Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
File: dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft (raw, json)
Hash identifier: 6bprTeYVYEVYoajaOewp7B2aB5UquUotlwpbr/mVH7I=
Subject key identifier: 87:C4:9E:31:CC:19:43:89:23:90:6A:E2:06:51:7A:84:C6:F6:0F:A9
Authority key identifier: 76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
Certificate issuer: /CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Certificate serial: 0196DF67CB118634745EEEC804D6E0ACDF05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
Manifest number: 1290
Signing time: Sat 17 May 2025 18:00:43 +0000
Manifest this update: Sat 17 May 2025 18:00:43 +0000
Manifest next update: Sun 18 May 2025 18:00:43 +0000
Files and hashes: 1: P5ZnswUpMLyVjWj9pVZS-hlIw7A.roa (hash: 3hJsA3Q3EQecJR3hJHgLTYYEIcnWflx0DcKeSfNvhRM=)
2: dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl (hash: R+pnOoq9Y0U+I4AVjx7cCyOLDbjJmxihwZ8Oys8D/B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:df:67:cb:11:86:34:74:5e:ee:c8:04:d6:e0:ac:df:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767bc02a5859623f563ea84a6bb0a2920d5b3e91
Validity
Not Before: May 17 18:00:43 2025 GMT
Not After : May 18 18:00:43 2025 GMT
Subject: CN=87c49e31cc19438923906ae206517a84c6f60fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ef:23:b5:5e:9a:56:e3:18:c4:e4:98:19:1a:
d9:e6:2c:7f:93:1d:00:94:b6:46:20:42:92:9f:56:
a0:77:3f:0f:d3:58:ab:07:03:04:03:f2:1f:06:13:
10:6f:e2:f4:77:7a:b1:6d:dc:35:e8:e3:fe:4c:8c:
cc:09:17:88:1f:a4:c1:2e:57:ad:6f:e1:64:85:41:
bc:19:ec:56:90:93:9b:1a:ab:7f:e3:3b:2a:c1:d1:
61:f3:8d:04:01:58:c1:72:78:a2:16:4f:24:4c:b3:
6d:c3:27:89:27:d5:ff:6b:c4:99:b5:e5:8b:1a:07:
83:62:c7:61:56:58:7e:b1:14:32:06:99:b9:8d:77:
43:ba:13:e1:ba:c7:3c:24:3f:f9:2c:a9:1c:d9:64:
10:7b:53:59:09:9b:c7:49:94:f5:6a:e1:bd:69:63:
53:92:0d:60:73:f8:9f:fd:2b:2e:25:1f:26:61:5b:
df:3f:98:e4:9e:a5:d1:55:7b:64:43:c4:fc:84:b9:
6a:34:64:11:43:a0:d3:6e:58:cc:12:d4:b5:d6:10:
28:55:44:99:1a:2c:a7:08:df:84:3b:34:ed:2f:95:
c6:f0:bd:18:40:c3:e0:22:60:93:b3:9a:cc:af:f0:
b9:db:a1:fe:6f:09:36:24:26:8a:9e:2a:52:1c:dc:
3d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C4:9E:31:CC:19:43:89:23:90:6A:E2:06:51:7A:84:C6:F6:0F:A9
X509v3 Authority Key Identifier:
keyid:76:7B:C0:2A:58:59:62:3F:56:3E:A8:4A:6B:B0:A2:92:0D:5B:3E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnvAKlhZYj9WPqhKa7Cikg1bPpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/cdabc4-bae5-4d99-9e17-6815548bf33f/1/dnvAKlhZYj9WPqhKa7Cikg1bPpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:7d:9c:ee:cb:ea:64:72:d6:cd:11:5a:5a:10:45:79:d6:fb:
63:40:af:bf:98:61:02:80:c8:ce:6d:fa:a3:8d:69:16:16:8e:
4b:ec:84:42:67:76:81:54:f7:a3:a7:1b:5a:f7:13:da:26:7f:
ed:72:9f:ea:b7:68:80:31:63:4c:42:17:e5:f5:10:96:f3:03:
7f:bb:74:5b:6f:85:12:75:79:0b:c8:c3:77:27:8a:09:f3:a7:
19:ef:2d:a3:75:6d:c9:0e:af:57:6b:22:09:d8:32:60:f9:a1:
2c:59:4f:4c:8c:3c:85:2e:5b:6f:12:9d:2f:33:0a:8e:cb:11:
c3:20:fc:75:c7:9d:52:e6:08:92:0f:87:cb:79:48:69:32:87:
c3:2d:41:22:41:2f:f9:45:08:b6:14:2f:33:cd:c9:b8:1c:a0:
fc:bf:cd:e2:11:cb:e4:9a:4b:20:79:04:c0:1f:91:a1:28:56:
d3:fb:2e:88:49:2a:71:3c:f9:de:ec:66:b9:90:09:48:63:a9:
f7:b2:1e:0a:23:77:66:cc:3f:10:d1:cb:52:5b:2c:5e:dc:cc:
19:a9:b2:6a:6e:e4:0b:b2:ec:c2:74:c1:10:32:59:55:27:13:
e2:66:f2:e3:62:64:5a:f4:c4:07:a2:92:25:50:0a:76:e8:af:
56:68:2b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 22:32:55 2025 by rpki-client