Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json)
Hash identifier: bTROgFC/sUY+FxkYPSKPvsNr2yLGMeFiEJRvq947+IA=
Subject key identifier: F3:8B:35:72:46:14:05:F9:E8:F6:48:A2:53:9D:18:63:8E:D4:E7:3B
Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Certificate serial: 0197C614F0B77743BD64CF42AACC6953D217
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
Manifest number: 12F9
Signing time: Tue 01 Jul 2025 13:02:30 +0000
Manifest this update: Tue 01 Jul 2025 13:02:30 +0000
Manifest next update: Wed 02 Jul 2025 13:02:30 +0000
Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: XgI9DM/HGfoFIeiN5YCGbNIn0qVVVsgz9kwQNw+HdD0=)
2: WGiFR-bGPm6J5ZNuq_i5kJB6Nzw.roa (hash: 74v2TFsnggZrqZFnVMwJ7ZEDqgCLlK+dkXL3Ua1EXV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 13:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:14:f0:b7:77:43:bd:64:cf:42:aa:cc:69:53:d2:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Validity
Not Before: Jul 1 13:02:30 2025 GMT
Not After : Jul 2 13:02:30 2025 GMT
Subject: CN=f38b3572461405f9e8f648a2539d18638ed4e73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2c:2e:18:b4:08:d0:88:4d:51:5d:d1:7c:38:
7e:5f:b3:cb:b5:4a:20:37:74:b4:9d:be:9f:14:bc:
77:ef:35:49:25:45:4b:ba:11:d2:8b:94:d0:82:fa:
67:a5:62:e5:c6:82:3f:29:83:a9:33:90:a8:12:7b:
09:81:23:f5:75:56:43:69:20:f1:16:e0:d2:b2:d0:
c1:8e:50:0f:5e:c4:9d:eb:1a:49:f9:c9:20:e6:4e:
fd:c2:7a:e5:09:a9:56:50:36:77:85:96:5f:8d:17:
8e:41:a3:c1:62:be:b7:78:ea:c9:e8:5e:e9:d8:1f:
b4:69:5a:2f:27:25:83:b4:f8:75:b6:10:99:7d:d7:
3f:78:8b:6d:6e:e6:ed:3f:8e:ce:fa:5e:7b:64:f9:
45:19:23:6c:4a:e8:ac:7e:a5:9e:86:dd:e6:4c:69:
84:a1:28:f0:82:5c:6e:4c:3c:b9:96:c1:56:3b:4e:
36:ba:54:45:71:fd:ed:9f:b6:ba:d2:f2:61:48:cb:
da:3c:1b:9f:c8:cf:b9:9c:1d:f9:b2:24:1b:48:9e:
46:a8:2a:63:87:f2:0a:88:6c:35:c1:8f:f5:f8:24:
3d:30:86:5a:2c:65:47:72:ee:a1:f3:f6:0a:53:3a:
67:0b:43:55:3e:89:a2:3e:67:fc:86:71:cf:d2:43:
b0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:8B:35:72:46:14:05:F9:E8:F6:48:A2:53:9D:18:63:8E:D4:E7:3B
X509v3 Authority Key Identifier:
keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:74:ba:c1:e9:6e:e3:18:a5:95:04:ab:a8:61:86:11:18:04:
e7:d2:d6:87:23:ce:22:68:19:21:a5:a0:78:dc:99:51:c3:7c:
7c:a6:a0:bc:9a:54:b9:02:7d:21:b0:ea:ec:c7:d6:4c:1f:bd:
2a:8d:b4:2d:de:d1:fc:6f:9a:cc:7d:00:e6:be:88:4c:b6:fb:
64:ca:5b:77:99:4d:cb:68:4b:54:ae:24:49:ae:3b:80:0a:66:
ae:dc:09:70:ae:4a:e6:71:1b:fb:26:d5:1e:ec:85:66:a6:93:
d5:86:7d:4b:13:f5:7b:c6:bd:e7:78:44:f1:0a:90:aa:75:64:
c6:2b:02:7b:99:4e:e7:ca:ba:4b:bf:3a:3c:5e:14:13:5a:83:
d0:55:94:31:dd:8b:ba:89:7c:c4:33:76:8f:4c:31:de:22:20:
4f:e3:3a:07:ad:b8:cd:54:ce:80:8e:d3:91:f6:8f:6f:85:7a:
fc:a2:14:e6:8d:a6:66:f5:97:ed:95:9f:cc:78:88:e4:c0:f6:
9f:88:ee:bf:c6:43:3c:4a:86:d4:10:6b:43:b0:fe:cd:f8:e9:
c8:75:20:4c:07:42:ee:bb:40:c8:0a:ce:2a:df:38:8b:4f:8e:
02:d4:8c:d3:a2:74:2e:26:d5:e6:02:d1:f6:0e:af:e7:2c:bc:
8f:72:38:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 20:51:37 2025 by rpki-client