Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
File: DY05iX3-Ia7thQlskKRzlvyknUE.mft (raw, json)
Hash identifier: xiTZe8eF9510PKXIZMa1d27Re4i7d6GQTpG3RXEtRGY=
Subject key identifier: 75:E6:82:9E:D7:6F:A8:3D:40:9C:31:C2:4E:E9:05:4D:66:9C:3F:00
Authority key identifier: 0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
Certificate issuer: /CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Certificate serial: 0198D474345F7061F86922758962ED57A131
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
Manifest number: 15D7
Signing time: Sat 23 Aug 2025 01:04:01 +0000
Manifest this update: Sat 23 Aug 2025 01:04:01 +0000
Manifest next update: Sun 24 Aug 2025 01:04:01 +0000
Files and hashes: 1: DY05iX3-Ia7thQlskKRzlvyknUE.crl (hash: PhdiJQ4+co3VHpJxl09/l9j1pNU/325ZwSoz5fJv+as=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:34:5f:70:61:f8:69:22:75:89:62:ed:57:a1:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8d39897dfe21aeed85096c90a47396fca49d41
Validity
Not Before: Aug 23 01:04:01 2025 GMT
Not After : Aug 24 01:04:01 2025 GMT
Subject: CN=75e6829ed76fa83d409c31c24ee9054d669c3f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:f7:0b:95:ae:f6:e4:1d:60:0e:12:45:6d:
2e:db:84:6d:84:2c:7a:59:f5:67:35:a2:ff:96:7b:
4e:bc:3a:2a:72:56:e9:60:5d:97:bb:31:d0:d0:6b:
63:7b:6b:bb:52:8a:5c:4d:25:6f:37:17:49:f6:93:
79:b4:12:d0:04:b4:d6:a9:bf:e8:af:74:24:09:5f:
23:9a:4f:53:14:d5:68:39:10:43:43:6c:39:0e:d4:
72:c4:02:74:68:4f:4d:6d:b2:0b:f0:b6:d8:6d:53:
3c:69:ed:d7:57:11:17:f9:b1:04:91:c9:ca:40:4a:
e3:64:ac:65:5d:63:ed:21:1e:a0:ed:aa:b6:fc:35:
a7:db:4f:4f:fa:b3:b5:76:2b:7b:e1:27:3f:a1:7c:
a8:d7:a5:d3:92:a7:55:21:0d:08:1f:fb:5d:e5:09:
31:c9:14:35:d0:ce:fb:83:dd:1f:2d:e5:5f:20:1e:
e4:b5:60:0f:c2:1a:29:e0:9b:44:9b:bb:e0:e9:ca:
55:95:b8:f1:43:75:62:e3:f1:fe:50:31:f7:1b:0d:
38:1b:5d:d7:b0:92:18:b4:a9:67:3f:0e:73:33:72:
bc:ce:64:c8:30:0d:97:4f:ce:88:c9:22:fe:6e:0e:
2a:88:ad:6b:28:cb:37:03:30:8b:87:2f:2b:63:17:
41:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E6:82:9E:D7:6F:A8:3D:40:9C:31:C2:4E:E9:05:4D:66:9C:3F:00
X509v3 Authority Key Identifier:
keyid:0D:8D:39:89:7D:FE:21:AE:ED:85:09:6C:90:A4:73:96:FC:A4:9D:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DY05iX3-Ia7thQlskKRzlvyknUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/508c68-a737-43a9-af10-be823109855e/1/DY05iX3-Ia7thQlskKRzlvyknUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:6c:20:68:d0:11:ca:68:e5:28:dd:72:a4:a2:87:07:51:b3:
ee:1a:77:5d:dd:76:38:c6:e1:8a:18:1f:2a:8e:81:71:37:db:
f9:b1:25:33:26:c8:94:0a:7e:c2:b1:09:53:ae:5f:41:c6:18:
f9:c1:3b:82:15:62:3e:f1:ab:33:26:a0:06:90:7f:5b:17:a6:
e3:26:d1:8a:30:2a:36:cf:25:52:d4:87:29:6d:d2:01:69:80:
20:cd:1c:3c:f2:35:ed:98:2d:00:71:01:f4:e7:3c:99:ef:b2:
4d:aa:19:d7:e5:6e:0f:27:69:d2:c7:4e:0c:99:33:db:e9:f2:
64:6c:1b:82:98:a9:6e:07:d5:24:a9:15:bc:28:b5:1f:8f:be:
f6:d7:a0:03:2c:18:a3:bb:23:92:69:12:12:69:2d:95:a4:f2:
28:06:91:73:9b:21:41:73:87:7d:53:98:c9:ca:e3:d7:a6:c3:
91:e9:71:83:61:94:d9:64:67:e7:cb:d9:38:73:9f:37:6c:63:
1b:2c:c4:08:1d:0e:0a:82:ec:c1:50:a9:29:11:0d:22:9a:15:
4e:03:78:a7:13:f7:44:fd:89:56:ba:58:c1:2d:f5:c4:5a:af:
ea:ea:bb:01:8c:27:7d:16:f2:ac:f0:45:2a:12:0a:e5:11:db:
69:0b:7e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:49 2025 by rpki-client