Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
File: dnECLoKiznV3Drwajw1F9E8scxY.mft (raw, json)
Hash identifier: htFhRGQPJcyhuulQW4kNr05lReUN9blJVHAhkkcyT0w=
Subject key identifier: D8:1B:64:59:37:2F:2D:FE:F9:A2:63:38:37:D9:19:26:A4:0F:32:00
Authority key identifier: 76:71:02:2E:82:A2:CE:75:77:0E:BC:1A:8F:0D:45:F4:4F:2C:73:16
Certificate issuer: /CN=7671022e82a2ce75770ebc1a8f0d45f44f2c7316
Certificate serial: 01969E9AB828D788396A314D53CBF9E73475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
Manifest number: 1521
Signing time: Mon 05 May 2025 04:01:01 +0000
Manifest this update: Mon 05 May 2025 04:01:01 +0000
Manifest next update: Tue 06 May 2025 04:01:01 +0000
Files and hashes: 1: dnECLoKiznV3Drwajw1F9E8scxY.crl (hash: 8kbk0kJUEJ8NSOqhMg/bolba29R/himtMU7nLmQtYfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:b8:28:d7:88:39:6a:31:4d:53:cb:f9:e7:34:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7671022e82a2ce75770ebc1a8f0d45f44f2c7316
Validity
Not Before: May 5 04:01:01 2025 GMT
Not After : May 6 04:01:01 2025 GMT
Subject: CN=d81b6459372f2dfef9a2633837d91926a40f3200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ab:f8:fa:3b:54:d6:5a:ba:df:a6:27:65:55:
69:07:6d:f2:0c:c2:06:13:3d:21:f6:69:7d:0e:e4:
aa:54:30:52:af:ad:03:73:7d:21:b2:5a:5b:75:cb:
46:d2:e4:40:ee:28:27:77:79:6f:52:af:30:a3:6a:
97:b5:15:4c:43:06:0c:b0:01:6b:b8:88:d8:c7:d2:
ea:f5:61:73:5b:b0:ef:99:34:2e:19:f1:a5:a9:c8:
59:c4:45:30:a2:6e:b3:0d:52:7a:b2:27:b1:e3:78:
55:63:a6:34:a2:bb:12:62:3e:53:ae:07:01:44:9d:
fc:53:20:fe:0e:c6:7e:bb:94:5a:d9:12:fa:8d:6e:
f4:fc:73:ee:e8:85:31:1d:76:02:37:92:be:1e:15:
46:1a:20:4f:75:d4:c4:38:24:9b:eb:0d:e7:09:83:
21:36:3f:8c:d1:11:fe:25:a5:21:4b:84:e8:33:8e:
04:40:c5:12:36:6d:02:ae:31:5c:e9:c3:de:6b:00:
be:d7:97:54:1f:36:40:f6:b4:f5:23:fb:04:ad:f7:
08:1e:66:ce:4a:bc:7a:f6:fa:ea:6d:c3:72:5c:c7:
1e:b6:a9:11:19:e3:9c:44:35:3c:92:0a:9d:ab:32:
41:77:d1:b3:81:65:46:31:3a:b0:0a:32:fc:9a:34:
93:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1B:64:59:37:2F:2D:FE:F9:A2:63:38:37:D9:19:26:A4:0F:32:00
X509v3 Authority Key Identifier:
keyid:76:71:02:2E:82:A2:CE:75:77:0E:BC:1A:8F:0D:45:F4:4F:2C:73:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnECLoKiznV3Drwajw1F9E8scxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c2719d-8d77-4686-a2fb-7b4f09785f79/1/dnECLoKiznV3Drwajw1F9E8scxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:3c:82:6a:e8:38:6e:6b:5f:fe:cc:6e:58:b3:b6:70:c1:24:
37:db:cf:76:df:c8:b0:73:ac:07:36:ce:37:c9:30:dc:b7:1a:
e9:d4:bf:f4:30:2a:ef:54:0e:db:4b:3d:39:0c:22:70:d5:74:
15:e5:e8:fa:00:da:4c:1a:18:87:a2:4a:3b:5a:b2:67:43:c5:
62:18:2d:31:bc:35:fa:10:28:0e:54:bb:27:ba:c9:46:fb:c3:
c2:98:0c:2e:07:75:3e:96:fa:f9:e4:3e:49:36:65:b8:ef:ce:
19:c6:8a:8e:27:60:14:a5:8f:37:f3:3a:af:46:e9:c5:51:4c:
fb:e6:10:1c:3c:fd:27:e6:df:50:41:fb:9b:4f:13:02:51:aa:
c8:e3:8a:c4:17:af:51:58:1e:e0:04:96:20:ca:4f:f2:6c:e6:
61:35:10:2e:84:08:76:6b:ea:e4:01:ef:07:fe:41:e0:7c:54:
fc:b7:51:1f:32:ca:1b:f2:cf:c7:48:7b:06:f5:9a:6e:1e:a4:
31:66:da:8b:99:0f:5d:62:87:e6:ba:4f:41:12:b7:2f:3f:90:
b0:f3:00:d1:e3:85:7f:55:27:40:06:84:bf:45:c9:96:55:3a:
cf:57:87:42:2f:4c:88:44:aa:30:b6:a0:32:39:58:de:31:99:
98:25:69:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaemrgo14g5ajFNU8v55zR1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NzEwMjJlODJhMmNlNzU3NzBlYmMxYThmMGQ0NWY0NGYy
YzczMTYwHhcNMjUwNTA1MDQwMTAxWhcNMjUwNTA2MDQwMTAxWjAzMTEwLwYDVQQD
EyhkODFiNjQ1OTM3MmYyZGZlZjlhMjYzMzgzN2Q5MTkyNmE0MGYzMjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqv4+jtU1lq636YnZVVpB23yDMIG
Ez0h9ml9DuSqVDBSr60Dc30hslpbdctG0uRA7ignd3lvUq8wo2qXtRVMQwYMsAFr
uIjYx9Lq9WFzW7DvmTQuGfGlqchZxEUwom6zDVJ6siex43hVY6Y0orsSYj5TrgcB
RJ38UyD+DsZ+u5Ra2RL6jW70/HPu6IUxHXYCN5K+HhVGGiBPddTEOCSb6w3nCYMh
Nj+M0RH+JaUhS4ToM44EQMUSNm0CrjFc6cPeawC+15dUHzZA9rT1I/sErfcIHmbO
Srx69vrqbcNyXMcetqkRGeOcRDU8kgqdqzJBd9GzgWVGMTqwCjL8mjSTPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNgbZFk3Ly3++aJjODfZGSakDzIAMB8GA1UdIwQY
MBaAFHZxAi6Cos51dw68Go8NRfRPLHMWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG5FQ0xvS2l6blYzRHJ3YWp3MUY5RThzY3hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9jMjcxOWQtOGQ3Ny00Njg2LWEyZmIt
N2I0ZjA5Nzg1Zjc5LzEvZG5FQ0xvS2l6blYzRHJ3YWp3MUY5RThzY3hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9jMjcxOWQtOGQ3Ny00Njg2LWEyZmItN2I0ZjA5Nzg1Zjc5
LzEvZG5FQ0xvS2l6blYzRHJ3YWp3MUY5RThzY3hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYjyCaug4
bmtf/sxuWLO2cMEkN9vPdt/IsHOsBzbON8kw3Lca6dS/9DAq71QO20s9OQwicNV0
FeXo+gDaTBoYh6JKO1qyZ0PFYhgtMbw1+hAoDlS7J7rJRvvDwpgMLgd1Ppb6+eQ+
STZluO/OGcaKjidgFKWPN/M6r0bpxVFM++YQHDz9J+bfUEH7m08TAlGqyOOKxBev
UVge4ASWIMpP8mzmYTUQLoQIdmvq5AHvB/5B4HxU/LdRHzLKG/LPx0h7BvWabh6k
MWbai5kPXWKH5rpPQRK3Lz+QsPMA0eOFf1UnQAaEv0XJllU6z1eHQi9MiESqMLag
MjlY3jGZmCVpwg==
-----END CERTIFICATE-----
Generated at Mon May 5 06:38:36 2025 by rpki-client