/DpgibNz3QdzIpCplmos94hmBiPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:46:b1:ba:8b:5a:80:e4:bb:e8:ae:74:0d:f6:07:1f:6a:b0:
b3:3a:2a:9d:7e:92:91:c0:f8:6c:49:bb:c5:8f:bb:79:00:2d:
84:d7:fc:0b:e1:89:5a:78:b2:62:90:e0:e5:15:8a:7b:9b:64:
3f:e2:31:c4:42:4d:e5:fc:5f:8e:0f:ad:7a:dd:ee:60:74:0d:
09:dd:82:57:ec:f9:88:20:39:2d:66:93:8e:0c:76:e3:15:44:
28:03:ae:f2:af:c3:ef:65:ff:91:a5:98:ee:92:49:ef:9f:c2:
bd:78:eb:30:54:f3:38:9e:f6:41:60:ab:17:40:ab:de:fe:32:
0c:72:96:d1:0e:94:6b:31:28:05:5a:22:23:36:4b:62:80:e3:
6d:cb:0f:5a:c3:b0:d0:4a:97:86:0b:58:92:f8:05:34:7c:58:
38:55:b3:ed:da:07:7d:b5:12:96:97:d5:3f:fc:4f:67:87:c8:
b3:22:f3:67:48:cb:c4:a6:b8:2c:28:a4:8c:27:5e:a9:4f:41:
0b:35:2d:3a:a6:73:1d:31:1f:7f:21:3c:c0:57:b0:7f:3b:cd:
a9:5a:7c:ff:50:a3:c1:89:e8:84:a3:11:68:75:14:10:fd:19:
38:2e:60:fd:8e:a4:50:38:6a:73:67:8c:3d:76:79:a3:4f:85:
f6:29:b1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 10:30:47 2025 by rpki-client