Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
File: LdrykZbO5YxjJjDwK-69C1p1qdk.mft (raw, json)
Hash identifier: W8Rd3FKo4U4LL8FKmC2oEsaIO9gORYuWcr5nK49hCPg=
Subject key identifier: 74:B7:6B:22:8C:9A:55:A0:05:05:C1:C7:9F:19:26:87:1E:2C:04:97
Authority key identifier: 2D:DA:F2:91:96:CE:E5:8C:63:26:30:F0:2B:EE:BD:0B:5A:75:A9:D9
Certificate issuer: /CN=2ddaf29196cee58c632630f02beebd0b5a75a9d9
Certificate serial: 0197B88F37DC24BDFBFDC804568FC286F142
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdrykZbO5YxjJjDwK-69C1p1qdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
Manifest number: 45
Signing time: Sat 28 Jun 2025 22:01:22 +0000
Manifest this update: Sat 28 Jun 2025 22:01:22 +0000
Manifest next update: Sun 29 Jun 2025 22:01:22 +0000
Files and hashes: 1: LdrykZbO5YxjJjDwK-69C1p1qdk.crl (hash: gz+zf1G7sniJIMkN7+etW4w2kblBFW3Alb/HiJcRlRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/LdrykZbO5YxjJjDwK-69C1p1qdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:37:dc:24:bd:fb:fd:c8:04:56:8f:c2:86:f1:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ddaf29196cee58c632630f02beebd0b5a75a9d9
Validity
Not Before: Jun 28 22:01:22 2025 GMT
Not After : Jun 29 22:01:22 2025 GMT
Subject: CN=74b76b228c9a55a00505c1c79f1926871e2c0497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ba:29:ed:2a:57:9f:13:0b:28:97:b0:02:97:
e4:73:60:56:89:d7:74:c3:cd:7c:e1:d1:87:17:13:
c5:27:5c:d8:7d:6e:06:98:8c:cf:c9:f4:98:82:8e:
55:5b:fe:1b:34:bd:da:ff:2b:b8:a0:8a:70:5a:6a:
41:64:06:5d:b5:63:98:05:71:ce:a6:33:9c:08:93:
ea:d6:03:8c:94:c6:c1:01:9f:33:02:67:fb:37:59:
ea:42:4e:24:d5:84:ec:c1:5d:ae:b3:95:3d:70:03:
c8:d1:9d:7e:00:79:65:77:54:29:6e:b3:e8:a7:5e:
01:35:84:2c:fa:cb:65:0b:6a:d3:d7:71:d5:6c:c0:
e1:a3:48:b7:e3:e5:9f:75:00:2e:06:c2:e6:a5:7b:
8d:35:d7:af:35:28:27:b0:45:8e:e3:3c:87:2a:c4:
ca:c6:66:3d:3d:33:06:58:18:a3:30:20:8f:8b:53:
04:de:09:42:58:35:1b:47:d7:52:7d:c7:87:32:09:
19:4b:71:d6:a3:fe:43:72:fc:c5:1f:ed:5d:da:a0:
db:39:96:db:88:b7:41:95:9e:d2:47:88:4b:a9:43:
d1:1a:96:57:d8:3f:7a:3e:53:43:8c:f8:93:4b:82:
ea:2c:49:61:f7:ad:2c:ea:f6:13:ab:ef:c7:96:58:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B7:6B:22:8C:9A:55:A0:05:05:C1:C7:9F:19:26:87:1E:2C:04:97
X509v3 Authority Key Identifier:
keyid:2D:DA:F2:91:96:CE:E5:8C:63:26:30:F0:2B:EE:BD:0B:5A:75:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdrykZbO5YxjJjDwK-69C1p1qdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/01642e-c0ad-4bae-a545-8401952ac897/1/LdrykZbO5YxjJjDwK-69C1p1qdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:af:69:4a:6c:b5:0f:4c:09:20:0c:0b:24:51:40:e4:d3:25:
d0:5e:ff:d7:bc:01:8e:b3:a2:1b:d7:27:3f:6f:24:20:19:3c:
41:44:fd:51:35:ba:7d:d9:2c:21:70:55:9c:ba:87:78:26:1f:
4d:1f:ca:53:53:7a:ca:96:ae:aa:92:5a:97:ed:05:5a:1a:6a:
f6:1a:4c:40:45:10:ad:4b:bd:dd:e8:63:16:ef:84:99:0e:fb:
34:2d:d7:8f:26:64:17:33:ab:d3:f6:a3:cb:b9:b6:52:c6:87:
be:3b:70:3c:6b:56:68:73:e0:a3:ae:5c:0f:35:52:bc:44:c2:
f1:ce:2f:5f:c7:8d:36:76:65:f7:d9:fd:15:21:4e:50:47:ab:
30:ac:b2:e4:45:f6:aa:3c:70:3b:55:de:31:8b:cb:8c:06:34:
8b:fd:25:47:69:dc:6b:90:60:4f:9a:d7:0e:7a:08:51:42:72:
15:c8:dc:ad:40:37:0c:00:e0:e0:b3:58:52:e0:3e:7f:91:3b:
8d:74:6f:29:90:c0:42:d3:4c:d7:68:ff:fb:5a:7c:f6:d9:16:
8f:85:18:00:6b:54:d0:62:27:27:ae:32:1c:cd:56:ea:9b:d0:
c8:78:83:c2:67:37:02:1d:20:cd:6c:59:b8:fa:23:ac:3b:f9:
9a:84:7b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:26 2025 by rpki-client